专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

11. 发明授权

US07174456B1 Fast authentication and access control method for mobile networking 有权
标题翻译：移动网络的快速认证和访问控制方法
公开(公告)号：US07174456B1
公开(公告)日：2007-02-06
申请号：US10146383
申请日：2002-05-14
申请人： Paul Shala Henry , Zhimei Jiang , Hui Luo
发明人： Paul Shala Henry , Zhimei Jiang , Hui Luo
IPC分类号： H04L9/00
CPC分类号： H04L9/3268 , H04L63/0428 , H04L63/0823 , H04L63/0892 , H04L63/108 , H04L2209/80 , H04W12/06 , H04W12/08 , H04W36/0038
摘要： A fast authentication and access control method of authenticating a network access device to a communications network having an access point communicating with a remote authentication (home AAA) server for the network access device. The method includes the step of receiving an access request having an authentication credential from the network access device at the access point. The authentication credential includes a security certificate having a public key for the network access device and an expiration time. The security certificate is signed with a private key for the remote authentication server. The access point locally validates the authentication credential by accessing the public key of the remote authentication server from a local database, and checking the signature and expiration time of the security certificate. If the authentication credential is validated at the access point, the access point grants the network access device conditional access to the network by sending an access granted message to the network access device. The access granted message includes a session key encrypted with a public key for the network access device. The session key is stored in a database associated with the access point. The access point contacts the remote authentication server to check a revocation status of the security certificate for the network access device. If the access point receives a message from the remote authentication server that the authentication credential for the network access device has been revoked, it suspends network access for the network access device.
摘要翻译：一种用于向具有与用于网络接入设备的远程认证（家庭AAA）服务器通信的接入点的通信网络）认证网络接入设备的快速认证和接入控制方法。该方法包括在接入点从网络接入设备接收具有认证凭证的接入请求的步骤。认证凭证包括具有用于网络访问设备的公钥的安全证书和到期时间。安全证书使用远程认证服务器的私钥进行签名。访问点通过从本地数据库访问远程认证服务器的公钥，并检查安全证书的签名和到期时间来本地验证认证凭证。如果验证凭证在接入点被验证，则接入点通过向网络接入设备发送访问许可消息来授权网络访问设备对网络的条件访问。访问许可消息包括用网络访问设备的公开密钥加密的会话密钥。会话密钥存储在与接入点相关联的数据库中。接入点与远程认证服务器联系，检查网络接入设备的安全证书的撤销状态。如果接入点从远程认证服务器接收到网络接入设备的认证凭证已经被撤销的消息，则它挂起网络接入设备的网络接入。

12. 发明授权

US07046678B2 Channel efficiency based packet scheduling for interactive data in cellular networks 失效
公开(公告)号：US07046678B2
公开(公告)日：2006-05-16
申请号：US09783977
申请日：2001-02-16
申请人： Zhimei Jiang , Nemmara K. Shankaranarayanan
发明人： Zhimei Jiang , Nemmara K. Shankaranarayanan
IPC分类号： H04L12/56
CPC分类号： H04W72/1231
摘要： The present packet scheduling algorithm gives cellular network operators greater flexibility in adjusting the way resources are allocated among interactive best-effort data users. Best effort data users with different radio link qualities may have different amounts of data delivered to them using the same amount of radio resource. In the context of link adaptation, this characteristic complicates the fairness issue in cellular environments and has a profound impact on the overall system performance. As a result, the present packet scheduling algorithm is capable of allocating radio resource dynamically, not only based on channel conditions, but also to achieve different performance trade-offs among users with different link qualities. According to the algorithm, channel quality is determined for each user, channel efficiency is calculated and the channel efficiency value is used as the primary factor in weighting the delivery of packets to (or from) a given user. In a packet schedule weighting equation, a value of exponent may be varied from negative to positive to give good (or bad) users better service. However, performance of users with bad channel qualities degrades the performance of good channel users in a disproportionate manner. It is shown that it is frequently preferable to favor users with good channel qualities.

