公开(公告)号：WO0189138A3

公开(公告)日：2002-05-23

申请号：PCT/US0115318

申请日：2001-05-11

Applicant: GROOVE NETWORKS INC

Inventor： TUVELL WALTER E

IPC: H04L9/06 ,  H04L9/18

CPC classification number: H04L9/0637 ,  H04L9/065 ,  H04L2209/08

Abstract: The security of block cipher counter mode of operation can be improved, and stream ciphers can be converted to a "block-like" (stateless) mode of operation, by using a modified key which is a fixed secret key (K) combined with a varying random non-secret byte sequence (J) with same size as the keysize of key K. In accordance with various embodiments, the modified key can be generated by XORing the fixed secret key with a varying random sequence that is newly generated for each plaintext message. Alternatively, the fixed secret key can be modified with a variable, non-secret initialization vector and used with stream ciphers. In still another embodiment, the key and sequence are concatenated and passed through a mask generation function.

Abstract translation: 可以提高块密码计数器操作模式的安全性，通过使用修正的密钥（k）和流密码（k）结合，可以将流密码转换为“块状”（无状态）操作模式 具有与密钥K的密钥大小相同大小的变化的随机非秘密字节序列（J）。根据各种实施例，修改的密钥可以通过用针对每个明文新生成的变化的随机序列进行异或来产生固定密钥 信息。 或者，固定密钥可以用可变的，非秘密的初始化向量来修改，并与流密码一起使用。 在另一个实施例中，键和序列被级联并通过掩码生成功能。

公开(公告)号：WO0106365A8

公开(公告)日：2001-08-16

申请号：PCT/US0017785

申请日：2000-06-28

Applicant: GROOVE NETWORKS INC

Inventor： OZZIE RAYMOND E ,  MOORE KENNETH G ,  MYHILL ROBERT H ,  LAMBERT BRIAN M

IPC: G06F13/00 ,  G06F15/00 ,  H04L12/18 ,  H04L29/06 ,  H04L29/08 ,  G06F11/14

CPC classification number: H04L12/1813 ,  H04L29/06 ,  H04L67/14 ,  H04L67/2842 ,  H04L67/38 ,  H04L69/329

Abstract: A communications manager provides communication services for an activity-based collaboration system, in which data change requests comprising deltas are communicated over a network between network-capable devices. The communications manager is operable on a local network capable device for sending locally-generated deltas over the network to at least one remote network-capable device and for receiving remotely-generated deltas over the network from the at least one remote network-capable device. The communications manager can send the deltas via unicasting, muticasting, or broadcasting techniques. The communications manager is responsive to network connection status information indicating that the remote network-capable device is connected to the network for sending the local deltas directly to an address for the remote network-capable device. A presence mechanism maintains and distributes, on request, the network connection status information, which it acquires from each of the network-capable devices. The communications manager is also responsive to the network connection status information indicating that the remote network-capable device is disconnected from the network for sending the local deltas to an address of a relay. The relay stores deltas until the relay is notified that the remote network-capable device has reconnected to the network, and then the relay sends the deltas to the reconnected remote network-capable device.

Abstract translation: 通信管理器为基于活动的协作系统提供通信服务，其中包括三角波的数据改变请求在网络能力设备之间通过网络传送。 通信管理器可在具有本地网络功能的设备上操作，用于通过网络将本地生成的三角洲发送到至少一个具有远程网络功能的设备，并且用于通过网络从所述至少一个具有远程网络功能的设备接收远程产生的增量。 通信管理器可以通过单播，多播或广播技术发送三角形。 通信管理器响应于指示远程网络能力设备连接到网络的网络连接状态信息，用于将本地增量直接发送到用于具有远程网络能力的设备的地址。 存在机制根据请求维护和分发从每个具有网络能力的设备获取的网络连接状态信息。 通信管理器还响应于指示远程网络能力设备与网络断开以发送本地增量到中继站的地址的网络连接状态信息。 继电器存储三角形，直到中继通知有远程网络设备已重新连接到网络，然后中继器将三角波发送到重新连接的具有远程网络功能的设备。

