Quotables
"I hate what they've done to my child...I would never let my own children watch it. "
Vladimir Zworykin, television pioneer ; Talking about an invention in which he played a critical role.
PatentStorm News
Make the Most of Our Site
See this month's Top Inventors and Most Cited Patents.
Stay on top of the latest innovations by subscribing to an RSS feed.
Registered users: Manage your profile.
| Number | Title | Issue Date |
| 8191134 | Lockless distributed IPsec processing According to one embodiment of the invention, a plurality of IPsec packets belonging to a single IPsec tunnel are received. Different ones of the plurality of IPseck packets are distributed to different ones of a plurality of processing cores of a network element. A... | 05/29/2012 |
| 8185946 | Wireless firewall with tear down messaging Methods of screening incoming packets are provided. A first firewall detects a tunnel formation. A second firewall maintains a list of open firewall sessions. Each tunnel has one or more associated firewall sessions. The first firewall detects variable situations, s... | 05/22/2012 |
| 8185945 | Systems and methods for selectively requesting certificates during initiation of secure communication sessions An exemplary method involves an SSL server receiving an SSL session request from an SSL client. It is determined whether the SSL client is going to use certificate-based authentication. This may involve identifying a port at which the SSL session request was receive... | 05/22/2012 |
| 8176545 | Integrated policy checking system and method A system and method are provided for validating a security service associated with packets communicated on a network. A hash of a security service associated with packets communicated on a network is generated. In use, the security service associated with the packet... | 05/08/2012 |
| 8171540 | Method and system for E-mail management of E-mail having embedded classification metadata A method and system method for e-mail management of e-mails having embedded classification metadata. A query from an end user to access an e-mail account by an e-mail client is received. It is then determined whether the query has come from an insecure e-mail client... | 05/01/2012 |
| 8161541 | Ethernet connectivity fault management with user verification option An access node (e.g., DSLAM, OLT/ONT) is described herein that implements a trust verification method comprising the steps of: (a) filtering an up-stream message initiated by a non-trusted device (e.g., CPE); (b) intercepting the filtered up-stream message if the fi... | 04/17/2012 |
| 8161542 | Wireless perimeter security device and network using same A Radio Frequency based security system for providing security for wireless Local Area Networks (WLAN) that allows the creation and maintenance of arbitrarily shaped secure wireless access areas with boundaries around said wireless Local Area Network and prevents ac... | 04/17/2012 |
| RE43302 | E-mail firewall with stored key encryption/decryption An e-mail firewall (105) applies policies to e-mail messages (204) between a first site and a plurality of second sites in accordance with a plurality of administrator selectable policies (216). The firewall comprises a simple mail transfer prot... | 04/03/2012 |
| 8141144 | Security policy management for network devices The present invention provides a system and method for use within a computer network that allows for automated provisioning, configuration, and maintenance of the servers and other devices connected to a computer network in accordance with established policies. This... | 03/20/2012 |
| 8132252 | System and method for securely transmitting data using video validation A system and method is disclosed for secure transmission of electronic information between two parties. A first data communication session between a first computing device and a second computing device, wherein the first data communication session is via a first com... | 03/06/2012 |
| 8127348 | Method and arrangement for providing security through network address translations using tunneling and compensations This invention provides a method for providing network security services, such as those provided by the IPSEC protocol, through network address translation (NAT). The method is based on determining the transformations that occur on a packet and compensating for the ... | 02/28/2012 |
| 8104080 | Universal schema for representing management policy A computer-readable storage medium has a data structure stored thereon for constructing expressions representing software configurations to be applied to software. The data structure includes a first data field including data identifying a name of software setting f... | 01/24/2012 |
| 8099777 | High security, multi-level processor and method of operating a computing system A computing system can be optimized for high security, reliability and/or integrity. The computing system can include a multiple instruction stream, single data stream processor. The multiple instruction stream, single data stream processor can include a master inst... | 01/17/2012 |
| 8091125 | Method and system for performing asynchronous cryptographic operations A system and method for performing asynchronous cryptographic operations. A cryptographic toolkit receives requests for cryptographic operations, and initiates the cryptographic operations within a thread of execution. The toolkit detects when the cryptographic oper... | 01/03/2012 |
| 8082581 | Management of session timeouts in an SSL VPN gateway A network device may manage communication sessions with clients so that attempts at the client to automatically keep the session alive can be ignored for purposes of timing out the session. The device may examine resource requests received from the client as uniform... | 12/20/2011 |
| 8082580 | Session layer pinhole management within a network security device In general, techniques are described for performing session layer pinhole management within a network security device. In accordance with the techniques, the network device includes a resource manager module and a Session Initiation Protocol (SIP) module. The SIP mo... | 12/20/2011 |
| 8074269 | System and method for controlling devices at a location A system and method for controlling, by an outside entity, one or more devices associated with a location. A representative embodiment of the system architecture comprises an internal computer system through which a device may be remotely controlled by the outside e... | 12/06/2011 |
| 8065722 | Semantically-aware network intrusion signature generator An automatic technique for generating signatures for malicious network traffic performs a cluster analysis of known malicious traffic to create a signature in the form of a state machine. The cluster analysis may operate on semantically tagged data collected by conn... | 11/22/2011 |
| 8065723 | Network communication device A disclosed network communication device corresponds to IP communications and is capable of performing IPsec communication. The network communication device includes a setting unit configured to obtain and set an operation mode specified by an administrator user; a ... | 11/22/2011 |
| 8046830 | Systems and methods for network disruption shielding techniques The present invention is generally directed towards a remote access architecture for providing peer-to-peer communications and remote access connectivity. In one embodiment, the remote access architecture of the present provides a method for establishing a direct co... | 10/25/2011 |
