-
公开(公告)号:US6076168A
公开(公告)日:2000-06-13
申请号:US943166
申请日:1997-10-03
申请人: William Alton Fiveash , Xinya Wang , Christiaan Blake Wenzel , Jacqueline Hegedus Wilson , Opral Vanan Wisham
发明人: William Alton Fiveash , Xinya Wang , Christiaan Blake Wenzel , Jacqueline Hegedus Wilson , Opral Vanan Wisham
CPC分类号: H04L63/0263
摘要: A method of securing data traffic between a local and remote host systems is provided. The method includes autogenerating a filter having rules associated with a defined tunnel. The filter rules are used to permit or deny acceptance of transmitted data by the host system and to direct traffic to the tunnel. The tunnel, on the other hand, is used to keep data confidential. The method further includes autogeneration of a counterpart tunnel and associated filter to be used by the remote host when in communication with the local host. The method further autogenerates a new filter to reflect changes to any one of the tunnels and autodeactivates the filter associated with a deleted tunnel.
摘要翻译: 提供了一种在本地和远程主机系统之间保护数据流量的方法。 该方法包括自动生成具有与定义的隧道相关联的规则的过滤器。 过滤规则用于允许或拒绝主机系统接收传输的数据,并将流量引导到隧道。 另一方面,隧道用于保密数据。 该方法还包括对等通道和相关过滤器的自动生成,以在远程主机与本地主机通信时使用。 该方法还自动生成新的过滤器,以反映对任何一个隧道的更改,并自动停用与删除的隧道相关联的过滤器。
-
2.发明授权Method and apparatus for automatic configuration for internet protocol security tunnels in a distributed data processing system 失效分布式数据处理系统中互联网协议安全隧道自动配置的方法和装置公开(公告)号:US06738909B1
公开(公告)日:2004-05-18
申请号:US09389199
申请日:1999-09-02
申请人: Pau-Chen Cheng , William Alton Fiveash , Vachaspathi Peter Kompella , Christiaan Blake Wenzel , Jacqueline Hegedus Wilson
发明人: Pau-Chen Cheng , William Alton Fiveash , Vachaspathi Peter Kompella , Christiaan Blake Wenzel , Jacqueline Hegedus Wilson
IPC分类号: H04L932
CPC分类号: H04L63/0227 , H04L63/0428 , H04L63/12 , H04L63/164
摘要: A method and apparatus for use in data processing system for selecting rules to filter data for a tunnel. A request is received to create a tunnel to another data processing system. A granularity of information about the data processing system is identified to form an identified granularity. The identified granularity of the information about the data processing system is used to select a rule, which matches the identified granularity. This rule is placed in a filter, wherein the filter associates data packets with the tunnel.
摘要翻译: 一种在数据处理系统中用于选择用于过滤隧道数据的规则的方法和装置。 接收请求以创建到另一数据处理系统的隧道。 识别关于数据处理系统的信息的粒度以形成所识别的粒度。 使用关于数据处理系统的信息的所确定的粒度来选择与所识别的粒度相匹配的规则。 该规则被放置在过滤器中,其中过滤器将数据分组与隧道相关联。
-
3.发明授权公开(公告)号:US06938155B2
公开(公告)日:2005-08-30
申请号:US09864136
申请日:2001-05-24
申请人: Ajit Clarence D'Sa , William Alton Fiveash , Denise Marie Genty , Guha Prasad Venkataraman , Jacqueline Hegedus Wilson
发明人: Ajit Clarence D'Sa , William Alton Fiveash , Denise Marie Genty , Guha Prasad Venkataraman , Jacqueline Hegedus Wilson
CPC分类号: H04L63/0272 , H04L63/0823
摘要: A system and method for providing multiple virtual private networks from a computer system. The computer system communicates with a remote computer system in order to allow encrypted data traffic to flow between the respective systems. Two phases are used to authenticate the computer systems to one another. During the first phase, digital certificates or pre-shared keys are used to authenticate the computer systems. A phase 1 ID rules list contains authentication rules for local-remote computer pairs. During the second phase, a hash value is used to authenticate the computer systems and a security association payload is created. The remote system's IP address is used for connecting. The phase 1 ID rules list corresponds to one or more phase 2 ID rules lists. If the remote ID is not found in the phase 2 ID rules list, a default rule is used based upon the phase 1 ID rules list.
