公开(公告)号：US20050021809A1

公开(公告)日：2005-01-27

申请号：US10627593

申请日：2003-07-26

申请人： Yuesheng Zhu ,  Shaun Yu ,  Chih-Ping Lee

发明人： Yuesheng Zhu ,  Shaun Yu ,  Chih-Ping Lee

IPC分类号： H04L12/58 ,  H04L29/06 ,  H04M3/53 ,  G06F15/16

CPC分类号： H04L65/608 ,  H04L29/06027 ,  H04L51/00 ,  H04M3/5315 ,  H04N7/173 ,  H04N21/4786

摘要： A video mail server comprises a video call signaling module coupled to an internet protocol network for establishing a first internet protocol channel with a caller remote internet video device to support a recording session over the internet protocol network and establishing a second internet protocol channel with a user remote internet video device to support a playback session over the internet protocol network. A media interface comprises a recording module for obtaining a recording sequence of compressed images representing motion video images from the caller remote internet video device and storing a video mail file representing the recording sequence of compressed images. Each compressed image frame is one of: i) an independent frame from which an image frame can be recovered utilizing only the independent frame; and ii) a dependent frame from which the image frame can only be recovered utilizing both the dependent frame and an independent frame preceding the dependent frame in the sequence. A play back module retrieves video mail file from the storage and transfers a playback sequence of compressed images to the user remote internet video device.

摘要翻译： 视频邮件服务器包括视频呼叫信令模块，其耦合到因特网协议网络，用于与呼叫者远程互联网视频设备建立第一互联网协议信道，以支持通过因特网协议网络的记录会话，并与用户建立第二互联网协议信道 远程互联网视频设备，以支持通过互联网协议网络的回放会话。 媒体接口包括记录模块，用于获取表示来自主叫远程互联网视频设备的运动视频图像的压缩图像的记录序列，并存储表示压缩图像记录序列的视频邮件文件。 每个压缩图像帧是以下之一：i）仅使用独立帧可以从其恢复图像帧的独立帧; 以及ii）依赖帧，仅借助相关帧和序列中的从属帧之前的独立帧，才能从该帧中恢复图像帧。 播放模块从存储器检索视频邮件文件，并将压缩图像的播放顺序传送到用户远程互联网视频设备。

公开(公告)号：US07290058B2

公开(公告)日：2007-10-30

申请号：US10627593

申请日：2003-07-26

申请人： Yuesheng Zhu ,  Shaun Yu ,  Chih-Ping Lee

发明人： Yuesheng Zhu ,  Shaun Yu ,  Chih-Ping Lee

IPC分类号： G06F15/16 ,  H04N7/173

CPC分类号： H04L65/608 ,  H04L29/06027 ,  H04L51/00 ,  H04M3/5315 ,  H04N7/173 ,  H04N21/4786

摘要： A video mail server comprises a video call signaling module coupled to an internet protocol network for establishing a first internet protocol channel with a caller remote internet video device to support a recording session over the internet protocol network and establishing a second internet protocol channel with a user remote internet video device to support a playback session over the internet protocol network. A media interface comprises a recording module for obtaining a recording sequence of compressed images representing motion video images from the caller remote internet video device and storing a video mail file representing the recording sequence of compressed images. Each compressed image frame is one of: i) an independent frame from which an image frame can be recovered utilizing only the independent frame; and ii) a dependent frame from which the image frame can only be recovered utilizing both the dependent frame and an independent frame preceding the dependent frame in the sequence. A play back module retrieves video mail file from the storage and transfers a playback sequence of compressed images to the user remote internet video device.

