专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US09244739B2 Applications processing in a network apparatus 有权
标题翻译：网络设备中的应用处理
公开(公告)号：US09244739B2
公开(公告)日：2016-01-26
申请号：US12980768
申请日：2010-12-29
申请人： Yevgeny Korsunsky , Moisey Akerman
发明人： Yevgeny Korsunsky , Moisey Akerman
IPC分类号： G06F15/173 , G06F15/16 , G06F9/50 , H04L29/06 , H04L29/08
CPC分类号： H04L63/20 , G06F9/5027 , G06F9/5033 , G06F9/505 , G06F9/5055 , H04L29/06 , H04L63/10 , H04L63/1416 , H04L67/10 , H04L67/306 , H04L67/325 , H04L67/327 , H04L67/34 , H04L69/329
摘要： A method and system for distributing flows between a multiple processors. The flows can be received from an external source such as a network, by a front-end processor that recognizes the flow and the associated request, and identifies at least one internal applications processor to process the request/flow. The front-end processor utilizes a flow scheduling vector related to the identified applications processor(s), and the flow scheduling vector can be based on intrinsic data from the applications processor(s) that can include CPU utilization, memory utilization, packet loss, and queue length or buffer occupation. In some embodiments, applications processors can be understood to belong to a group, wherein applications processors within a group can be configured identically. A flow schedule vector can be computed for the different applications processor groups.
摘要翻译：一种用于在多个处理器之间分配流的方法和系统。可以从诸如网络的外部源，由识别流程和相关联的请求的前端处理器接收流，并且识别至少一个内部应用处理器来处理请求/流。前端处理器利用与所识别的应用处理器相关的流调度向量，并且流调度向量可以基于来自应用处理器的固有数据，其可以包括CPU利用率，存储器利用率，分组丢失，队列长度或缓冲区占用。在一些实施例中，应用处理器可以被理解为属于一个组，其中组内的应用处理器可以被相同地配置。可以为不同的应用处理器组计算流程调度向量。

2. 发明授权

US08402540B2 Systems and methods for processing data flows 有权
标题翻译：用于处理数据流的系统和方法
公开(公告)号：US08402540B2
公开(公告)日：2013-03-19
申请号：US11877819
申请日：2007-10-24
申请人： Harsh Kapoor , Moisey Akerman , Stephen D. Justus , JC Ferguson , Yevgeny Korsunsky , Paul S. Gallo , Charles Ching Lee , Timothy M. Martin , Chunsheng Fu , Weidong Xu
发明人： Harsh Kapoor , Moisey Akerman , Stephen D. Justus , JC Ferguson , Yevgeny Korsunsky , Paul S. Gallo , Charles Ching Lee , Timothy M. Martin , Chunsheng Fu , Weidong Xu
IPC分类号： H04L29/06
CPC分类号： G06N3/0472 , G06F9/505 , G06F21/55 , G06F21/577 , H04L29/06 , H04L63/0227 , H04L63/1408 , H04L63/1416 , H04L63/1425 , H04L63/1441 , H04L63/145 , H04L63/1483 , H04L63/164 , H04L63/166 , H04L67/10 , H04L67/306 , H04L67/325 , H04L67/327 , H04L67/34 , H04L69/329 , H04L2463/141
摘要： A flow processing facility, which uses a set of artificial neurons for pattern recognition, such as a self-organizing map, in order to provide security and protection to a computer or computer system supports unified threat management based at least in part on patterns relevant to a variety of types of threats that relate to computer systems, including computer networks. Flow processing for switching, security, and other network applications, including a facility that processes a data flow to address patterns relevant to a variety of conditions are directed at internal network security, virtualization, and web connection security. A flow processing facility for inspecting payloads of network traffic packets detects security threats and intrusions across accessible layers of the IP-stack by applying content matching and behavioral anomaly detection techniques based on regular expression matching and self-organizing maps. Exposing threats and intrusions within packet payload at or near real-time rates enhances network security from both external and internal sources while ensuring security policy is rigorously applied to data and system resources. Intrusion Detection and Protection (IDP) is provided by a flow processing facility that processes a data flow to address patterns relevant to a variety of types of network and data integrity threats that relate to computer systems, including computer networks.
摘要翻译：使用一组用于模式识别的人造神经元（例如自组织图）以便向计算机或计算机系统提供安全性和保护的流程处理设备至少部分地基于与与计算机系统（包括计算机网络）相关的各种类型的威胁。用于交换，安全和其他网络应用的流处理，包括处理数据流以处理与各种条件相关的模式的设施，针对内部网络安全性，虚拟化和Web连接安全性。用于检查网络流量包的有效载荷的流处理设备通过应用基于正则表达式匹配和自组织映射的内容匹配和行为异常检测技术来检测IP堆栈的可访问层的安全威胁和入侵。在实时速率或接近实时速率的情况下，在数据包有效载荷中暴露威胁和入侵，从而确保安全策略严格应用于数据和系统资源，从而提高了外部和内部来源的网络安全性。入侵检测和保护（IDP）由处理数据流的流处理设备提供，以处理与包括计算机网络在内的计算机系统相关的各种类型的网络和数据完整性威胁相关的模式。