公开(公告)号：WO0106364A8

公开(公告)日：2001-06-28

申请号：PCT/US0017759

申请日：2000-06-28

Applicant: GROOVE NETWORKS INC

Inventor： OZZIE RAYMOND E ,  OZZIE JACK E

IPC: G06F12/00 ,  G06F13/00 ,  G06F17/30 ,  G06Q10/10 ,  H04L12/58 ,  H04L29/06 ,  H04L29/08 ,  G06F11/00

CPC classification number: G06F17/30168 ,  G06Q10/10 ,  H04L29/06 ,  H04L51/043 ,  H04L67/1095 ,  H04L69/329 ,  Y10S707/99952

Abstract: A distributed, activity-based collaboration system can employ a data change request priority scheme for determining an order of execution of data change requests in effecting changes to local copies of data so as to optimize data consistency for collaborative activities. The data change request priority scheme can entail encoding sequence number information and dependency information in the data change requests, responsive to which data changes can be made, unmade and remade to the data.

Abstract translation: 分布式的基于活动的协作系统可以采用数据变更请求优先权方案来确定数据更改请求的执行顺序，从而实现对本地数据副本的更改，从而优化协作活动的数据一致性。 数据改变请求优先权方案可以在数据改变请求中引起编码序列号信息和依赖性信息，响应于哪些数据改变可以进行，并且对数据进行重新形成。

公开(公告)号：WO0195155A3

公开(公告)日：2003-10-02

申请号：PCT/US0117726

申请日：2001-06-01

Applicant: GROOVE NETWORKS INC

Inventor： OZZIE RAYMOND E ,  MOORE KENNETH G ,  RICHARDSON RANSOM L ,  FISCHER EDWARD J

IPC: G06F12/00 ,  G06F17/22 ,  G06F17/27 ,  G06F17/30

CPC classification number: G06F17/30896 ,  G06F17/2205 ,  G06F17/2247 ,  G06F17/272

Abstract: An in-memory storage manager represents XML-compliant documents as a collection of objects in memory. The collection of objects allows the storage manager to manipulate the document, or parts of the document with a consistent interface and to provide for features that are not available in conventional XML documents, such as element attributes with types other than text and documents that contain binary rather than text information. In addition, in the storage manager, the XML-compliant document is associated with a schema document which defines the arrangement of the document elements and attibutes. The schema data associated with a document can contain a mapping between document elements and program code to be associated with each element. The storage manager further has methods for retrieving the code from the element tag. The retrieved code can then be invoked using attributes and content from the associated element and the element then acts like a conventional object. Further, the storage manager allows real-time access by separate process operating in different contexts. The objects that are used to represent the document are constructed from common code found locally in each process. In addition, the data in the objects is also stored in memory local to each process. The local memories are synchronized by means of a distributed memory system that continually equates the data copies of the same element in different processes. Client-specified collections are managed by a separate collection manager. The collection manager maintains a data structure called a "waffle" that represents the XML data structures in tabular form. A record set engine that is driven by user commands propagates a set of updates for a collection to the collection manager. Based on those updates, the collection manager updates index structures and may notify waffle users via the notification system.

Abstract translation: 内存存储管理器将符合XML的文档表示为内存中对象的集合。 对象的集合允许存储管理器使用一致的界面来操纵文档或文档的部分，并提供常规XML文档中不可用的功能，例如除文本之外的类型的元素属性和包含二进制的文档 而不是文本信息。 此外，在存储管理器中，符合XML的文档与定义文档元素和属性的排列的模式文档相关联。 与文档相关联的模式数据可以包含要与每个元素相关联的文档元素和程序代码之间的映射。 存储管理器还具有从元素标签中检索代码的方法。 然后可以使用来自关联元素的属性和内容来调用检索到的代码，然后该元素像传统对象那样起作用。 此外，存储管理器允许通过在不同上下文中操作的单独进程来实时访问。 用于表示文档的对象由每个进程本地发现的通用代码构成。 此外，对象中的数据也存储在每个进程本地的内存中。 本地存储器通过分布式存储器系统进行同步，分布式存储器系统将不同过程中相同元素的数据副本连续地相等。 客户指定的集合由单独的集合管理器管理。 收集管理器维护一个称为“华夫饼”的数据结构，以表格形式表示XML数据结构。 由用户命令驱动的记录集引擎将集合的一组更新传播到集合管理器。 基于这些更新，收集管理器更新索引结构，并可以通过通知系统通知华夫饼干用户。

