Famous Patents
The first commercial microwave oven was nearly 6 feet tall and weighed in at 750 pounds.
PatentStorm News
Make the Most of Our Site
See this month's Top Inventors and Most Cited Patents.
Stay on top of the latest innovations by subscribing to an RSS feed.
Registered users: Manage your profile.
| Number | Title | Issue Date |
| 7249378 | Firewall providing enhanced network security and user transparency The present invention provides a firewall that achieves maximum network security and maximum user convenience. The firewall employs “envoys” that exhibit the security robustness of prior-art proxies and the transparency and ease-of-use of prior-art packet filter... | 07/24/2007 |
| 7248563 | Method, system, and computer program product for restricting access to a network using a network communications device A system, method, and computer program product are disclosed for restricting access to a network using a network communications device. The network communications device includes multiple ports for providing access to a data processing system to the network. A speci... | 07/24/2007 |
| 7246370 | PDstudio design system and method A policy developer studio comprising: a meta-policy core of network objects, a policy developer graphical user interface (GUI) tool for providing a front end to a policy language, an output in XML, a compiled output for a policy engine, and an output in human readab... | 07/17/2007 |
| 7246376 | Method and apparatus for security management in a networked environment In a networked environment, where multiple Internet Service Providers and multi-vendor equipment are involved in e-Business services and applications offering, the risk of overloading the Internet devices are real and security management is a challenge. Internet dev... | 07/17/2007 |
| 7240366 | End-to-end authentication of session initiation protocol messages using certificates End-to-end authentication capability based on public-key certificates is combined with the Session Initiation Protocol (SIP) to allow a SIP node that receives a SIP request message to authenticate the sender of request. The SIP request message is sent with a digital... | 07/03/2007 |
| 7237259 | Fault reducing firewall system Disclosed are two mechanisms for preventing access failures attributable to dynamic port assignment of firewall-blocked ports. The mechanism involves an enhanced firewall that opens blocked ports prior to possible dynamic allocation so that the blocked ports are not... | 06/26/2007 |
| 7237258 | System, method and computer program product for a firewall summary interface A system, method and computer program product are provided for summarizing firewall activity. Initially, a plurality of types of events associated with a firewall of a local computer is organized. Further, a number of occurrences of each type of event is tracked uti... | 06/26/2007 |
| 7237257 | Leveraging a persistent connection to access a secured service Leveraging a persistent connection to provide a client access to a secured service may include establishing a persistent connection with a client in response to a first request from the client, and brokering a connection between the client and a secured service base... | 06/26/2007 |
| 7237263 | Remote management of properties, such as properties for establishing a virtual private network A facility in a single manager computer system for managing properties for a plurality of managed computer systems is described. The facility reiteratively receives new managed properties for an identified managed computer system. In response, the facility delivers ... | 06/26/2007 |
| 7237267 | Policy-based network security management A policy-based network security management system is disclosed. In one embodiment, the system comprises a security management controller comprising one or more processors; a computer-readable medium carrying one or more sequences of instructions for policy-based net... | 06/26/2007 |
| 7237260 | Method for dynamic selection for secure and firewall friendly communication protocols between multiple distributed modules Distributed modules in a network dynamically select communication protocols to communicate in a secure or firewall-protected network. Applications register with a lookup service. The lookup service maintains a lookup table including registration information for mult... | 06/26/2007 |
| 7228564 | Method for configuring a network intrusion detection system Disclosed is a method for configuring an intrusion detection system in a network which comprises determining a location in the network for a deployed intrusion detection sensor of the intrusion detection system, deploying the intrusion detection sensor in the determ... | 06/05/2007 |
| 7228562 | Stream server apparatus, program, and NAS device A stream server that includes a first interface for transmitting and receiving packets to and from a client apparatus belonging to a particular network without involvement of a firewall apparatus and for transmitting and receiving packets to and from the client appa... | 06/05/2007 |
| 7225255 | Method and system for controlling access to network resources using resource groups A method and device for configuring a firewall in a computer system employing a rule for controlling access between a source resource and a destination resource only if said source and destination resources belong to the same protection domain. At a central configur... | 05/29/2007 |
| 7225332 | Methods and apparatus to perform cryptographic operations on received data Cryptographic operations are performed on data packets received by an electronic system. To improve system performance, incoming packets are associated with a security association and offloaded to dedicated crypto functions, such as Inline Receive or other available... | 05/29/2007 |
| 7219225 | Network arrangement for communication A method for secure communication between a first end terminal located in a first secure network and a second end terminal located in a second secure network, said first and second networks being separated by a relatively insecure intermediate network, wherein the m... | 05/15/2007 |
| 7216361 | Adaptive multi-tier authentication system An adaptive multi-tier authentication system provides secondary tiers of authentication which are used only when the user attempts a connection from a new environment. The invention accepts user input such as login attempts and responses to the system's questions. U... | 05/08/2007 |
| 7216158 | System, method and interface for controlling server lifecycle The current structure for starting and shutting down a server is complicated and affords little administrative control. A server must be started in one long-running step and cannot be shutdown without risk of disrupting in-flight work. The ability to bring up a serv... | 05/08/2007 |
| 7216175 | System and method for determining subscriber information A system for determining subscriber information includes an access server coupled to a number of subscribers using a communication network, a memory coupled to the access server, and a processor coupled to the memory. The access server receives a communication from ... | 05/08/2007 |