3. 发明申请

US20070192863A1 SYSTEMS AND METHODS FOR PROCESSING DATA FLOWS 审中-公开
标题翻译：用于处理数据流的系统和方法
公开(公告)号：US20070192863A1
公开(公告)日：2007-08-16
申请号：US11610296
申请日：2006-12-13
申请人： Harsh Kapoor , Moisey Akerman , Stephen Justus , JC Ferguson , Yevgeny Korsunsky , Paul Gallo , Charles Lee , Timothy Martin , Chunsheng Fu , Weidong Xu
发明人： Harsh Kapoor , Moisey Akerman , Stephen Justus , JC Ferguson , Yevgeny Korsunsky , Paul Gallo , Charles Lee , Timothy Martin , Chunsheng Fu , Weidong Xu
IPC分类号： G06F12/14
CPC分类号： G06N3/0472 , G06F9/505 , G06F21/55 , G06F21/577 , H04L29/06 , H04L63/0227 , H04L63/1408 , H04L63/1416 , H04L63/1425 , H04L63/1441 , H04L63/145 , H04L63/1483 , H04L63/164 , H04L63/166 , H04L67/10 , H04L67/306 , H04L67/325 , H04L67/327 , H04L67/34 , H04L69/329 , H04L2463/141
摘要： A flow processing facility, which uses a set of artificial neurons for pattern recognition, such as a self-organizing map, in order to provide security and protection to a computer or computer system supports unified threat management based at least in part on patterns relevant to a variety of types of threats that relate to computer systems, including computer networks. Flow processing for switching, security, and other network applications, including a facility that processes a data flow to address patterns relevant to a variety of conditions are directed at internal network security, virtualization, and web connection security. A flow processing facility for inspecting payloads of network traffic packets detects security threats and intrusions across accessible layers of the IP-stack by applying content matching and behavioral anomaly detection techniques based on regular expression matching and self-organizing maps. Exposing threats and intrusions within packet payload at or near real-time rates enhances network security from both external and internal sources while ensuring security policy is rigorously applied to data and system resources. Intrusion Detection and Protection (IDP) is provided by a flow processing facility that processes a data flow to address patterns relevant to a variety of types of network and data integrity threats that relate to computer systems, including computer networks.
摘要翻译：使用一组用于模式识别的人造神经元（例如自组织图）以便向计算机或计算机系统提供安全性和保护的流程处理设备至少部分地基于与与计算机系统（包括计算机网络）相关的各种类型的威胁。用于交换，安全和其他网络应用的流处理，包括处理数据流以处理与各种条件相关的模式的设施，针对内部网络安全性，虚拟化和Web连接安全性。用于检查网络流量包的有效载荷的流处理设备通过应用基于正则表达式匹配和自组织映射的内容匹配和行为异常检测技术来检测IP堆栈的可访问层的安全威胁和入侵。在实时速率或接近实时速率的情况下，在数据包有效载荷中暴露威胁和入侵，从而确保安全策略严格应用于数据和系统资源，从而提高了外部和内部来源的网络安全性。入侵检测和保护（IDP）由处理数据流的流处理设备提供，以处理与包括计算机网络在内的计算机系统相关的各种类型的网络和数据完整性威胁相关的模式。