公开(公告)号：WO2003036474A1

公开(公告)日：2003-05-01

申请号：PCT/US2002/029612

申请日：2002-09-19

Applicant: GROOVE NETWORKS, INC.

Inventor： TAVIS, Michael, A. ,  OZZIE, Jack, E.

IPC: G06F9/445

CPC classification number: G06F8/65

Abstract: A component manager receives requests for component updates from a variety of sources, parses the requests and extracts URL information that identifies the location of a file containing the component resources. The component manager presents the URL to a download manager that asynchronously retrieves the component resources from the specified location and places the file in a staging area. Once the component resources have been downloaded, an install manager, also operating asynchronously from the component manager and the download manager, installs the component update.

Abstract translation: 组件管理器从各种来源接收对组件更新的请求，解析请求并提取标识包含组件资源的文件的位置的URL信息。 组件管理器将URL提供给下载管理器，它从指定的位置异步检索组件资源，并将文件放置在暂存区域中。 一旦组件资源已经下载，也可以从组件管理器和下载管理器异步运行的安装管理器安装组件更新。

公开(公告)号：WO2004017601A3

公开(公告)日：2004-05-13

申请号：PCT/US0315188

申请日：2003-05-14

Applicant: GROOVE NETWORKS INC

Inventor： ZIRCHER WILLIAM E ,  OZZIE JACK E ,  OZZIE RAYMOND E

IPC: G06Q10/10 ,  H04L29/06 ,  H04L29/08 ,  H04L12/18

CPC classification number: H04L63/08 ,  G06Q10/10 ,  H04L29/06 ,  H04L63/104 ,  H04L63/20 ,  H04L67/38 ,  H04L69/329

Abstract: A connection between a secure shared space and an external system is created with a connector tool. The connector tool code is included in an independent agent called a "bot" that is created by a software developer. Bots run in the background in an automated and unattended manner in a specialized enterprise integration server. Each bot has a unique identity and runs under an account assigned to the enterprise integration server. A bot can be invited to a shared space much as another collaborator. Bots can also invite others to shared spaces. All bots running in the enterprise integration server are administered by a centralized administrative control. This allows account and identity policies to be established and global behaviors, including authentication settings, startup options and scope to be determined centrally. The centralized control allows simple installation, configuration and deployment and administrative control of bot operation and access. It also allows for logging and monitoring of system behavior.

Abstract translation: 使用连接器工具创建安全共享空间和外部系统之间的连接。 连接器工具代码包含在由软件开发人员创建的名为“bot”的独立代理中。 Bots在一个专门的企业集成服务器中以自动和无人值守的方式在后台运行。 每个机器人具有唯一的身份，并在分配给企业集成服务器的帐户下运行。 机器人可以作为另一个合作者被邀请到共享的空间。 机器人还可以邀请他人共享空间。 企业集成服务器中运行的所有机器人都通过集中式管理控制进行管理。 这允许建立帐户和身份策略，并集中确定全局行为，包括认证设置，启动选项和范围。 集中控制允许简单的安装，配置和部署以及机器人操作和访问的管理控制。 它还允许记录和监视系统行为。

公开(公告)号：WO0106365A3

公开(公告)日：2003-05-15

申请号：PCT/US0017785

申请日：2000-06-28

Applicant: GROOVE NETWORKS INC

Inventor： OZZIE RAYMOND E ,  MOORE KENNETH G ,  MYHILL ROBERT H ,  LAMBERT BRIAN M

IPC: G06F13/00 ,  G06F15/00 ,  H04L12/18 ,  H04L29/06 ,  H04L29/08 ,  G06F17/60 ,  G06F17/30

CPC classification number: H04L12/1813 ,  H04L29/06 ,  H04L67/14 ,  H04L67/2842 ,  H04L67/38 ,  H04L69/329

