专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20140317405A1 SECURED COMMUNICATIONS ARRANGEMENT APPLYING INTERNET PROTOCOL SECURITY 有权
标题翻译：安全通信安排适用互联网协议安全
公开(公告)号：US20140317405A1
公开(公告)日：2014-10-23
申请号：US14042182
申请日：2013-09-30
申请人： Robert A. Johnson , Kathleen Wild , Sarah K. Inforzato , Ted Hinaman
发明人： Robert A. Johnson , Kathleen Wild , Sarah K. Inforzato , Ted Hinaman
IPC分类号： H04L29/06
CPC分类号： H04L63/02 , G06F21/00 , G06F21/53 , H04L9/0838 , H04L9/0841 , H04L63/0227 , H04L63/0236 , H04L63/0485 , H04L63/061 , H04L63/164 , H04L63/166 , H04L63/205 , H04L69/18
摘要： A secure communications arrangement including an endpoint is disclosed. The endpoint includes a computing system. The computing system includes a user level services component and a kernel level callout driver interfaced to the user level services component and configured to establish an IPsec tunnel with a remote endpoint. The computing system also includes a filter engine storing one or more filters defining endpoints authorized to communicate with the endpoint via the IPsec tunnel. The computing system also includes a second kernel level driver configured to establish a secure tunnel using a second security protocol different from IPsec.
摘要翻译：公开了包括端点的安全通信布置。端点包括计算系统。计算系统包括与用户级服务组件相连的用户级服务组件和内核级标注驱动程序，并配置为与远程端点建立IPsec隧道。计算系统还包括存储一个或多个过滤器的过滤器引擎，该过滤器定义了被授权通过IPsec隧道与端点通信的端点。所述计算系统还包括配置为使用不同于IPsec的第二安全协议建立安全隧道的第二内核级驱动程序。

2. 发明申请

US20180212927A9 NEGOTIATION OF SECURITY PROTOCOLS AND PROTOCOL ATTRIBUTES IN SECURE COMMUNICATIONS ENVIRONMENT 审中-公开
公开(公告)号：US20180212927A9
公开(公告)日：2018-07-26
申请号：US14042239
申请日：2013-09-30
申请人： Robert A. Johnson , Kathleen Wild , Sarah K. Inforzato , Ted Hinaman
发明人： Robert A. Johnson , Kathleen Wild , Sarah K. Inforzato , Ted Hinaman
IPC分类号： H04L29/06
CPC分类号： H04L63/02 , G06F21/00 , G06F21/53 , H04L9/0838 , H04L9/0841 , H04L63/0227 , H04L63/0236 , H04L63/0485 , H04L63/061 , H04L63/164 , H04L63/166 , H04L63/205 , H04L69/18
摘要： Methods of communicatively connecting first and second endpoints are disclosed. One method includes transmitting from a first endpoint to a second endpoint a connection request, the connection request including an IP address of the second endpoint. The method further includes, based at least in part on the IP address of the second endpoint, selecting IPsec from among a plurality of available security protocols to first attempt to use in forming a tunnel between the first and second endpoints, and forming the tunnel between the first and second endpoints based on the connection request.

3. 发明申请

US20150095649A1 COMMUNITY OF INTEREST-BASED SECURED COMMUNICATIONS OVER IPSEC 有权
标题翻译：基于IPSEC的基于安全通信的社区
公开(公告)号：US20150095649A1
公开(公告)日：2015-04-02
申请号：US14042212
申请日：2013-09-30
申请人： Robert A. Johnson , Kathleen Wild , Sarah K. Inforzato , Ted Hinaman
发明人： Robert A. Johnson , Kathleen Wild , Sarah K. Inforzato , Ted Hinaman
IPC分类号： H04L9/08
CPC分类号： H04L63/02 , G06F21/00 , G06F21/53 , H04L9/0838 , H04L9/0841 , H04L63/0227 , H04L63/0236 , H04L63/0485 , H04L63/061 , H04L63/164 , H04L63/166 , H04L63/205 , H04L69/18
摘要： A method and system for establishing secure communications between endpoints includes transmitting a first message including a token having one or more entries each corresponding to a community of interest associated with a user of the first endpoint and including an encryption key and a validation key associated with the first endpoint. The method includes receiving a second message including a second authorization token including one or more entries, each entry corresponding to a community of interest associated with a second user and including an encryption key and a validation key associated with the second endpoint. The method includes, for each community of interest associated with both users, decrypting an associated entry in the second authorization token to obtain the encryption key and validation key associated with the second endpoint. The method also includes generating a shared secret based on the key pair, transmitting a third message including the created key pair to the second endpoint, and initializing tunnel using the shared secret to derive encryption keys used for IPsec-secured communications between the endpoints.
摘要翻译：一种用于在端点之间建立安全通信的方法和系统包括：发送包括令牌的第一消息，所述令牌具有一个或多个条目，每个条目对应于与所述第一端点的用户相关联的感兴趣社区，并且包括与所述第一端点相关联的加密密钥和验证密钥第一个端点。该方法包括接收第二消息，其包括包括一个或多个条目的第二授权令牌，每个条目对应于与第二用户相关联的感兴趣社区，并且包括加密密钥和与第二端点相关联的验证密钥。对于与两个用户相关联的每个感兴趣社区，该方法包括在第二授权令牌中解密相关联的条目以获得与第二端点相关联的加密密钥和验证密钥。该方法还包括基于密钥对生成共享密钥，将包括所创建的密钥对的第三消息发送到第二端点，以及使用共享密钥初始化隧道以导出用于端点之间的IPsec安全通信的加密密钥。