13. 发明授权

US06385641B1 Adaptive prefetching for computer network and web browsing with a graphic user interface 失效
标题翻译：使用图形用户界面进行计算机网络和网络浏览的自适应预取
公开(公告)号：US06385641B1
公开(公告)日：2002-05-07
申请号：US09092108
申请日：1998-06-05
申请人： Zhimei Jiang , Leonard Kleinrock
发明人： Zhimei Jiang , Leonard Kleinrock
IPC分类号： G06F1516
CPC分类号： H04L29/06 , H04L67/02 , H04L67/2847
摘要： The present invention is based on a prefetching scheme consisting of two modules: a prediction module and a threshold module. After a use's request for a new file is satisfied, the prediction module immediately updates a database of history information if needed, and computes the access probability for each candidate file, where the access probability of a file is an estimate of the probability with which that file will be requested by the user in the near future. Next the threshold module determines the prefetch threshold for each related server, which contains at least one candidate file with nonzero access probability. The threshold is determined in real time based on then current network conditions. Finally, each file whose access probability exceeds or equals its server's prefetch threshold is prefetched. When prefetching a file, the file is actually downloaded if and only if no up-to-date version of the file is available on the local computer; otherwise no action is taken. Although web browsing is an important application for prefetching, the prefetch scheme of the present invention may be advantageously applied to any network application in which prefetching is possible.
摘要翻译：本发明基于由两个模块组成的预取方案：预测模块和阈值模块。在满足对新文件的使用请求之后，如果需要，预测模块立即更新历史信息的数据库，并且计算每个候选文件的访问概率，其中文件的访问概率是该文件的概率的估计文件将在不久的将来由用户请求。接下来，阈值模块确定每个相关服务器的预取阈值，其包含至少一个具有非零访问概率的候选文件。基于当前的网络条件，实时确定阈值。最后，访问概率超过或等于其服务器预取阈值的每个文件被预取。当预取文件时，当且仅当本地计算机上没有可用的文件的最新版本时，该文件才会实际下载; 否则不采取任何行动。虽然web浏览是预取的重要应用，但是本发明的预取方案可以有利地应用于可能进行预取的任何网络应用。

14. 发明授权

US08065518B1 Fast authentication and access control system for mobile networking 有权
标题翻译：用于移动网络的快速认证和访问控制系统
公开(公告)号：US08065518B1
公开(公告)日：2011-11-22
申请号：US11047905
申请日：2005-02-01
申请人： Paul Shala Henry , Zhimei Jiang , Hui Luo
发明人： Paul Shala Henry , Zhimei Jiang , Hui Luo
IPC分类号： H04L9/00
CPC分类号： H04L63/0823 , H04L9/3268 , H04L63/0442 , H04L63/062 , H04L63/108 , H04W12/06 , H04W12/08 , H04W36/0038
摘要： A fast authentication and access control method of authenticating a network access device to a communications network having an access point communicating with a remote authentication (home AAA) server for the network access device. The method includes the step of receiving an access request having an authentication credential from the network access device at the access point. The authentication credential includes a security certificate having a public key for the network access device and an expiration time. The security certificate is signed with a private key for the remote authentication server. The access point locally validates the authentication credential by accessing the public key of the remote authentication server from a local database, and checking the signature and expiration time of the security certificate. If the authentication credential is validated at the access point, the access point grants the network access device conditional access to the network by sending an access granted message to the network access device. The access granted message includes a session key encrypted with a public key for the network access device. The session key is stored in a database associated with the access point. The access point contacts the remote authentication server to check a revocation status of the security certificate for the network access device. If the access point receives a message from the remote authentication server that the authentication credential for the network access device has been revoked, it suspends network access for the network access device.
摘要翻译：一种用于向具有与用于网络接入设备的远程认证（家庭AAA）服务器通信的接入点的通信网络）认证网络接入设备的快速认证和接入控制方法。该方法包括在接入点从网络接入设备接收具有认证凭证的接入请求的步骤。认证凭证包括具有用于网络访问设备的公钥的安全证书和到期时间。安全证书使用远程认证服务器的私钥进行签名。访问点通过从本地数据库访问远程认证服务器的公钥，并检查安全证书的签名和到期时间来本地验证认证凭证。如果验证凭证在接入点被验证，则接入点通过向网络接入设备发送访问许可消息来授权网络访问设备对网络的条件访问。访问许可消息包括用网络访问设备的公开密钥加密的会话密钥。会话密钥存储在与接入点相关联的数据库中。接入点与远程认证服务器联系，检查网络接入设备的安全证书的撤销状态。如果接入点从远程认证服务器接收到网络接入设备的认证凭证已经被撤销的消息，则它挂起网络接入设备的网络接入。

