-
公开(公告)号:US07831826B2
公开(公告)日:2010-11-09
申请号:US12402448
申请日:2009-03-11
申请人: Shirish Koti , Narasimha Rao S. S. Nagampalli , Maxim Alexandrovich Ivanov , Sachin C. Sheth , Emanuel Paleologu , Yun Lin , Eric Erwin Youngblut
发明人: Shirish Koti , Narasimha Rao S. S. Nagampalli , Maxim Alexandrovich Ivanov , Sachin C. Sheth , Emanuel Paleologu , Yun Lin , Eric Erwin Youngblut
CPC分类号: H04L63/0218 , H04L63/0263 , H04L63/20
摘要: A method and system for distributing and enforcing security policies is provided. A firewall agent executing at a host computer system that is to be protected receives security policies for the enforcement engines responsible for enforcing the security policies on the host computer system. A security policy has rules that each provide a condition and action to be performed when the condition is satisfied. A rule also has a rule type that is used by the distribution system to identify the security components that are responsible for enforcing the rules. To distribute the security policies that have been received at a host computer system, the firewall agent identifies to which enforcement engine a rule applies based in part on rule type. The firewall agent then distributes the rule to the identified enforcement engine, which then enforces the rule.
摘要翻译: 提供了分发和执行安全策略的方法和系统。 在要被保护的主机计算机系统上执行的防火墙代理接收负责执行主机计算机系统上的安全策略的执行引擎的安全策略。 安全策略具有规则,每个条件在条件满足时提供要执行的条件和操作。 规则还具有由分发系统用于识别负责执行规则的安全组件的规则类型。 为了分发在主机计算机系统上接收到的安全策略,防火墙代理将部分基于规则类型标识适用于哪个执行引擎。 防火墙代理然后将规则分发到所识别的强制引擎,然后执行该规则。
-
公开(公告)号:US07509493B2
公开(公告)日:2009-03-24
申请号:US10993688
申请日:2004-11-19
申请人: Shirish Koti , Narasimha Rao S. S. Nagampalli , Maxim Alexandrovich Ivanov , Sachin C. Sheth , Emanuel Paleologu , Yun Lin , Eric Erwin Youngblut
发明人: Shirish Koti , Narasimha Rao S. S. Nagampalli , Maxim Alexandrovich Ivanov , Sachin C. Sheth , Emanuel Paleologu , Yun Lin , Eric Erwin Youngblut
CPC分类号: H04L63/0218 , H04L63/0263 , H04L63/20
摘要: A method and system for distributing and enforcing security policies is provided. A firewall agent executing at a host computer system that is to be protected receives security policies for the enforcement engines responsible for enforcing the security policies on the host computer system. A security policy has rules that each provide a condition and action to be performed when the condition is satisfied. A rule also has a rule type that is used by the distribution system to identify the security components that are responsible for enforcing the rules. To distribute the security policies that have been received at a host computer system, the firewall agent identifies to which enforcement engine a rule applies based in part on rule type. The firewall agent then distributes the rule to the identified enforcement engine, which then enforces the rule.
摘要翻译: 提供了分发和执行安全策略的方法和系统。 在要被保护的主机计算机系统上执行的防火墙代理接收负责执行主机系统上的安全策略的执行引擎的安全策略。 安全策略具有规则,每个条件在条件满足时提供要执行的条件和操作。 规则还具有由分发系统用于识别负责执行规则的安全组件的规则类型。 为了分发在主机计算机系统上接收到的安全策略,防火墙代理将部分基于规则类型标识适用于哪个执行引擎。 防火墙代理然后将规则分发到所识别的强制引擎,然后执行该规则。
-
公开(公告)号:US20060129808A1
公开(公告)日:2006-06-15
申请号:US10993688
申请日:2004-11-19
申请人: Shirish Koti , Narasimha Nagampalli , Maxim Ivanov , Sachin Sheth , Emanuel Paleologu , Yun Lin , Eric Youngblut
发明人: Shirish Koti , Narasimha Nagampalli , Maxim Ivanov , Sachin Sheth , Emanuel Paleologu , Yun Lin , Eric Youngblut
IPC分类号: H04L9/00
CPC分类号: H04L63/0218 , H04L63/0263 , H04L63/20
摘要: A method and system for distributing and enforcing security policies is provided. A firewall agent executing at a host computer system that is to be protected receives security policies for the enforcement engines responsible for enforcing the security policies on the host computer system. A security policy has rules that each provide a condition and action to be performed when the condition is satisfied. A rule also has a rule type that is used by the distribution system to identify the security components that are responsible for enforcing the rules. To distribute the security policies that have been received at a host computer system, the firewall agent identifies to which enforcement engine a rule applies based in part on rule type. The firewall agent then distributes the rule to the identified enforcement engine, which then enforces the rule.
-
公开(公告)号:US07966643B2
公开(公告)日:2011-06-21
申请号:US11039654
申请日:2005-01-19
CPC分类号: H04L63/1408 , G06F21/6218 , H04L63/0227
摘要: A method and system for controlling access to files in a remote file system is provided. In one embodiment, a firewall system at a client computer system intercepts requests originating from the client computer system and sent to the remote file system for accessing remote files, that is, files stored on a server computer system. Upon intercepting a remote file access request (e.g., to open a remote file), the firewall system determines whether the file access request should be allowed based on access control criteria.