4. 发明申请

US20140317720A1 NEGOTIATION OF SECURITY PROTOCOLS AND PROTOCOL ATTRIBUTES IN SECURE COMMUNICATIONS ENVIRONMENT 审中-公开
标题翻译：在安全通信环境中协商安全协议和协议属性
公开(公告)号：US20140317720A1
公开(公告)日：2014-10-23
申请号：US14042239
申请日：2013-09-30
申请人： Robert A. Johnson , Kathleen Wild , Sarah K. Inforzato , Ted Hinaman
发明人： Robert A. Johnson , Kathleen Wild , Sarah K. Inforzato , Ted Hinaman
IPC分类号： H04L29/06
摘要： Methods of communicatively connecting first and second endpoints are disclosed. One method includes transmitting from a first endpoint to a second endpoint a connection request, the connection request including an IP address of the second endpoint. The method further includes, based at least in part on the IP address of the second endpoint, selecting IPsec from among a plurality of available security protocols to first attempt to use in forming a tunnel between the first and second endpoints, and forming the tunnel between the first and second endpoints based on the connection request.
摘要翻译：公开了连通第一和第二端点的方法。一种方法包括从第一端点向第二端点发送连接请求，所述连接请求包括第二端点的IP地址。该方法还包括至少部分地基于第二端点的IP地址，从多个可用安全协议中选择IPsec，以首先尝试在形成第一和第二端点之间的隧道，并且形成第基于连接请求的第一和第二端点。

5. 发明申请

US20170208038A1 SECURE REMOTE ACCESS FOR SECURED ENTERPRISE COMMUNICATIONS 审中-公开
公开(公告)号：US20170208038A1
公开(公告)日：2017-07-20
申请号：US15001354
申请日：2016-01-20
申请人： Ted Hinaman , Steven J. Rajcan , Matthew Mohr , William Gunn , Sarah K. Inforzato , Robert A. Johnson , Gregory J. Small , David S. Dodgson
发明人： Ted Hinaman , Steven J. Rajcan , Matthew Mohr , William Gunn , Sarah K. Inforzato , Robert A. Johnson , Gregory J. Small , David S. Dodgson
IPC分类号： H04L29/06 , H04L12/46 , H04W12/06
摘要： Methods and systems for securing communications with an enterprise from a remote computing system are disclosed. One method includes initiating a secured connection with a VPN appliance associated with an enterprise using service credentials maintained in a secure applet installed on a remote computing device, and initiating communication with an authentication server within an enterprise via the secured connection. The method also includes receiving specific credentials from the authentication server, terminating the secured connection with the VPN appliance, and initiating a second secured connection with the VPN appliance using the specific credentials, the specific credentials providing access to one or more computing devices within the enterprise being within a same community of interest as the remote computing device and obfuscating one or more other computing systems within the enterprise excluded from the community of interest. The method also includes initiating communications with at least one of the one or more computing devices included in the community of interest.