Abstract: A communications manager provides communication services for an activity-based collaboration system, in which data change requests comprising deltas are communicated over a network between network-capable devices. The communications manager is operable on a local network capable device for sending locally-generated deltas over the network to at least one remote network-capable device and for receiving remotely-generated deltas over the network from the at least one remote network-capable device. The communications manager can send the deltas via unicasting, muticasting, or broadcasting techniques. The communications manager is responsive to network connection status information indicating that the remote network-capable device is connected to the network for sending the local deltas directly to an address for the remote network-capable device. A presence mechanism maintains and distributes, on request, the network connection status information, which it acquires from each of the network-capable devices. The communications manager is also responsive to the network connection status information indicating that the remote network-capable device is disconnected from the network for sending the local deltas to an address of a relay. The relay stores deltas until the relay is notified that the remote network-capable device has reconnected to the network, and then the relay sends the deltas to the reconnected remote network-capable device.

Abstract translation: 通信管理器为基于活动的协作系统提供通信服务，其中包括三角波的数据改变请求在网络能力设备之间通过网络传送。 通信管理器可在具有本地网络功能的设备上操作，用于通过网络将本地生成的三角洲发送到至少一个具有远程网络功能的设备，并且用于通过所述网络从所述至少一个具有远程网络功能的设备接收远程产生的增量。 通信管理器可以通过单播，多播或广播技术发送三角形。 通信管理器响应于指示远程网络能力设备连接到网络的网络连接状态信息，用于将本地增量直接发送到用于具有远程网络能力的设备的地址。 存在机制根据请求维护和分发从每个具有网络能力的设备获取的网络连接状态信息。 通信管理器还响应于指示远程网络能力设备与网络断开以发送本地增量到中继站的地址的网络连接状态信息。 继电器存储三角形，直到中继通知有远程网络设备已重新连接到网络，然后中继器将三角波发送到重新连接的具有远程网络功能的设备。

公开(公告)号：WO0106364A3

公开(公告)日：2004-05-13

申请号：PCT/US0017759

申请日：2000-06-28

Applicant: GROOVE NETWORKS INC

Inventor： OZZIE RAYMOND E ,  OZZIE JACK E

IPC: G06F12/00 ,  G06F13/00 ,  G06F17/30 ,  G06Q10/10 ,  H04L12/58 ,  H04L29/06 ,  H04L29/08 ,  G06F17/60 ,  H04L29/12

CPC classification number: G06F17/30168 ,  G06Q10/10 ,  H04L29/06 ,  H04L51/043 ,  H04L67/1095 ,  H04L69/329 ,  Y10S707/99952

Abstract: A distributed, activity-based collaboration system can employ a data change request priority scheme for determining an order of execution of data change requests in effecting changes to local copies of data so as to optimize data consistency for collaborative activities. The data change request priority scheme can entail encoding sequence number information and dependency information in the data change requests, responsive to which data changes can be made, unmade and remade to the data.

Abstract translation: 分布式的基于活动的协作系统可以采用数据变更请求优先权方案来确定数据更改请求的执行顺序，从而实现对本地数据副本的更改，从而优化协作活动的数据一致性。 数据改变请求优先权方案可以在数据改变请求中引起编码序列号信息和依赖性信息，响应于哪些数据改变可以进行，并且对数据进行重新形成。

公开(公告)号：WO2004017601A2

公开(公告)日：2004-02-26

申请号：PCT/US2003/015188

申请日：2003-05-14

Applicant: GROOVE NETWORKS, INC.

Inventor： ZIRCHER, William, E. ,  OZZIE, Jack, E. ,  OZZIE, Raymond, E.