| 7216236 | Secure session management and authentication for web sites The present invention comprises a system and method for secure session management and authentication between web sites and web clients. The method includes both secure and non-secure communication protocols, means for switching between secure and non-secure communic... | 05/08/2007 |
| 7213263 | System and method for secure network mobility A system and method are provided for use in maintaining secure communications between a home network and a mobile client when the client roams outside of the home network to a new location. One method of the present invention includes the steps of: establishing a ne... | 05/01/2007 |
| 7209929 | Java object cache server for databases A cache server is provided in a network for storing Java objects for retrieval by one or multiple application servers. Application server(s) are configured to request an object from the cache server, rather than requesting the Java object directly from a database, s... | 04/24/2007 |
| 7209962 | System and method for IP packet filtering based on non-IP packet traffic attributes Control and management of communication traffic. IP packet filtering occurs in an operating system kernel implementation of, for example, the TCP/IP protocol suite. Access rules are expressed as filters referencing system kernel data; for outbound processing, source... | 04/24/2007 |
| 7209449 | Systems and methods for updating routing and forwarding information A forwarding system including a plurality of forwarding elements to receive and transmit data and a control element to receive and process route updates, the control element being connected to the forwarding elements and including at least one route management compo... | 04/24/2007 |
| 7207061 | State machine for accessing a stealth firewall A stealth firewall. The stealth firewall can include a first network interface to an external network; a second network interface to an internal network; a packet filter for restricting access to the internal network, the packet filter ignoring requests from the ext... | 04/17/2007 |
| 7206932 | Firewall-tolerant voice-over-internet-protocol (VoIP) emulating SSL or HTTP sessions embedding voice data in cookies A voice-over-Internet-Protocol (VoIP) client codes audio data as printable ASCII characters, then embeds the ASCII audio data inside a cookie that is sent over the Internet within an HTTP GET message. The GET message is sent to a server acting as a call proxy or ext... | 04/17/2007 |
| 7207062 | Method and apparatus for protecting web sites from distributed denial-of-service attacks An Internet Service Provider (ISP), in consideration of being remunerated in some manner by a site, determines whether packets destined to that site conform to a profile provided to the ISP by that site. The profile, indicates, for example, what protocols are allowe... | 04/17/2007 |
| 7206862 | Method and apparatus for efficiently matching responses to requests previously passed by a network node A method and system are disclosed for efficiently matching incoming packets to previously forwarded outgoing packets within a network node to ensure a response received by a network node corresponds to a previously forwarded request. The network node receives an out... | 04/17/2007 |
| 7206749 | Method and system for selling content This invention provides a method and a system for selling content capable of ensuring a fair profit of a copyrighter of a creation in content. More specifically, this invention provides a method and a system for selling content for judging whether an user terminal h... | 04/17/2007 |
| 7203656 | Computer apparatus and methods supporting different categories of users A central computer system preferably communicates with local computers of users over the Internet and stores account information of users. Preferably, users may interact with information provided by the central computer system or third party computer systems. The av... | 04/10/2007 |
| 7203963 | Method and apparatus for adaptively classifying network traffic A method of adaptively classifying information using a binary tree comprises establishing a binary tree including a set of binary sequences each representing one or more network addresses. Once network traffic is received having identifiers describing network traffi... | 04/10/2007 |
| 7203166 | Method for providing voice-over-IP service A system and method, i.e. Voice Proxy Server (VPS) is invented for managing Voice over IP (VoIP) services between a NAT enabled private network and a public network such as the Internet. The VPS acts like the Call Agent to the nodes in the private network and it rep... | 04/10/2007 |
| 7200105 | Systems and methods for point of ingress traceback of a network attack An apparatus (520) for archiving signatures associated with packets received at a node in a network includes a first memory (620), a second memory (625), a signature tap (610), a multiplexer (615), and a controller (630). Th... | 04/03/2007 |
| 7200865 | Method and system for communication control in a computing environment An access control system for a computing environment in which a number of processing nodes are interconnected to one another via an interconnection system. Multiple program applications, each made up of a number of application components, are installed in the enviro... | 04/03/2007 |
| 7197766 | Security with authentication proxy An arrangement to accomplish authentication of end-users (1) and end-points (1) in a packet based network, which includes components that support all or parts of different versions of the H.323 recommended standard, be proposed. Authentication is accom... | 03/27/2007 |
| 7197660 | High availability network security systems A system and method for a network security system are provided. The method includes providing a master device and a backup device within a cluster of network security devices, providing the backup device with state information for the master device, detecting failur... | 03/27/2007 |
| 7197037 | Device and system for message processing In a message processing system, a plurality of vehicles or other locations are equipped with message processing devices and transmit and receive a message. The message has a header and a body. The header includes a valid duration and/or a valid zone specified by var... | 03/27/2007 |
| 7197631 | System and method for constructing a user application's advanced configuration and power interface (ACPI) namespace A system and method for constructing a user application's Advanced Configuration and Power Interface (ACPI) namespace in a computer platform employing an ACPI-compatible implementation is disclosed. A traversing function is operable to traverse a kernel ACPI namespa... | 03/27/2007 |
| 7197769 | Methods and systems for screening input strings intended for use by Web servers Methods and systems of screening input strings that are intended for use by a Web server are described. In the described embodiment, an attack pattern is determined that can be used to attack a Web server. A search pattern is defined that can be used to detect the a... | 03/27/2007 |
| 7194541 | Service selection gateway (SSG) allowing access of same services to a group of hosts A service selection gateway (SSG) which enables a service provider to conveniently provide access of the same services to a group of hosts. The service provider may specify the specific services each group of hosts is permitted to access, and the SSG forwards packet... | 03/20/2007 |