摘要翻译: 一种用于从计算机系统提供多个虚拟专用网络的系统和方法。 计算机系统与远程计算机系统进行通信,以允许加密的数据流量在各个系统之间流动。 两个阶段用于将计算机系统彼此认证。 在第一阶段,数字证书或预共享密钥用于认证计算机系统。 第1阶段ID规则列表包含本地远程计算机对的身份验证规则。 在第二阶段期间,使用散列值来认证计算机系统,并创建安全关联有效载荷。 远程系统的IP地址用于连接。 阶段1 ID规则列表对应于一个或多个阶段2 ID规则列表。 如果在第2阶段ID规则列表中找不到远程ID,则将根据第1阶段规则列表使用默认规则。
-
4.发明授权Computer display system for dynamically controlling the pacing of sequential presentation segments in response to user variations in the time allocated to specific presentation segments 失效计算机显示系统,用于响应于分配给特定表现段的时间中的用户变化动态地控制顺序呈现段的起搏公开(公告)号:US06717591B1
公开(公告)日:2004-04-06
申请号:US09652052
申请日:2000-08-31
申请人: William Alton Fiveash , Denise Marie Genty , Gerald Francis McBrearty , Shawn Patrick Mullen , Johnny Meng-Han Shieh
发明人: William Alton Fiveash , Denise Marie Genty , Gerald Francis McBrearty , Shawn Patrick Mullen , Johnny Meng-Han Shieh
IPC分类号: G09G500
CPC分类号: G06Q10/10
摘要: For a presentation comprising a plurality of presentation segments, timing is established through the combination of assigning a portion of a total presentation time to each of the plurality of presentation segments, displaying the time assigned to each of said presentation segments, enabling a user to change the time assigned to the segment being presented, and in response to a change in said time, dynamically reapportioning the remaining total time among the subsequent sequential presentation segments. The reapportioned times for said subsequent sequential presentation segments can further be displayed. There may also be means, responsive to the change in the time, for dynamically eliminating one of said sequential segments. In slide presentations, there may be means for displaying the reapportioned times for said subsequent sequential individual slides together with miniaturizations of each of said subsequent sequential individual slides.
摘要翻译: 对于包括多个呈现片段的呈现,通过将总呈现时间的一部分分配给多个呈现片段中的每一个而组合定时,显示分配给每个所述呈现片段的时间,使得用户能够改变 所呈现的分配的时间,并且响应于所述时间的变化,动态地重新分配在随后的顺序呈现片段中的剩余总时间。 可以进一步显示所述后续顺序呈现片段的重新分配时间。 响应于时间的变化,也可以存在用于动态地消除所述顺序段中的一个的装置。 在幻灯片呈现中,可以存在用于显示所述后续顺序单独幻灯片的重新分配时间以及每个所述后续顺序单独幻灯片的小型化的装置。
-
5.发明授权公开(公告)号:US06973580B1
公开(公告)日:2005-12-06
申请号:US09615772
申请日:2000-07-13
申请人: Scott Allen Carroll , William Alton Fiveash , Gerald Francis McBrearty , Shawn Patrick Mullen , Johnny Meng-Han Shieh
发明人: Scott Allen Carroll , William Alton Fiveash , Gerald Francis McBrearty , Shawn Patrick Mullen , Johnny Meng-Han Shieh
CPC分类号: H04L41/28 , G06F21/554 , G06F21/6245 , H04L41/22 , H04L63/1416 , H04L67/42
摘要: The present invention is embodied in a system and method for monitoring and alerting remote client users of digital intrusions of their computers by host servers. In general, the present invention monitors actions taken by host servers relating to information about the remote client and displays graphical alerts when a digital intrusion or a breach of security occurs during a network connection, such as a connection to the Internet, with the host server. Specifically, the present invention monitors certain aspects of the remote client user s interaction with host servers. Based on certain interaction, such as an attempt by the host server to retrieve non-related information about the remote client, the remote client user can be provided with a graphical alert. This allows the remote client user to make an informed decision whether or not to allow certain host server sites to retrieve the client user s personal information.