| 8046829 | Method for dynamically and securely establishing a tunnel A system and method is disclosed for dynamically and securely establishing a tunnel for a mobile device. In the preferred embodiments, the system and method operate to dynamically assign one or more tunnel endpoint addresses to a client which is not on the same IP-l... | 10/25/2011 |
| 8042172 | Remote access architecture enabling a client to perform an operation Enabling a client computer to perform an operation is disclosed. Login information is received from a client computer. The login information is confirmed by querying a trusted agent on the client computer. ... | 10/18/2011 |
| 8037520 | Communications systems firewall Methods, apparatus, programs and signals for providing communications network security. The approach is based on using established “standard” protocols, but packets (or cells or frames) are deliberately malformed by the sender, optionally according to a predeter... | 10/11/2011 |
| 8032934 | Network security system and the method thereof The present invention discloses a network security system including a firewall arranged between the internal network and the external network, and a trusted node arranged between the firewall and the external network, which is used to provide a data channel between ... | 10/04/2011 |
| 8024788 | Method and apparatus for reliable, high speed data transfers in a high assurance multiple level secure environment A method and apparatus for passing data from a first application at a first security level to a second application in a second security level higher than the first security level is disclosed. A backchannel communications link is established between the first applic... | 09/20/2011 |
| 8020202 | Firewall interface configuration to enable bi-directional VoIP traversal communications Methods and systems for an intelligent network protection gateway (NPG) and network architecture are provided. According to one embodiment, a firewall provides network-layer protection to internal hosts against unauthorized access by hosts of an external network by ... | 09/13/2011 |
| 8015603 | Method and mobile node for packet transmission in mobile internet protocol network A method for packet transmission in an MIP network is disclosed. A mobile node sends to a Home Agent (HA) a first Firewall Detection (FD) packet encapsulated with IP security (IPsec) protocol and a second FD packet encapsulated with the IPsec protocol and User Datag... | 09/06/2011 |
| 7987505 | Apparatus and method for triggering session re-negotiation between access network and access terminal in a high rate packet data system The invention relates to a method for triggering re-negotiation of a session when an Access Terminal moves from one access network (source AN) to another access network (target AN) having different capabilities in high rate packet data system. According to an exempl... | 07/26/2011 |
| 7984494 | Computer system establishing a safe communication path Provided is a computer system including: a first computer; a second computer including a second processor and a second memory; and a communication controller for controlling communication between the first and second computers, in which: upon reception of a packet f... | 07/19/2011 |
| 7958551 | Information processing apparatus and a computer usable medium therefor An information processing apparatus, including a storage device a security list, wherein a security level of each of communication protocols installed in a network is listed, a status management list, which describes validity of each communication protocol, and a pr... | 06/07/2011 |
| 7941842 | Method and apparatus for a non-revealing do-not-contact list system A method and apparatus to protect a master do-not-email list from being compromised. A set of one or more false email addresses that each point to an email account that is not used for any email is created for a client and is unique to the client. An encryption sche... | 05/10/2011 |
| 7941841 | Firewall-tolerant voice-over-internet-protocol (VoIP) emulating SSL or HTTP sessions embedding voice data in cookies A voice-over-Internet-Protocol (VoIP) client codes audio data as printable ASCII characters, then embeds the ASCII audio data inside a cookie that is sent over the Internet within an HTTP GET message. The GET message is sent to a server acting as a call proxy or ext... | 05/10/2011 |
| 7941840 | Secure resource access A method, computer readable media, and system for providing a first network resource with secure but limited access to a second network resource. A method embodiment of the invention includes associating a check with data identifying an expected source of a future r... | 05/10/2011 |
| 7934252 | Filtering technique for processing security measures in web service messages A message gateway apparatus is provided for use in a web service system to process a message containing a request for a destination web service application, in which the message includes a plurality of events within a structured document conforming to a web service ... | 04/26/2011 |
| 7917946 | Method and network for securely delivering streaming data In a procedure for delivering streaming media, a Client first requests the media from an Order Server. The Order Server authenticates the Client and sends a ticket to the Client. Then, the Client sends the ticket to a Streaming Server. The Streaming Server checks th... | 03/29/2011 |
| 7895648 | Reliably continuing a secure connection when the address of a machine at one end of the connection changes An end machine (connected to one end of secure connection) may reliably continue to use the security association (SA) even if the self_address (usually the address of the interface) of the end machine changes. The end machine includes the new IP address in the paylo... | 02/22/2011 |
| 7886353 | Accessing a USB host controller security extension using a HCD proxy Systems and methods for enabling trusted software to monitor and control USB traffic associated with a security extension of a host controller and devices in a USB topology is disclosed. A host controller proxy receives USB-related data from a host controller driver... | 02/08/2011 |
| 7873994 | Management of session timeouts in an SSL VPN gateway A network device may manage communication sessions with clients so that attempts at the client to automatically keep the session alive can be ignored for purposes of timing out the session. The device may examine resource requests received from the client as uniform... | 01/18/2011 |
| 7865946 | Data transmission controlling method and data transmission system Disclosed herein is a data transmission system permitting secure and more reliable transmission of data from a data transmitter to a data receiver or receivers. The system comprises: a data transmitter for encrypting data and transmitting the encrypted data; data re... | 01/04/2011 |
| 7853999 | Trusted operating environment for malware detection Techniques and apparatuses for scanning a computing device for malware are described. In one implementation, a trusted operating environment, which includes a trusted operating system and a trusted antivirus tool, is embodied on a removable data storage medium. A co... | 12/14/2010 |