6. 发明申请

US20160156594A9 METHODS AND SYSTEMS FOR MANAGING CONCURRENT UNSECURED AND CRYPTOGRAPHICALLY SECURE COMMUNICATIONS ACROSS UNSECURED NETWORKS 有权
标题翻译：用于管理不相关网络的不一致和可靠安全通信的方法和系统
公开(公告)号：US20160156594A9
公开(公告)日：2016-06-02
申请号：US13105130
申请日：2011-05-11
申请人： Sarah K. Inforzato , Ted Hinaman , Robert A. Johnson
发明人： Sarah K. Inforzato , Ted Hinaman , Robert A. Johnson
IPC分类号： H04L29/06 , G06F15/16
CPC分类号： H04L63/0428 , G06F21/575 , H04L63/10 , H04L63/12
摘要： An endpoint, method, and authorization server are disclosed which can be used to allow concurrent secure and clear text communication. An endpoint includes a computing system including a programmable circuit operatively connected to a memory and a communication interface, the communication interface configured to send and receive data packets via a data communications network. The endpoint also includes a filter defined in the memory of the computing system, the filter configured to define one or more access lists, each access list defining a group of access permissions for a community of interest. The community of interest includes one or more users, and an access list from among the one or more access lists defines a set of clear text access permissions associated with a community of interest. The endpoint also includes a driver executable by the programmable circuit, the driver configured to cooperate with the communication interface to send and receive data packets via the data communications network. The driver is also configured to selectively split and encrypt data into a plurality of data packets to be transmitted via the data communications network based at least in part upon the contents of the one or more access lists.
摘要翻译：公开了端点，方法和授权服务器，其可以用于允许并发安全和明文文本通信。端点包括计算系统，其包括可操作地连接到存储器和通信接口的可编程电路，所述通信接口经配置以经由数据通信网络发送和接收数据分组。端点还包括在计算系统的存储器中定义的过滤器，该过滤器被配置为定义一个或多个访问列表，每个访问列表为感兴趣的社区定义一组访问许可。感兴趣的社区包括一个或多个用户，并且一个或多个访问列表中的访问列表定义与感兴趣的社区相关联的一组明文访问许可。端点还包括可由可编程电路执行的驱动器，该驱动器被配置为与通信接口协作以经由数据通信网络发送和接收数据分组。驱动器还被配置为至少部分地基于一个或多个访问列表的内容，经由数据通信网络选择性地将数据拆分和加密成多个数据分组以发送。

7. 发明授权

US09525666B2 Methods and systems for managing concurrent unsecured and cryptographically secure communications across unsecured networks 有权
标题翻译：用于管理跨不安全网络的并发无安全和加密安全通信的方法和系统
公开(公告)号：US09525666B2
公开(公告)日：2016-12-20
申请号：US13105130
申请日：2011-05-11
申请人： Sarah K. Inforzato , Ted Hinaman , Robert A. Johnson
发明人： Sarah K. Inforzato , Ted Hinaman , Robert A. Johnson
IPC分类号： G06F7/04 , H04L29/06 , G06F21/57
CPC分类号： H04L63/0428 , G06F21/575 , H04L63/10 , H04L63/12
摘要： An endpoint, method, and authorization server are disclosed which can be used to allow concurrent secure and clear text communication. An endpoint includes a computing system including a programmable circuit operatively connected to a memory and a communication interface, the communication interface configured to send and receive data packets via a data communications network. The endpoint also includes a filter defined in the memory of the computing system, the filter configured to define one or more access lists, each access list defining a group of access permissions for a community of interest. The community of interest includes one or more users, and an access list from among the one or more access lists defines a set of clear text access permissions associated with a community of interest. The endpoint also includes a driver executable by the programmable circuit, the driver configured to cooperate with the communication interface to send and receive data packets via the data communications network. The driver is also configured to selectively split and encrypt data into a plurality of data packets to be transmitted via the data communications network based at least in part upon the contents of the one or more access lists.
摘要翻译：公开了端点，方法和授权服务器，其可以用于允许并发安全和明文文本通信。端点包括计算系统，其包括可操作地连接到存储器和通信接口的可编程电路，所述通信接口经配置以经由数据通信网络发送和接收数据分组。端点还包括在计算系统的存储器中定义的过滤器，该过滤器被配置为定义一个或多个访问列表，每个访问列表为感兴趣的社区定义一组访问许可。感兴趣的社区包括一个或多个用户，并且一个或多个访问列表中的访问列表定义与感兴趣的社区相关联的一组明文访问许可。端点还包括可由可编程电路执行的驱动器，该驱动器被配置为与通信接口协作以经由数据通信网络发送和接收数据分组。驱动器还被配置为至少部分地基于一个或多个访问列表的内容，经由数据通信网络选择性地将数据分割和加密成多个数据分组以被发送。