摘要翻译： 视频邮件服务器包括视频呼叫信令模块，其耦合到因特网协议网络，用于与呼叫者远程互联网视频设备建立第一互联网协议信道，以支持通过因特网协议网络的记录会话，并与用户建立第二互联网协议信道 远程互联网视频设备，以支持通过互联网协议网络的回放会话。 媒体接口包括记录模块，用于获取表示来自主叫远程互联网视频设备的运动视频图像的压缩图像的记录序列，并存储表示压缩图像记录序列的视频邮件文件。 每个压缩图像帧是以下之一：i）仅使用独立帧可以从其恢复图像帧的独立帧; 以及ii）依赖帧，仅借助相关帧和序列中的从属帧之前的独立帧，才能从该帧中恢复图像帧。 播放模块从存储器检索视频邮件文件，并将压缩图像的播放顺序传送到用户远程互联网视频设备。

公开(公告)号：US07464267B2

公开(公告)日：2008-12-09

申请号：US10979033

申请日：2004-11-01

申请人： Yuesheng Zhu ,  Chih-Ping Lee

发明人： Yuesheng Zhu ,  Chih-Ping Lee

IPC分类号： H04L9/00

CPC分类号： H04L63/0869 ,  H04L9/0844 ,  H04L9/3236

摘要： A system and method for establishing a shared secret media key between each of a caller endpoint and a callee endpoint for securing a real time media channel comprises: i) establishing a caller authenticated signaling session with the caller endpoint using a caller shared secret authentication key and a symmetric encryption algorithm; and ii) establishing a callee authenticated signaling session with the callee endpoint using a callee shared secret authentication key and the symmetric encryption algorithm. A caller public value is received from the caller endpoint through the caller authenticated signaling session and sent to the callee endpoint through the callee authenticated signaling session. The caller public value is a public value of a pair of values generated by the caller endpoint and useful for calculating a shared secret media key. A callee public value is received from the callee endpoint through the callee authenticated signaling session and sent to the caller endpoint through the caller authenticated signaling session. The callee public value is a public value of a pair of values generated by the callee endpoint and useful for calculating a shared secret media key. Both the caller endpoint and the callee endpoint calculate the shared secret media key using Diffie-Hellman techniques.

摘要翻译： 用于在呼叫者端点和被叫方终端之间建立共享秘密媒体密钥以保护实时媒体信道的系统和方法包括：i）使用主叫方共享秘密认证密钥建立与呼叫者端点的呼叫方认证信令会话，以及 对称加密算法; 以及ii）使用被叫方共享秘密认证密钥和所述对称加密算法，建立与所述被叫端点的被叫认证信令会话。 通过呼叫者认证的信令会话从呼叫者端点接收呼叫者公共值，并通过被呼叫者认证的信令会话发送到被叫端点。 呼叫者公开值是由呼叫者端点生成的一对值的公共值，并且对于计算共享的秘密媒体密钥是有用的。 通过被叫认证的信令会话从被呼叫端点接收被叫方公共值，并通过呼叫方认证的信令会话发送到呼叫者端点。 被调用公开值是由被调用端点生成的一对值的公共值，并且对于计算共享的秘密媒体密钥是有用的。 主叫端点和被叫端点都使用Diffie-Hellman技术来计算共享密钥。

公开(公告)号：US20060095766A1

公开(公告)日：2006-05-04

申请号：US10979033

申请日：2004-11-01

申请人： Yuesheng Zhu ,  Chih-Ping Lee

发明人： Yuesheng Zhu ,  Chih-Ping Lee

IPC分类号： H04L9/00

CPC分类号： H04L63/0869 ,  H04L9/0844 ,  H04L9/3236

摘要： A system and method for establishing a shared secret media key between each of a caller endpoint and a callee endpoint for securing a real time media channel comprises: i) establishing a caller authenticated signaling session with the caller endpoint using a caller shared secret authentication key and a symmetric encryption algorithm; and ii) establishing a callee authenticated signaling session with the callee endpoint using a callee shared secret authentication key and the symmetric encryption algorithm. A caller public value is received from the caller endpoint through the caller authenticated signaling session and sent to the callee endpoint through the callee authenticated signaling session. The caller public value is a public value of a pair of values generated by the caller endpoint and useful for calculating a shared secret media key. A callee public value is received from the callee endpoint through the callee authenticated signaling session and sent to the caller endpoint through the caller authenticated signaling session. The callee public value is a public value of a pair of values generated by the callee endpoint and useful for calculating a shared secret media key. Both the caller endpoint and the callee endpoint calculate the shared secret media key using Diffie-Hellman techniques.