15. 发明申请

US20100299523A1 MOBILE HOST USING A VIRTUAL SINGLE ACCOUNT CLIENT AND SERVER SYSTEM FOR NETWORK ACCESS AND MANAGEMENT 有权
标题翻译：移动主机使用虚拟单一帐户客户端和服务器系统进行网络访问和管理
公开(公告)号：US20100299523A1
公开(公告)日：2010-11-25
申请号：US12845449
申请日：2010-07-28
申请人： Paul Shala Henry , Zhimei Jiang , Hui Luo , Frederick Kenneth Schmidt, JR.
发明人： Paul Shala Henry , Zhimei Jiang , Hui Luo , Frederick Kenneth Schmidt, JR.
IPC分类号： H04L9/32
CPC分类号： G06F21/31 , G06Q40/00 , H04L9/0863 , H04L9/3226 , H04L63/0815 , H04L63/083 , H04L2209/80
摘要： A Virtual Single Account (VSA) system and method that provides a mobile user with automatic authentication and connection to a remote network via local access networks with a single password, where the local access networks may be independent of the remote network. A mobile user has a single authentication credential for one VSA that is utilized by a VSA client installed on a mobile computing device. The VSA client provides for automatically authenticating and connecting the user's mobile device to a current local access network, and the target remote network such as the user's office network. All authentication credentials are encrypted using a key generated from the user's VSA password that is generated from the user's single password. The VSA client derives the key from the submitted VSA password and decrypts all authentication credentials that are required in order to connect the mobile device to the current local access network and thereafter to the office network.
摘要翻译：虚拟单一帐户（VSA）系统和方法，其通过具有单个密码的本地接入网络向移动用户提供自动认证和连接到远程网络，其中本地接入网络可以独立于远程网络。移动用户具有用于安装在移动计算设备上的VSA客户端使用的一个VSA的单个认证凭证。 VSA客户端提供自动认证和连接用户的移动设备到当前的本地接入网络，以及目标远程网络，如用户的办公室网络。所有认证凭证都是使用从用户的单一密码生成的用户的VSA密码生成的密钥加密的。 VSA客户端从提交的VSA密码中获取密钥，并解密所需的所有认证凭据，以便将移动设备连接到当前的本地接入网络，然后再到办公室网络。

16. 发明申请

US20090022152A1 SYSTEM AND METHOD TO SUPPORT NETWORKING FUNCTIONS FOR MOBILE HOSTS THAT ACCESS MULTIPLE NETWORKS 失效
标题翻译：用于支持接入多个网络的移动网络的网络功能的系统和方法
公开(公告)号：US20090022152A1
公开(公告)日：2009-01-22
申请号：US12242771
申请日：2008-09-30
申请人： Paul Shala Henry , Zhimei Jiang , Byoung-Jo J. Kim , Kin K. Leung , Hui Luo , Nemmara K. Shankaranarayanan
发明人： Paul Shala Henry , Zhimei Jiang , Byoung-Jo J. Kim , Kin K. Leung , Hui Luo , Nemmara K. Shankaranarayanan
IPC分类号： H04L12/56 , H04L9/00
CPC分类号： H04L29/1233 , H04L29/125 , H04L61/2564 , H04L61/2592 , H04L63/0272 , H04L63/0815 , H04L63/164 , H04L69/18 , H04W12/06 , H04W80/04 , H04W88/08
摘要： An IP-based corporate network architecture and method for providing seamless secure mobile networking across office WLAN, home WLAN, public WLAN, and 2.5 G/3 G cellular networks for corporate wireless data users. The system includes Internet roaming clients (IRCs), a secure mobility gateway (SMG), optional secure IP access (SIA) gateways, and a virtual single account (VSA) server. The IRC is a special client tool installed on a mobile computer (laptop or PDA) equipped with a WLAN adaptor and a cellular modem. It is responsible for establishing and maintaining a mobile IPsec tunnel between the mobile computer and a corporate intranet. The SMG is a mobile IPsec gateway installed between the corporate intranet and the Internet. It works in conjunction with the IRC to maintain the mobile IPsec tunnel when the mobile computer is connected on the Internet via a home WLAN, a public WLAN, or a cellular network. The SIA gateway is a special IPsec gateway installed in the middle of the wired corporate intranet and an office WLAN. It works with the IRC to ensure data security and efficient use of corporate IP addresses when the mobile computer is connected to the office WLAN. The VSA server manages authentication credentials for every corporate user based on a virtual single account concept. The Internet Roaming system can provide secure, always-on office network connectivity for corporate users no matter where they are located using best available wireless networks.
摘要翻译：一种基于IP的企业网络架构和方法，用于为企业无线数据用户提供跨办公室WLAN，家庭WLAN，公共WLAN和2.5 G / 3G蜂窝网络的无缝安全移动网络。该系统包括互联网漫游客户端（IRC），安全移动网关（SMG），可选的安全IP接入（SIA）网关和虚拟单一帐户（VSA）服务器。 IRC是安装在配有WLAN适配器和蜂窝调制解调器的移动计算机（笔记本电脑或PDA）上的特殊客户端工具。它负责在移动计算机和公司内部网之间建立和维护移动IPsec隧道。 SMG是安装在企业内部网和互联网之间的移动IPsec网关。它与IRC一起工作，以便在移动计算机通过家庭WLAN，公共WLAN或蜂窝网络在因特网上连接时维护移动IPsec隧道。 SIA网关是安装在有线企业内部网和办公室WLAN中间的专用IPsec网关。它与IRC一起工作，以确保在移动计算机连接到办公室WLAN时数据安全并有效利用公司IP地址。 VSA服务器根据虚拟单一帐户概念管理每个公司用户的身份验证凭据。互联网漫游系统可以为企业用户提供安全，永远在线的办公网络连接，无论他们所在的地方使用最佳可用无线网络。