4. 发明授权

US08135657B2 Systems and methods for processing data flows 有权
标题翻译：用于处理数据流的系统和方法
公开(公告)号：US08135657B2
公开(公告)日：2012-03-13
申请号：US13216739
申请日：2011-08-24
申请人： Harsh Kapoor , Moisey Akerman , Stephen D. Justus , John C. Ferguson , Yevgeny Korsunsky , Paul S. Gallo , Charles Ching Lee , Timothy M. Martin , Chunsheng Fu , Weidong Xu
发明人： Harsh Kapoor , Moisey Akerman , Stephen D. Justus , John C. Ferguson , Yevgeny Korsunsky , Paul S. Gallo , Charles Ching Lee , Timothy M. Martin , Chunsheng Fu , Weidong Xu
IPC分类号： G06F17/00
CPC分类号： H04L63/145 , G06F9/505 , G06F21/55 , G06F21/577 , G06N3/0472 , H04L29/06 , H04L43/026 , H04L63/0227 , H04L63/14 , H04L63/1408 , H04L63/1416 , H04L63/1425 , H04L63/1441 , H04L63/1483 , H04L63/1491 , H04L63/164 , H04L63/166 , H04L67/10 , H04L67/306 , H04L67/325 , H04L67/327 , H04L67/34 , H04L69/329 , H04L2463/141
摘要： A flow processing facility, which uses a set of artificial neurons for pattern recognition, such as a self-organizing map, in order to provide security and protection to a computer or computer system supports unified threat management based at least in part on patterns relevant to a variety of types of threats that relate to computer systems, including computer networks. Flow processing for switching, security, and other network applications, including a facility that processes a data flow to address patterns relevant to a variety of conditions are directed at internal network security, virtualization, and web connection security. A flow processing facility for inspecting payloads of network traffic packets detects security threats and intrusions across accessible layers of the IP-stack by applying content matching and behavioral anomaly detection techniques based on regular expression matching and self-organizing maps. Exposing threats and intrusions within packet payload at or near real-time rates enhances network security from both external and internal sources while ensuring security policy is rigorously applied to data and system resources. Intrusion Detection and Protection (IDP) is provided by a flow processing facility that processes a data flow to address patterns relevant to a variety of types of network and data integrity threats that relate to computer systems, including computer networks.
摘要翻译：使用一组用于模式识别的人造神经元（例如自组织图）以便向计算机或计算机系统提供安全性和保护的流程处理设备至少部分地基于与与计算机系统（包括计算机网络）相关的各种类型的威胁。用于交换，安全和其他网络应用程序的流程处理（包括处理数据流以处理与各种条件相关的模式）的设施针对内部网络安全性，虚拟化和Web连接安全性。用于检查网络流量包的有效载荷的流处理设备通过应用基于正则表达式匹配和自组织映射的内容匹配和行为异常检测技术来检测IP堆栈的可访问层的安全威胁和入侵。在实时速率或接近实时速率的情况下，在数据包有效载荷中暴露威胁和入侵，从而确保安全策略严格应用于数据和系统资源，从而提高了外部和内部来源的网络安全性。入侵检测和保护（IDP）由处理数据流的流处理设备提供，以处理与包括计算机网络在内的计算机系统相关的各种类型的网络和数据完整性威胁相关的模式。

5. 发明申请

US20110231513A1 APPLICATION DISTRIBUTION CONTROL NETWORK APPARATUS 审中-公开
标题翻译：应用分发控制网络设备
公开(公告)号：US20110231513A1
公开(公告)日：2011-09-22
申请号：US12980906
申请日：2010-12-29
申请人： Yevgeny Korsunsky , Moisey Akerman
发明人： Yevgeny Korsunsky , Moisey Akerman
IPC分类号： G06F15/16
CPC分类号： H04L63/20 , G06F9/5027 , G06F9/5033 , G06F9/505 , G06F9/5055 , H04L29/06 , H04L63/10 , H04L63/1416 , H04L67/10 , H04L67/306 , H04L67/325 , H04L67/327 , H04L67/34 , H04L69/329
摘要： A method and system for distributing flows between a multiple processors. The flows can be received from an external source such as a network, by a front-end processor that recognizes the flow and the associated request, and identifies at least one internal applications processor to process the request/flow. The front-end processor utilizes a flow scheduling vector related to the identified applications processor(s), and the flow scheduling vector can be based on intrinsic data from the applications processor(s) that can include CPU utilization, memory utilization, packet loss, and queue length or buffer occupation. In some embodiments, applications processors can be understood to belong to a group, wherein applications processors within a group can be configured identically. A flow schedule vector can be computed for the different applications processor groups.
摘要翻译：一种用于在多个处理器之间分配流的方法和系统。可以从诸如网络的外部源，由识别流程和相关联的请求的前端处理器接收流，并且识别至少一个内部应用处理器来处理请求/流。前端处理器利用与所识别的应用处理器相关的流调度向量，并且流调度向量可以基于来自应用处理器的固有数据，其可以包括CPU利用率，存储器利用率，分组丢失，队列长度或缓冲区占用。在一些实施例中，应用处理器可以被理解为属于一个组，其中组内的应用处理器可以被相同地配置。可以为不同的应用处理器组计算流程调度向量。