摘要翻译： 用于在呼叫者端点和被叫方终端之间建立共享秘密媒体密钥以保护实时媒体信道的系统和方法包括：i）使用主叫方共享秘密认证密钥建立与呼叫者端点的呼叫方认证信令会话，以及 对称加密算法; 以及ii）使用被叫方共享秘密认证密钥和所述对称加密算法，建立与所述被叫端点的被叫认证信令会话。 通过呼叫者认证的信令会话从呼叫者端点接收呼叫者公共值，并通过被呼叫者认证的信令会话发送到被叫端点。 呼叫者公开值是由呼叫者端点生成的一对值的公共值，并且对于计算共享的秘密媒体密钥是有用的。 通过被叫认证的信令会话从被呼叫端点接收被叫方公共值，并通过呼叫方认证的信令会话发送到呼叫者端点。 被调用公开值是由被调用端点生成的一对值的公共值，并且对于计算共享的秘密媒体密钥是有用的。 主叫端点和被叫端点都使用Diffie-Hellman技术来计算共享密钥。

公开(公告)号：US20060174018A1

公开(公告)日：2006-08-03

申请号：US11049468

申请日：2005-02-02

申请人： Yuesheng Zhu ,  Chih-Ping Lee

发明人： Yuesheng Zhu ,  Chih-Ping Lee

IPC分类号： G06F15/16 ,  G06F15/177

CPC分类号： H04L63/0435 ,  H04L63/0823 ,  H04L63/168 ,  H04L67/06 ,  H04L67/125

摘要： A method for securely provisioning a device for operation within a service provider infrastructure over an open network comprises the device establishing physical and data link layer network connections for communication on at least a subnet of the open network and obtaining a network configuration data such as an IP address and a subnet mask from a provisioning server that responds to a network configuration broadcast request. A device establishes a secure hypertext transport protocol connection to a first provisioning server that corresponds to one of: i) and IP address and port number; and ii) a fully qualified domain name stored in a non-volatile memory of the device. After mutual authentication, the first provisioning server provides at least one of: i) a configuration file; and ii) identification of a second provisioning server and a cipher key through the secure connection. If the first provisioning server provided identification of a second provisioning server, the device establishes a transport connection to the identified second provisioning server. The second provisioning server provides an encrypted file which, when decrypted using the cipher key yields the configuration information needed by the device for operation with the service provider infrastructure.

摘要翻译： 一种用于在开放网络上安全地配置服务提供商基础设施内的设备的方法包括建立用于在开放网络的至少子网上进行通信的物理和数据链路层网络连接的设备，并且获得网络配置数据，例如IP 地址和来自响应网络配置广播请求的配置服务器的子网掩码。 设备建立到第一配置服务器的安全超文本传输​​协议连接，其对应于以下之一：i）和IP地址和端口号; 和ii）存储在设备的非易失性存储器中的完全限定域名。 在相互认证之后，第一供应服务器提供以下至少一个：i）配置文件; 以及ii）通过安全连接识别第二供应服务器和密码密钥。 如果第一供应服务器提供了第二供应服务器的标识，则设备建立到所识别的第二供应服务器的传输连接。 第二配置服务器提供加密文件，当使用密钥解密时，加密文件产生设备所需的配置信息以便与服务提供商基础架构一起操作。

公开(公告)号：US07430664B2

公开(公告)日：2008-09-30

申请号：US11049468

申请日：2005-02-02

申请人： Yuesheng Zhu ,  Chih-Ping Lee

发明人： Yuesheng Zhu ,  Chih-Ping Lee

IPC分类号： H04L9/00

CPC分类号： H04L63/0435 ,  H04L63/0823 ,  H04L63/168 ,  H04L67/06 ,  H04L67/125

摘要： A method for securely provisioning a device for operation within a service provider infrastructure over an open network comprises the device establishing physical and data link layer network connections for communication on at least a subnet of the open network and obtaining a network configuration data such as an IP address and a subnet mask from a provisioning server that responds to a network configuration broadcast request. A device establishes a secure hypertext transport protocol connection to a first provisioning server that corresponds to one of: i) and IP address and port number; and ii) a fully qualified domain name stored in a non-volatile memory of the device. After mutual authentication, the first provisioning server provides at least one of: i) a configuration file; and ii) identification of a second provisioning server and a cipher key through the secure connection. If the first provisioning server provided identification of a second provisioning server, the device establishes a transport connection to the identified second provisioning server. The second provisioning server provides an encrypted file which, when decrypted using the cipher key yields the configuration information needed by the device for operation with the service provider infrastructure.