摘要翻译: 本发明体现在用于通过主机服务器监视和警告远程客户端用户对其计算机的数字入侵的系统和方法。 通常,本发明监测主机服务器所涉及的关于远程客户端的信息的动作,并且在网络连接(例如,到因特网的连接)期间发生数字入侵或违反安全性的情况下显示图形警报,主机服务器 。 具体地说,本发明监控远程客户端用户与主机服务器的交互的某些方面。 基于某些交互,例如主机服务器尝试检索与远程客户端无关的信息,可以为远程客户端用户提供图形警报。 这允许远程客户端用户作出知情决定,以允许某些主机服务器站点检索客户端用户的个人信息。
-
6.发明授权Method of automatically instituting secure, safe libraries and functions when exposing a system to potential system attacks 有权在系统暴露潜在系统攻击时自动建立安全,安全的库和功能的方法公开(公告)号:US06789200B1
公开(公告)日:2004-09-07
申请号:US09574185
申请日:2000-05-18
申请人: William Alton Fiveash , Gerald Francis McBrearty , Shawn Patrick Mullen , Johnny Meng-Han Shieh
发明人: William Alton Fiveash , Gerald Francis McBrearty , Shawn Patrick Mullen , Johnny Meng-Han Shieh
IPC分类号: H04L932
CPC分类号: G06F21/566
摘要: A method of protecting a data processing system is provided. In a preferred embodiment the data processing system temporarily switches from a main system library mode to a safe system library mode. A user then may open and read a document, such as, for example, an e-mail message, and any virus or worm contained in the document will be prevented from executing and damaging the data processing system.
摘要翻译: 提供了一种保护数据处理系统的方法。 在优选实施例中,数据处理系统暂时从主系统库模式切换到安全系统库模式。 然后,用户可以打开和读取文档,例如电子邮件消息,并且将阻止文档中包含的任何病毒或蠕虫执行和损坏数据处理系统。
-
7.发明授权Protecting open world wide web sites from known malicious users by diverting requests from malicious users to alias addresses for the protected sites 有权通过将恶意用户的请求转移到受保护网站的别名地址来保护开放的全球网站免受已知恶意用户的攻击公开(公告)号:US06714970B1
公开(公告)日:2004-03-30
申请号:US09697443
申请日:2000-10-26
申请人: William Alton Fiveash , Gerald Francis McBrearty , Shawn Patrick Mullen , Johnny Meng-Han Shieh
发明人: William Alton Fiveash , Gerald Francis McBrearty , Shawn Patrick Mullen , Johnny Meng-Han Shieh
IPC分类号: G06F1516
CPC分类号: H04L63/0236 , G06F21/53 , G06F21/554 , G06F2221/2119 , G06F2221/2127 , H04L63/1458
摘要: Protecting open Web sites from known malicious users in a World Wide Web (Web) communication network with access to a plurality of open Web sites responsive to requests from users at IP addresses throughout the Web. There is provided in association with a protected open Web site, a stored list of the IP addresses of known malicious users combined with means for comparing the IP addresses of each user requesting access to the protected open Web site to said list of IP addresses of the known malicious users. There are also implementations responsive to the comparing means for diverting to an alias address for the protected Web site any request from the IP address of a malicious user. The alias address is provided by a function associated with the protected open Web site. The present invention is applicable in circumstances where the malicious users or “crackers” are already known.
摘要翻译: 保护开放网站免受万维网(Web)通信网络中的已知恶意用户的访问,可以访问多个开放网站,以响应来自用户IP地址的请求。 与受保护的开放网站相关联地提供已知恶意用户的IP地址的存储列表,以及用于将请求访问受保护的开放网站的每个用户的IP地址与所述受保护的打开网站的IP地址列表进行比较的手段 已知的恶意用户。 还有一些响应于比较装置的实现方式,用于将恶意用户的IP地址的任何请求转移到受保护网站的别名地址。 别名地址由与受保护的开放网站相关联的功能提供。 本发明适用于恶意用户或“破解者”已知的情况。
-
-
-
-
-
-
搜索结果
7 条记录 (耗时 0.2 秒)
