Abstract: An intrusion detection system (IDS). An IDS which has been configured in accordance with the present invention can include a traffic sniffer for extracting network packets from passing network traffic; a traffic parser configured to extract individual data from defined packet fields of the network packets; and, a traffic logger configured to store individual packet fields of the network packets in a database. A vector builder can be configured to generate multi-dimensional vectors from selected features of the stored packet fields. Notably, at least one self-organizing clustering module can be configured to process the multi-dimensional vectors to produce a self-organized map of clusters. Subsequently, an anomaly detector can detect anomalous correlations between individual ones of the clusters in the self-organized map based upon at least one configurable correlation metric. Finally, a classifier can classify detected anomalous correlations as one of an alarm and normal behavior.
Abstract: A medical needle set for visualized tissue ablation within a subject's body includes a cannula and components configured for inclusion in the cannula, including a trocar for occlusion of the cannula lumen during needle placement, and a visualizing ablation probe used for simultaneous endoscopic viewing and ablation of tissue sites with a laser beam. The cannula can include a tissue-gripping surface for stabilization of the needle set on the target tissue. A surgical system for tissue ablation includes a visualizing ablation needle set operably connected to an endoscope and a laser. A surgical procedure using this system permits simultaneous visualization and ablation of tissues, including those of the facet joints of the spine.
Abstract: A secure event data recording system configured for use in a passenger vehicle. The secure event data recording system can include an event data recorder; a memory device coupled to the event data recorder and configured to store event data processed in the event data recorder; and, an input/output port communicatively linked to the memory device through which read/write access can be provided to the memory device. Significantly, a tamper proof sealing mechanism can be provided which bars access to the memory device, the event data recorder and the input/output port without causing an irreparable breach of the tamper proof sealing mechanism.
Type:
Grant
Filed:
August 26, 2002
Date of Patent:
September 21, 2004
Assignee:
International Business Machines Corporation
Abstract: A method for enforcing a service discrimination policy in a storage system. The service discrimination policy enforcement method can include monitoring load metrics for physical resources required to access content stored within the storage system. A request to access the content stored within the storage system can be received. A corresponding guaranteed service level can be identified from the request. In consequence, a particular one of the physical resources can be selected to service the request based upon a determination that the selected physical resource can service the request while satisfying the guaranteed service level at a load indicated by the monitored load metrics.
Type:
Grant
Filed:
May 17, 2002
Date of Patent:
August 31, 2004
Assignee:
International Business Machines Corporation
Inventors:
Jeffrey S. Chase, Ronald P. Doyle, David L. Kaminsky
Abstract: The present invention is an adaptive file distribution method for choosing a transmission protocol in order to optimize network and processor bandwidth according to the number of client nodes active on the data distribution network. Specifically, a method for adaptively selecting a transport protocol for transmitting data segments across a distributed data network can include the steps of: determining the number and identity of subordinate nodes on the network that will receive the data segment; selecting a data transport protocol according to the number of subordinate nodes determined; and, transmitting the data segment to the subordinate nodes using the selected transport protocol. Significantly, the transport protocol is selected from the group consisting of a connection-oriented protocol and a connectionless protocol. Moreover, the connection-oriented protocol can be the Transport Control Protocol, whereas the connectionless protocol can be the Universal Datagram Protocol.
Type:
Grant
Filed:
November 30, 1999
Date of Patent:
June 29, 2004
Assignee:
International Business Machines Corporation
Inventors:
Robert Brian Hutchison, Donald Arthur Richards