摘要翻译： 一种用于在开放网络上安全地配置服务提供商基础设施内的设备的方法包括建立用于在开放网络的至少子网上进行通信的物理和数据链路层网络连接的设备，并且获得网络配置数据，例如IP 地址和来自响应网络配置广播请求的配置服务器的子网掩码。 设备建立到第一配置服务器的安全超文本传输​​协议连接，其对应于以下之一：i）和IP地址和端口号; 和ii）存储在设备的非易失性存储器中的完全限定域名。 在相互认证之后，第一供应服务器提供以下至少一个：i）配置文件; 以及ii）通过安全连接识别第二供应服务器和密码密钥。 如果第一供应服务器提供了第二供应服务器的标识，则设备建立到所识别的第二供应服务器的传输连接。 第二配置服务器提供加密文件，当使用密钥解密时，加密文件产生设备所需的配置信息以便与服务提供商基础架构一起操作。

公开(公告)号：US20060274899A1

公开(公告)日：2006-12-07

申请号：US11145378

申请日：2005-06-03

申请人： Yuesheng Zhu ,  Chih-Ping Lee ,  Shih-An Cheng

发明人： Yuesheng Zhu ,  Chih-Ping Lee ,  Shih-An Cheng

IPC分类号： H04L9/00

CPC分类号： H04L9/083 ,  H04L63/02 ,  H04L63/029 ,  H04L63/0428 ,  H04L63/062 ,  H04L63/0823

摘要： A system for securing communications between a client and an application server comprises a session key management server and the application server. The system enables network address translation firewall traversal. The session key management server comprises a key management application, a session key database, and a notification services application. The key management application receives a first transport layer security connection request from the client and negotiates a device session master key with the client as part of the transport layer security exchange. The session key database is coupled to the key management application for storing the device session master key in conjunction with an identification of the client. The notification services application coupled to the session key database and provides a notification message to subscribing application servers. The notification message comprises the device session master key in conjunction with an identification of the client.

摘要翻译： 用于保护客户端和应用服务器之间的通信的系统包括会话密钥管理服务器和应用服务器。 该系统允许网络地址转换防火墙穿越。 会话密钥管理服务器包括密钥管理应用，会话密钥数据库和通知服务应用。 密钥管理应用从客户端接收第一传输层安全连接请求，并与客户端协商设备会话主密钥作为传输层安全交换的一部分。 会话密钥数据库耦合到密钥管理应用程序，用于结合客户端的标识来存储设备会话主密钥。 所述通知服务应用程序耦合到所述会话密钥数据库，并向订阅的应用服务器提供通知消息。 该通知消息包括与客户端的标识相结合的设备会话主密钥。

公开(公告)号：US08625246B2

公开(公告)日：2014-01-07

申请号：US13435821

申请日：2012-03-30

申请人： Pingfang Yu ,  Yuesheng Zhu

发明人： Pingfang Yu ,  Yuesheng Zhu

IPC分类号： H02H9/02

CPC分类号： H04M3/18 ,  H04M3/007 ,  H04M11/062

摘要： The embodiments of the present application provide a DSL protection circuit, including: a DSL and POTS broadband and narrowband mixed signal port, a narrowband POTS port, and a splitter, where the DSL and POTS broadband and narrowband mixed signal port is connected to the narrowband POTS port through the splitter, and a line on which an input end or output end of the splitter is cascaded with a restorable current-limited component for limiting abnormal current; a line on which the splitter and the restorable current-limited component are cascaded is connected in parallel with a voltage-limited component for bypass conduction of the splitter; a line on which the DSL and POTS broadband and narrowband mixed signal port is or a line on which the narrowband POTS port is cascaded with an overcurrent fuse component.