17. 发明授权

US07441043B1 System and method to support networking functions for mobile hosts that access multiple networks 失效
标题翻译：支持访问多个网络的移动主机的网络功能的系统和方法
公开(公告)号：US07441043B1
公开(公告)日：2008-10-21
申请号：US10334628
申请日：2002-12-31
申请人： Paul Shala Henry , Zhimei Jiang , Byoung-Jo J Kim , Kin K Leung , Hui Luo , Nemmara K Shankaranarayanan
发明人： Paul Shala Henry , Zhimei Jiang , Byoung-Jo J Kim , Kin K Leung , Hui Luo , Nemmara K Shankaranarayanan
IPC分类号： G06F15/173 , G06F15/16
CPC分类号： H04L29/1233 , H04L29/125 , H04L61/2564 , H04L61/2592 , H04L63/0272 , H04L63/0815 , H04L63/164 , H04L69/18 , H04W12/06 , H04W80/04 , H04W88/08
摘要： An IP-based corporate network architecture and method for providing seamless secure mobile networking across office WLAN, home WLAN, public WLAN, and 2.5G/3G cellular networks for corporate wireless data users. The system includes Internet roaming clients (IRCs), a secure mobility gateway (SMG), optional secure IP access (SIA) gateways, and a virtual single account (VSA) server. The IRC is a special client tool installed on a mobile computer (laptop or PDA) equipped with a WLAN adaptor and a cellular modem. It is responsible for establishing and maintaining a mobile IPsec tunnel between the mobile computer and a corporate intranet. The SMG is a mobile IPsec gateway installed between the corporate intranet and the Internet. It works in conjunction with the IRC to maintain the mobile IPsec tunnel when the mobile computer is connected on the Internet via a home WLAN, a public WLAN, or a cellular network. The SIA gateway is a special IPsec gateway installed in the middle of the wired corporate intranet and an office WLAN. It works with the IRC to ensure data security and efficient use of corporate IP addresses when the mobile computer is connected to the office WLAN. The VSA server manages authentication credentials for every corporate user based on a virtual single account concept. The Internet Roaming system can provide secure, always-on office network connectivity for corporate users no matter where they are located using best available wireless networks.
摘要翻译：一种基于IP的企业网络架构和方法，用于为企业无线数据用户提供跨办公室WLAN，家庭WLAN，公共WLAN和2.5G / 3G蜂窝网络的无缝安全移动网络。该系统包括互联网漫游客户端（IRC），安全移动网关（SMG），可选的安全IP接入（SIA）网关和虚拟单一帐户（VSA）服务器。 IRC是安装在配有WLAN适配器和蜂窝调制解调器的移动计算机（笔记本电脑或PDA）上的特殊客户端工具。它负责在移动计算机和公司内部网之间建立和维护移动IPsec隧道。 SMG是安装在企业内部网和互联网之间的移动IPsec网关。它与IRC一起工作，以便在移动计算机通过家庭WLAN，公共WLAN或蜂窝网络在因特网上连接时维护移动IPsec隧道。 SIA网关是安装在有线企业内部网和办公室WLAN中间的专用IPsec网关。它与IRC一起工作，以确保在移动计算机连接到办公室WLAN时数据安全并有效利用公司IP地址。 VSA服务器根据虚拟单一帐户概念管理每个公司用户的身份验证凭据。互联网漫游系统可以为企业用户提供安全，永远在线的办公网络连接，无论他们所在的地方使用最佳可用无线网络。

