Abstract: A method and apparatus are disclosed for forming an image signal by receiving a flux of photons at a convex photodetector such as a hemispherical photodetector. The convex photodetector includes a plurality of photosensors. Each photosensor has a different orientation with respect to a propagation vector of the flux of photons. The photosensors generate a respective plurality of intensity signals. Each of the intensity signals is related to the respective orientation of the photosensor that generates it. The intensity signals are received by a signal processor, such as a digital signal processor, which uses the intensity signals to compute an image signal related to the intensity signals and thereby produce a focused output image.

Abstract: Described herein is a system for protecting data from unauthorized access. The system uses a central service provider with exposed complementary interfaces: a data protect function that accepts clear data and returns an encrypted representation of the data, and a data unprotect function that accepts encrypted data and returns corresponding clear or unencrypted data. In addition, a user-readable description is optionally packaged with the encrypted data. Different encryption providers can be registered to perform actual encryption and decryption. A default encryption provider performs encryption and decryption based on a user logon secret such as a password. The default encryption provider also accepts additional entropy from calling application programs. The default encryption provider utilizes a multi-level key encryption scheme to minimize the amount of encryption that has to be re-done when the user changes a password.

Abstract: The present invention provides a method for detecting and quantifying mRNA in a sample. The mRNA that can be detected has a unique sequence. The method includes immobilizing a first polynucleotide to an insoluble support. The first polynucleotide has a first sequence that hybridizes to the unique sequence on the mRNA. After immobilization of the first polynucleotide, the sample is applied to the insoluble support under conditions that allow the unique sequence on the mRNA to hybridize with the first polynucleotide. Thereafter, a second polynucleotide is applied to the insoluble support. This second polynucleotide has a second sequence thereon that hybridizes to a portion of the mRNA other than the unique sequence. The application of the second polynucleotide is performed under conditions that allow the second polynucleotide to hybridize with mRNA immobilized on said support, if present.

Abstract: The invention provides central storage for core data secrets, referred to as data items. The architecture includes a storage server, a plurality of installable storage providers, and one or more authentication providers. Programming interfaces are exposed so that application programs can utilize the services provided by the invention without having to actually implement the features. When storing a data item using the protected storage services, an application program can specify rules that determine when to allow access to the data item. Access can, if desired, be limited to the current computer user. Access can similarly be limited to specified application programs or to certain classes of application programs. The storage server authenticates requesting application programs before returning data to them. A default authentication provider authenticates users based on their computer or network logon.

Abstract: Described herein is a method of verifying the integrity of client programs that request services from server programs. The invention includes a step of accepting a request for services from a client program, wherein the client program executes from an executable image in executable memory. In response to such a request, the server program identifies one or more image files on secondary storage corresponding to non-writeable sections of the executable image. The server program then compares the non-writeable sections of the executable image with the corresponding sections of the image files to determine whether the executable image has been altered in the executable memory. The server program provides the requested services only if the executable image of the client program has not been altered.

Abstract: The invention provides central storage for core data secrets, referred to as data items. The data items are encrypted by a client computer using a client key that is derived from a logon secret, such as a password, supplied by a user during a network logon procedure. The client key is escrowed with the participation of a network supervisory computer such as a domain controller. The client sends the client key to the domain controller. The domain controller appends a user identification corresponding to the currently authenticated user of the client computer, and encrypts the resulting combination. The encrypted combination is sent back to and stored locally by the client. To recover the client key, the encrypted combination is sent to the domain controller, which decrypts the combination to obtain the data item. However, the data item is returned to the client computer only if the decrypted user identification corresponds to the currently authenticated user of the client computer.

Abstract: A method for detecting the presence of a particular organism, infectious agent, or biological component of a cell or organism in a sample, based on sandwich hybridization in which first and second probes are used, and the specificity of the first probe is determined based on its melting temperature (T.sub.m) with the target polynucleotide at a selected sodium and formamide concentration.