6. 发明申请

US20110231510A1 PROCESSING DATA FLOWS WITH A DATA FLOW PROCESSOR 有权
公开(公告)号：US20110231510A1
公开(公告)日：2011-09-22
申请号：US12982999
申请日：2010-12-31
申请人： Yevgeny Korsunsky , Moisey Akerman
发明人： Yevgeny Korsunsky , Moisey Akerman
IPC分类号： G06F15/167
CPC分类号： H04L63/1441 , G06F21/55 , H04L63/1425 , H04L63/1483 , H04L2463/141
摘要： An apparatus and method to distribute applications and services in and throughout a network and to secure the network includes the functionality of a switch with the ability to apply applications and services to received data according to respective subscriber profiles. Front-end processors, or Network Processor Modules (NPMs), receive and recognize data flows from subscribers, extract profile information for the respective subscribers, utilize flow scheduling techniques to forward the data to applications processors, or Flow Processor Modules (FPMs). The FPMs utilize resident applications to process data received from the NPMs. A Control Processor Module (CPM) facilitates applications processing and maintains connections to the NPMs, FPMs, local and remote storage devices, and a Management Server (MS) module that can monitor the health and maintenance of the various modules.

7. 发明授权

US07979368B2 Systems and methods for processing data flows 有权
标题翻译：用于处理数据流的系统和方法
公开(公告)号：US07979368B2
公开(公告)日：2011-07-12
申请号：US11926307
申请日：2007-10-29
申请人： Harsh Kapoor , Moisey Akerman , Stephen D. Justus , John C. Ferguson , Yevgeny Korsunsky , Paul S. Gallo , Charles Ching Lee , Timothy M. Martin , Chunsheng Fu , Weidong Xu
发明人： Harsh Kapoor , Moisey Akerman , Stephen D. Justus , John C. Ferguson , Yevgeny Korsunsky , Paul S. Gallo , Charles Ching Lee , Timothy M. Martin , Chunsheng Fu , Weidong Xu
IPC分类号： G06N5/00
CPC分类号： H04L63/1441 , G06F21/55 , H04L63/14 , H04L63/1425 , H04L2463/141
摘要： A flow processing facility, which uses a set of artificial neurons for pattern recognition, such as a self-organizing map, in order to provide security and protection to a computer or computer system supports unified threat management based at least in part on patterns relevant to a variety of types of threats that relate to computer systems, including computer networks. Flow processing for switching, security, and other network applications, including a facility that processes a data flow to address patterns relevant to a variety of conditions are directed at internal network security, virtualization, and web connection security. A flow processing facility for inspecting payloads of network traffic packets detects security threats and intrusions across accessible layers of the IP-stack by applying content matching and behavioral anomaly detection techniques based on regular expression matching and self-organizing maps. Exposing threats and intrusions within packet payload at or near real-time rates enhances network security from both external and internal sources while ensuring security policy is rigorously applied to data and system resources. Intrusion Detection and Protection (IDP) is provided by a flow processing facility that processes a data flow to address patterns relevant to a variety of types of network and data integrity threats that relate to computer systems, including computer networks.
摘要翻译：使用一组用于模式识别的人造神经元（例如自组织图）以便向计算机或计算机系统提供安全性和保护的流程处理设备至少部分地基于与与计算机系统（包括计算机网络）相关的各种类型的威胁。用于交换，安全和其他网络应用的流处理，包括处理数据流以处理与各种条件相关的模式的设施，针对内部网络安全性，虚拟化和Web连接安全性。用于检查网络流量包的有效载荷的流处理设施通过应用基于正则表达式匹配和自组织映射的内容匹配和行为异常检测技术来检测IP堆栈的可访问层的安全威胁和入侵。在实时速率或接近实时速率的情况下，在数据包有效载荷中暴露威胁和入侵，从而确保安全策略严格应用于数据和系统资源，从而提高了外部和内部来源的网络安全性。入侵检测和保护（IDP）由处理数据流的流处理设备提供，以处理与包括计算机网络在内的计算机系统相关的各种类型的网络和数据完整性威胁相关的模式。