摘要翻译： 本申请的实施例提供一种DSL保护电路，其包括：DSL和POTS宽带和窄带混合信号端口，窄带POTS端口和分离器，其中DSL和POTS宽带和窄带混合信号端口连接到窄带 通过分路器的POTS端口，以及分路器的输入端或输出端与限制异常电流的可恢复电流限制部件级联的线; 分路器和可恢复电流限制部件级联的线路与用于旁路导通的电压限制部件并联连接; DSL和POTS宽带和窄带混合信号端口或窄带POTS端口与过流保险丝组件级联的线路。

公开(公告)号：US07492764B2

公开(公告)日：2009-02-17

申请号：US10962734

申请日：2004-10-12

申请人： Shih-An Cheng ,  Don Mahurin ,  Yuesheng Zhu ,  Chen-Huei Chang

发明人： Shih-An Cheng ,  Don Mahurin ,  Yuesheng Zhu ,  Chen-Huei Chang

IPC分类号： H04L12/28

CPC分类号： H04L29/12009 ,  H04L29/125 ,  H04L41/0213 ,  H04L43/10 ,  H04L43/50 ,  H04L61/2564 ,  H04L63/029 ,  H04L63/0428

摘要： An element management system enables a network management server to provide a variable value to a management information base of a managed device independent of whether the managed device is served by a network address translation firewall. The element management system comprises an SNMP message manager which receives periodic heart beat frames from the managed device and stored identification of a heart beat channel in association with identification of the managed device in a registration table. The heart beat channel comprises the source socket and destination socket of the heart beat frame. The SNMP message manager further uniquely associates an assigned UDP port number with the managed device and provides the unique association of the assigned UDP port and the managed device to the network management server. The SNMP message manager further receives an SNMP Set from the network management server embodied as an IP frame addressed to the assigned UDP port number, looks up the managed device associated with the assigned UDP port number, and sends the SNMP Set to the managed device using the heartbeat channel.

摘要翻译： 元素管理系统使得网络管理服务器能够向被管理设备的管理信息库提供可变值，而不管被管理设备是否由网络地址转换防火墙服务。 元件管理系统包括SNMP消息管理器，该SNMP消息管理器从被管理设备接收周期性的心跳帧，并且与登记表中被管理设备的标识相关联地存储心跳频道的标识。 心跳通道包括心跳帧的源插座和目的插座。 SNMP消息管理器进一步将分配的UDP端口号与被管理设备唯一地相关联，并且将分配的UDP端口和被管理设备的唯一关联提供给网络管理服务器。 SNMP消息管理器还从网络管理服务器接收到一个SNMP集，该集合体现为寻址到分配的UDP端口号的IP帧，查找与分配的UDP端口号相关联的被管理设备，并使用 心跳频道。

公开(公告)号：US20060077988A1

公开(公告)日：2006-04-13

申请号：US10962734

申请日：2004-10-12

申请人： Shih-An Cheng ,  Don Mahurin ,  Yuesheng Zhu ,  Chen-Huei Chang

发明人： Shih-An Cheng ,  Don Mahurin ,  Yuesheng Zhu ,  Chen-Huei Chang

IPC分类号： H04L12/28

CPC分类号： H04L29/12009 ,  H04L29/125 ,  H04L41/0213 ,  H04L43/10 ,  H04L43/50 ,  H04L61/2564 ,  H04L63/029 ,  H04L63/0428

摘要： An element management system enables a network management server to provide a variable value to a management information base of a managed device independent of whether the managed device is served by a network address translation firewall. The element management system comprises an SNMP message manager which receives periodic heart beat frames from the managed device and stored identification of a heart beat channel in association with identification of the managed device in a registration table. The heart beat channel comprises the source socket and destination socket of the heart beat frame. The SNMP message manager further uniquely associates an assigned UDP port number with the managed device and provides the unique association of the assigned UDP port and the managed device to the network management server. The SNMP message manager further receives an SNMP Set from the network management server embodied as an IP frame addressed to the assigned UDP port number, looks up the managed device associated with the assigned UDP port number, and sends the SNMP Set to the managed device using the heartbeat channel.