8. 发明申请

US20120084838A1 METHODS AND SYSTEMS FOR MANAGING CONCURRENT UNSECURED AND CRYPTOGRAPHICALLY SECURE COMMUNICATIONS ACROSS UNSECURED NETWORKS 有权
标题翻译：用于管理不相关网络的不一致和可靠安全通信的方法和系统
公开(公告)号：US20120084838A1
公开(公告)日：2012-04-05
申请号：US13105130
申请日：2011-05-11
申请人： Sarah K. Inforzato , Ted Hinaman , Robert A. Johnson
发明人： Sarah K. Inforzato , Ted Hinaman , Robert A. Johnson
IPC分类号： G06F21/20 , G06F15/16
CPC分类号： H04L63/0428 , G06F21/575 , H04L63/10 , H04L63/12
摘要： An endpoint, method, and authorization server are disclosed which can be used to allow concurrent secure and clear text communication. An endpoint includes a computing system including a programmable circuit operatively connected to a memory and a communication interface, the communication interface configured to send and receive data packets via a data communications network. The endpoint also includes a filter defined in the memory of the computing system, the filter configured to define one or more access lists, each access list defining a group of access permissions for a community of interest. The community of interest includes one or more users, and an access list from among the one or more access lists defines a set of clear text access permissions associated with a community of interest. The endpoint also includes a driver executable by the programmable circuit, the driver configured to cooperate with the communication interface to send and receive data packets via the data communications network. The driver is also configured to selectively split and encrypt data into a plurality of data packets to be transmitted via the data communications network based at least in part upon the contents of the one or more access lists.
摘要翻译：公开了端点，方法和授权服务器，其可以用于允许并发安全和明文文本通信。端点包括计算系统，其包括可操作地连接到存储器和通信接口的可编程电路，所述通信接口经配置以经由数据通信网络发送和接收数据分组。端点还包括在计算系统的存储器中定义的过滤器，该过滤器被配置为定义一个或多个访问列表，每个访问列表为感兴趣的社区定义一组访问许可。感兴趣的社区包括一个或多个用户，并且一个或多个访问列表中的访问列表定义与感兴趣的社区相关联的一组明文访问许可。端点还包括可由可编程电路执行的驱动器，该驱动器被配置为与通信接口协作以经由数据通信网络发送和接收数据分组。驱动器还被配置为至少部分地基于一个或多个访问列表的内容，经由数据通信网络选择性地将数据拆分和加密成多个数据分组以发送。

9. 发明授权

US07581033B2 Intelligent network interface card (NIC) optimizations 失效
标题翻译：智能网络接口卡（NIC）优化
公开(公告)号：US07581033B2
公开(公告)日：2009-08-25
申请号：US10729312
申请日：2003-12-05
申请人： Dwayne E. Ebersole , Sarah K. Inforzato , Robert A. Johnson , Anthony Narisi , Kathleen Wild
发明人： Dwayne E. Ebersole , Sarah K. Inforzato , Robert A. Johnson , Anthony Narisi , Kathleen Wild
IPC分类号： G06F15/16
CPC分类号： G06F15/16 , G06F13/385
摘要： Intelligent NIC optimizations includes system and methods for Token Table Posting, use of a Master Completion Queue, Notification Request Area (NRA) associated with completion queues, preferably in the Network Interface Card (NIC) for providing notification of request completions, and what we call Lazy Memory Deregistration which allows non-critical memory deregistration processing to occur during non-busy times. These intelligent NIC optimizations which can be applied outside the scope of VIA (e.g. iWARP and the like), but also support VIA.
摘要翻译：智能网卡优化包括用于令牌表过帐的系统和方法，主完成队列的使用，与完成队列相关联的通知请求区域（NRA），优选地在网络接口卡（NIC）中用于提供请求完成的通知，以及所谓的延迟内存取消注销，允许在非繁忙时间内进行非关键内存注销处理。这些可以应用于VIA范围之外的智能NIC优化（例如iWARP等），也支持VIA。

10. 发明申请

US20090172301A1 INTELLIGENT NETWORK INTERFACE CARD (NIC) OPTIMIZATIONS 失效
标题翻译：智能网络接口卡（NIC）优化
公开(公告)号：US20090172301A1
公开(公告)日：2009-07-02
申请号：US10729312
申请日：2003-12-05
申请人： Dwayne E. Ebersole , Sarah K. Inforzato , Robert A. Johnson , Anthony Narisi , Kathleen Wild
发明人： Dwayne E. Ebersole , Sarah K. Inforzato , Robert A. Johnson , Anthony Narisi , Kathleen Wild
IPC分类号： G06F12/00 , G06F15/16 , G06F9/46
CPC分类号： G06F15/16 , G06F13/385
摘要： Intelligent NIC optimizations includes system and methods for Token Table Posting, use of a Master Completion Queue, Notification Request Area (NRA) associated with completion queues, preferably in the Network Interface Card (NIC) for providing notification of request completions, and what we call Lazy Memory Deregistration which allows non-critical memory deregistration processing to occur during non-busy times. These intelligent NIC optimizations which can be applied outside the scope of VIA (e.g. iWARP and the like), but also support VIA.
摘要翻译：智能网卡优化包括用于令牌表过帐的系统和方法，主完成队列的使用，与完成队列相关联的通知请求区域（NRA），优选地在网络接口卡（NIC）中用于提供请求完成的通知，以及所谓的延迟内存取消注销，允许在非繁忙时间内进行非关键内存注销处理。这些可以应用于VIA范围之外的智能NIC优化（例如iWARP等），也支持VIA。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式