IPC: H04L29/06

CPC classification number: H04L63/08 ,  G06Q10/10 ,  H04L29/06 ,  H04L63/104 ,  H04L63/20 ,  H04L67/38 ,  H04L69/329

Abstract: A connection between a secure shared space and an external system is created with a connector tool. The connector tool code is included in an independent agent called a "bot" that is created by a software developer. Bots run in the background in an automated and unattended manner in a specialized enterprise integration server. Each bot has a unique identity and runs under an account assigned to the enterprise integration server. A bot can be invited to a shared space much as another collaborator. Bots can also invite others to shared spaces. All bots running in the enterprise integration server are administered by a centralized administrative control. This allows account and identity policies to be established and global behaviors, including authentication settings, startup options and scope to be determined centrally. The centralized control allows simple installation, configuration and deployment and administrative control of bot operation and access. It also allows for logging and monitoring of system behavior.

Abstract translation:

使用连接器工具创建安全共享空间和外部系统之间的连接。 连接器工具代码被包括在称为“bot”的独立代理中。 这是由软件开发人员创建的。 机器人以自动化和无人看管的方式在后台运行在专门的企业集成服务器中。 每个僵尸程序都具有唯一的身份，并在分配给企业集成服务器的帐户下运行。 bot可以被邀请到共享空间，就像另一个合作者一样。 机器人还可以邀请其他人共享空间。 企业集成服务器中运行的所有僵尸程序都由集中式管理控制进行管理。 这样可以建立帐户和身份策略，并可集中确定全局行为，包括身份验证设置，启动选项和范围。 集中控制允许简单的安装，配置和部署以及对机器人操作和访问的管理控制。 它还允许记录和监视系统行为。

公开(公告)号：WO0188674A3

公开(公告)日：2003-07-24

申请号：PCT/US0114093

申请日：2001-05-02

Applicant: GROOVE NETWORKS INC

Inventor： TUVELL WALTER ,  ASTHAGIRI NIMISHA

IPC: G06F21/20 ,  G06F21/00 ,  G09C1/00 ,  H04L9/08 ,  H04L9/32 ,  H04L29/06 ,  G06F1/00 ,  G06F9/44 ,  G06F9/445

CPC classification number: H04L63/062 ,  G06F21/6218 ,  H04L9/0822 ,  H04L9/0825 ,  H04L9/0833 ,  H04L9/0891 ,  H04L12/1822 ,  H04L63/065 ,  H04L63/123 ,  H04L63/126

Abstract: Different levels of security are provided in a security system so that users can decide the security level of their own communications. Users can choose a low level of security and maintain the security overhead as low as possible. Alternatively, they can choose higher levels of security with attendant increases in security overhead. The different levels of security are created by the use of one or more of two keys: an encryption key is used to encrypt plaintext data in a delta and a message authentication key is used to authenticate and insure integrity of the data. Two keys are used to avoid re-encrypting the encrypted data for each member of the telescape. In one embodiment, the security level is determined when a telespace is created and remains fixed through out the life of the telespace. For a telespace, the security level may range from no security at all to security between the members of the telespace and outsiders to security between pairs of members of the telespace. In another embodiment, subgroups called "tribes" can be formed within a telespace and each tribe adopts the security level of the telespace in which it resides.

Abstract translation: 在安全系统中提供不同级别的安全性，以便用户可以决定自己通信的安全级别。 用户可以选择低级别的安全性，并尽可能保持安全开销。 或者，他们可以选择更高级别的安全性，伴随着安全开销的增加。 通过使用两个密钥中的一个或多个来创建不同级别的安全性：加密密钥用于加密增量中的明文数据，并且消息认证密钥用于认证和确保数据的完整性。 两个密钥用于避免重新加密每个成员的加密数据。 在一个实施例中，当创建电话空间时确定安全级别，并通过电话空间的寿命保持固定。 对于电话空间，安全级别的范围从电话空间和外部成员之间的安全性到电话空间成员成员之间的安全性无关。 在另一个实施例中，可以在远程空间内形成称为“部落”的子组，并且每个部落都采用其驻留的电话空间的安全级别。