18. 发明授权

US07069433B1 Mobile host using a virtual single account client and server system for network access and management 有权
公开(公告)号：US07069433B1
公开(公告)日：2006-06-27
申请号：US10021172
申请日：2001-10-29
申请人： Paul Shala Henry , Zhimei Jiang , Hui Luo , Frederick Kenneth Schmidt, Jr.
发明人： Paul Shala Henry , Zhimei Jiang , Hui Luo , Frederick Kenneth Schmidt, Jr.
IPC分类号： H04L9/00
CPC分类号： G06F21/31 , G06Q40/00 , H04L9/0863 , H04L9/3226 , H04L63/0815 , H04L63/083 , H04L2209/80
摘要： A Virtual Single Account (VSA) system and method that provides a mobile user with automatic authentication and connection to a remote network via local access networks with a single password, where the local access networks may be independent of the remote network. A mobile user has a single authentication credential for one VSA that is utilized by a VSA client installed on a mobile computing device. The VSA client provides for automatically authenticating and connecting the user's mobile device to a current local access network, and the target remote network such as the user's office network. All authentication credentials are encrypted using a key generated from the user's VSA password that is generated from the user's single password. The VSA client derives the key from the submitted VSA password and decrypts all authentication credentials that are required in order to connect the mobile device to the current local access network and thereafter to the office network.

19. 发明授权

US07058059B1 Layer-2 IP networking method and apparatus for mobile hosts 有权
公开(公告)号：US07058059B1
公开(公告)日：2006-06-06
申请号：US09942421
申请日：2001-08-30
申请人： Paul Shala Henry , Zhimei Jiang , Byoung-Jo J Kim , Kin K Leung , Hui Luo
发明人： Paul Shala Henry , Zhimei Jiang , Byoung-Jo J Kim , Kin K Leung , Hui Luo
IPC分类号： H04L12/28 , H04Q7/24
CPC分类号： H04L61/2007 , H04L61/6022 , H04L69/324 , H04W8/26 , H04W76/11 , H04W80/04 , H04W88/06 , H04W88/182
摘要： A method and apparatus to enable IP networking for mobile hosts without requiring changes to be made to the TCP/IP stack in the operating system installed on the mobile hosts. The apparatus is an “intelligent device” that can be installed on or connected to a mobile host, and may comprise a software-only logical module, physical hardware, or a combination of both. To a mobile host, the intelligent device emulates a network interface such as an Ethernet card or a telephone modem. The intelligent device appears to an access network just like any regular IP host connected to the access network through a physical network interface device. The intelligent device handles all mobile networking functions for the mobile host, and may control multiple different physical network interface devices to enable a connection to the “best” access network available to the mobile user at his location.

20. 发明授权

US06971005B1 Mobile host using a virtual single account client and server system for network access and management 失效
标题翻译：移动主机使用虚拟单一帐户客户端和服务器系统进行网络访问和管理
公开(公告)号：US06971005B1
公开(公告)日：2005-11-29
申请号：US10017533
申请日：2001-10-23
申请人： Paul Shala Henry , Zhimei Jiang , Hui Luo , Frederick Kenneth Schmidt, Jr.
发明人： Paul Shala Henry , Zhimei Jiang , Hui Luo , Frederick Kenneth Schmidt, Jr.
IPC分类号： H04L9/00 , H04L29/06
CPC分类号： H04L63/0815
摘要： A Virtual Single Account (VSA) system that provides a mobile user with automatic authentication and connection to a remote network via local access networks with a single password, where the local access networks may be independent of the remote network. A mobile user has a single authentication credential for one VSA that is utilized by a VSA client installed on a mobile computing device. The VSA client provides for automatically authenticating and connecting the user's mobile device to a current local access network, and the target remote network such as the user's office network. All authentication credentials are encrypted using a key generated from the user's VSA password that is generated from the user's single password. The VSA client derives the key from the submitted VSA password and decrypts all authentication credentials that are required in order to connect the mobile device to the current local access network and thereafter to the office network.
摘要翻译：虚拟单一帐户（VSA）系统，为移动用户提供自动认证和通过本地接入网络与单一密码连接到远程网络，其中本地接入网络可以独立于远程网络。移动用户具有用于安装在移动计算设备上的VSA客户端使用的一个VSA的单个认证凭证。 VSA客户端提供自动认证和连接用户的移动设备到当前的本地接入网络，以及目标远程网络，如用户的办公室网络。所有认证凭证都是使用从用户的单一密码生成的用户的VSA密码生成的密钥加密的。 VSA客户端从提交的VSA密码中获取密钥，并解密所需的所有认证凭据，以便将移动设备连接到当前的本地接入网络，然后再到办公室网络。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式