摘要翻译: 提供了用于控制对远程文件系统中的文件的访问的方法和系统。 在一个实施例中,客户端计算机系统上的防火墙系统拦截源自客户端计算机系统的请求,并发送到远程文件系统以访问远程文件,即存储在服务器计算机系统上的文件。 在拦截远程文件访问请求(例如,打开远程文件)时,防火墙系统基于访问控制标准确定是否应该允许文件访问请求。
-
公开(公告)号:US20090172774A1
公开(公告)日:2009-07-02
申请号:US12402448
申请日:2009-03-11
申请人: Shirish R. Koti , Narasimha Rao S.S. Nagampalli , Maxim A. Ivanov , Sachin C. Sheth , Emanuel Paleologu , Yun Lin , Eric E. Youngblut
发明人: Shirish R. Koti , Narasimha Rao S.S. Nagampalli , Maxim A. Ivanov , Sachin C. Sheth , Emanuel Paleologu , Yun Lin , Eric E. Youngblut
IPC分类号: G06F21/00
CPC分类号: H04L63/0218 , H04L63/0263 , H04L63/20
摘要: A method and system for distributing and enforcing security policies is provided. A firewall agent executing at a host computer system that is to be protected receives security policies for the enforcement engines responsible for enforcing the security policies on the host computer system. A security policy has rules that each provide a condition and action to be performed when the condition is satisfied. A rule also has a rule type that is used by the distribution system to identify the security components that are responsible for enforcing the rules. To distribute the security policies that have been received at a host computer system, the firewall agent identifies to which enforcement engine a rule applies based in part on rule type. The firewall agent then distributes the rule to the identified enforcement engine, which then enforces the rule.
摘要翻译: 提供了分发和执行安全策略的方法和系统。 在要被保护的主机计算机系统上执行的防火墙代理接收负责执行主机计算机系统上的安全策略的执行引擎的安全策略。 安全策略具有规则,每个条件在条件满足时提供要执行的条件和操作。 规则还具有由分发系统用于识别负责执行规则的安全组件的规则类型。 为了分发在主机计算机系统上接收到的安全策略,防火墙代理将部分基于规则类型标识适用于哪个执行引擎。 防火墙代理然后将规则分发到所识别的强制引擎,然后执行该规则。
-
公开(公告)号:US20060161966A1
公开(公告)日:2006-07-20
申请号:US11039654
申请日:2005-01-19
申请人: Narasimha Rao Nagampalli , Sachin Sheth , Shirish Koti , Yun Lin
发明人: Narasimha Rao Nagampalli , Sachin Sheth , Shirish Koti , Yun Lin
IPC分类号: H04L9/00
CPC分类号: H04L63/1408 , G06F21/6218 , H04L63/0227
摘要: A method and system for controlling access to files in a remote file system is provided. In one embodiment, a firewall system at a client computer system intercepts requests originating from the client computer system and sent to the remote file system for accessing remote files, that is, files stored on a server computer system. Upon intercepting a remote file access request (e.g., to open a remote file), the firewall system determines whether the file access request should be allowed based on access control criteria.
摘要翻译: 提供了用于控制对远程文件系统中的文件的访问的方法和系统。 在一个实施例中,客户端计算机系统上的防火墙系统拦截源自客户端计算机系统的请求,并发送到远程文件系统以访问远程文件,即存储在服务器计算机系统上的文件。 在拦截远程文件访问请求(例如,打开远程文件)时,防火墙系统基于访问控制标准确定是否应该允许文件访问请求。
-
-
-
公开(公告)号:US10273973B2
公开(公告)日:2019-04-30
申请号:US13578163
申请日:2011-02-03
申请人: Xinqian Zheng , Yun Lin , Yangjun Zhang , Mingyang Yang , Takahiro Bamba , Hideaki Tamaki
发明人: Xinqian Zheng , Yun Lin , Yangjun Zhang , Mingyang Yang , Takahiro Bamba , Hideaki Tamaki
摘要: A centrifugal compressor includes an asymmetric self-recirculating casing treatment that includes, on an inner face of a casing 10, a suction ring groove 1, a ring guide channel 2 and a back-flow ring groove 3 to form a self-recirculating channel. An axial distance Sr from an upstream end face of the suction ring groove 1 to an impeller full blade leading edge 4 or a width br of the suction ring groove 1 is represented as A·sin(α+θ0)+A0 and is distributed in a sinusoidal shape in a circumferential direction, an initial phase angle θ0 is in a range of 0°≤θ0≤360°, and a circumferential angle α of the casing 10 has a definition range of θ0≤α≤θ0+360°. In the expression, A denotes amplitude of distribution of the axial distance Sr or the width br, and A0 denotes an average of the axial distance Sr or the width br.
-
公开(公告)号:US09816522B2
公开(公告)日:2017-11-14
申请号:US13578188
申请日:2011-02-03
申请人: Xinqian Zheng , Yun Lin , Yangjun Zhang , Mingyang Yang , Takahiro Bamba , Hideaki Tamaki
发明人: Xinqian Zheng , Yun Lin , Yangjun Zhang , Mingyang Yang , Takahiro Bamba , Hideaki Tamaki
CPC分类号: F04D29/4213 , F04D29/685
摘要: A centrifugal compressor has a casing 7. In the casing 7 is formed a back-flow channel 9 to return fluid from a downstream position of an impeller full blade leading edge 6a to an upstream position of the impeller full blade leading edge 6a. The back-flow channel 9 includes a suction ring groove 9a and a back-flow ring groove 9b. The suction ring groove opens at the downstream position on the inner face 7a of the casing 7, and extends in the circumferential direction. The back-flow ring groove opens at the upstream position on the inner face 7a, and extends in the circumferential direction. Distribution in the circumferential direction of the axial-direction position of the suction ring groove 9a or a width of the suction ring groove 9a is asymmetric with reference to the rotation axis.
-
-
-
-
-
-
-
-
-