8. 发明申请

US20080133518A1 SYSTEMS AND METHODS FOR PROCESSING DATA FLOWS 审中-公开
公开(公告)号：US20080133518A1
公开(公告)日：2008-06-05
申请号：US11877813
申请日：2007-10-24
申请人： Harsh Kapoor , Moisey Akerman , Stephen D. Justus , JC Ferguson , Yevgeny Korsunsky , Paul S. Gallo , Charles Ching Lee , Timothy M. Martin , Chunsheng Fu , Weidong Xu
发明人： Harsh Kapoor , Moisey Akerman , Stephen D. Justus , JC Ferguson , Yevgeny Korsunsky , Paul S. Gallo , Charles Ching Lee , Timothy M. Martin , Chunsheng Fu , Weidong Xu
IPC分类号： G06F17/30
CPC分类号： G06N3/0472 , G06F9/505 , G06F21/55 , G06F21/577 , H04L29/06 , H04L63/0227 , H04L63/1408 , H04L63/1416 , H04L63/1425 , H04L63/1441 , H04L63/145 , H04L63/1483 , H04L63/164 , H04L63/166 , H04L67/10 , H04L67/306 , H04L67/325 , H04L67/327 , H04L67/34 , H04L69/329 , H04L2463/141
摘要： A flow processing facility, which uses a set of artificial neurons for pattern recognition, such as a self-organizing map, in order to provide security and protection to a computer or computer system supports unified threat management based at least in part on patterns relevant to a variety of types of threats that relate to computer systems, including computer networks. Flow processing for switching, security, and other network applications, including a facility that processes a data flow to address patterns relevant to a variety of conditions are directed at internal network security, virtualization, and web connection security. A flow processing facility for inspecting payloads of network traffic packets detects security threats and intrusions across accessible layers of the IP-stack by applying content matching and behavioral anomaly detection techniques based on regular expression matching and self-organizing maps. Exposing threats and intrusions within packet payload at or near real-time rates enhances network security from both external and internal sources while ensuring security policy is rigorously applied to data and system resources. Intrusion Detection and Protection (IDP) is provided by a flow processing facility that processes a data flow to address patterns relevant to a variety of types of network and data integrity threats that relate to computer systems, including computer networks.

9. 发明授权

US09800608B2 Processing data flows with a data flow processor 有权
公开(公告)号：US09800608B2
公开(公告)日：2017-10-24
申请号：US12982999
申请日：2010-12-31
申请人： Yevgeny Korsunsky , Moisey Akerman
发明人： Yevgeny Korsunsky , Moisey Akerman
IPC分类号： G06F15/16 , H04L29/06 , G06F21/55
CPC分类号： H04L63/1441 , G06F21/55 , H04L63/1425 , H04L63/1483 , H04L2463/141
摘要： An apparatus and method to distribute applications and services in and throughout a network and to secure the network includes the functionality of a switch with the ability to apply applications and services to received data according to respective subscriber profiles. Front-end processors, or Network Processor Modules (NPMs), receive and recognize data flows from subscribers, extract profile information for the respective subscribers, utilize flow scheduling techniques to forward the data to applications processors, or Flow Processor Modules (FPMs). The FPMs utilize resident applications to process data received from the NPMs. A Control Processor Module (CPM) facilitates applications processing and maintains connections to the NPMs, FPMs, local and remote storage devices, and a Management Server (MS) module that can monitor the health and maintenance of the various modules.

10. 发明申请

US20110238839A1 NETWORK INTRUSION DETECTION APPARATUS 有权
标题翻译：网络侵入检测装置
公开(公告)号：US20110238839A1
公开(公告)日：2011-09-29
申请号：US12980768
申请日：2010-12-29
申请人： Yevgeny Korsunsky , Moisey Akerman
发明人： Yevgeny Korsunsky , Moisey Akerman
IPC分类号： G06F15/173
CPC分类号： H04L63/20 , G06F9/5027 , G06F9/5033 , G06F9/505 , G06F9/5055 , H04L29/06 , H04L63/10 , H04L63/1416 , H04L67/10 , H04L67/306 , H04L67/325 , H04L67/327 , H04L67/34 , H04L69/329
摘要： A method and system for distributing flows between a multiple processors. The flows can be received from an external source such as a network, by a front-end processor that recognizes the flow and the associated request, and identifies at least one internal applications processor to process the request/flow. The front-end processor utilizes a flow scheduling vector related to the identified applications processor(s), and the flow scheduling vector can be based on intrinsic data from the applications processor(s) that can include CPU utilization, memory utilization, packet loss, and queue length or buffer occupation. In some embodiments, applications processors can be understood to belong to a group, wherein applications processors within a group can be configured identically. A flow schedule vector can be computed for the different applications processor groups.
摘要翻译：一种用于在多个处理器之间分配流的方法和系统。可以从诸如网络的外部源，由识别流程和相关联的请求的前端处理器接收流，并且识别至少一个内部应用处理器来处理请求/流。前端处理器利用与所识别的应用处理器相关的流调度向量，并且流调度向量可以基于来自应用处理器的固有数据，其可以包括CPU利用率，存储器利用率，分组丢失，队列长度或缓冲区占用。在一些实施例中，应用处理器可以被理解为属于一个组，其中组内的应用处理器可以被相同地配置。可以为不同的应用处理器组计算流程调度向量。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式