Abstract: A system and method for providing telephony and high speed data access over a broadband access network, comprising a network interface unit (NIU) coupled to a backup local exchange carrier (LEC) line, the broadband access network coupled to the NIU, an intermediate point-of-presence (IPOP) coupled to the broadband access network, and at least one external access network coupled to the IPOP. The system also provides for a fail-safe mode in which the NIU supports the LEC line for lifeline services.

Abstract: The present invention permits a network service provider to detect an operational condition—such as congestion—in a packet-switched network and to alleviate such congestion by providing customer incentives to avoid use of the network. The detection mechanism triggers an incentive such as the modification of the user's access charges and the customer can be immediately notified of either the occurrence of the congestion or of information regarding the incentive. Usage of the network during congested periods can be deterred by imposing additional access charges during such periods—similarly, customers can be given a discount to encourage usage during periods of low congestion. An incentive schedule can be tailored to dynamically change the usage patterns of the customers of the network to accommodate the operational conditions in the network.

Abstract: It is an object of the invention to reduce the risk of misuse of a user's credit card number while avoiding having to securely contact and authenticate with a card-issuer before each transaction. In accordance with an aspect of the invention, the card-holder/user has access to a temporary authorization number generator, which is capable of accepting data from the user, such as the user's credit card number, and generating a cryptographically-secure temporary authorization number that is used in lieu of the user's credit card number in transactions. The card-issuer need not know the temporary authorization number before receiving the request for authorization from a merchant presented with it during a transaction. The present invention, while not limited to electronic commerce transactions, is especially suited for electronic commerce transactions occurring over a telecommunication network where the user cannot trust the integrity of either the network or the merchant receiving the credit card number.

Abstract: The invention takes advantage of the capability of assigning multiple addresses to a single host to improve the processing performed by a firewall in a packet-switched network. The host utilizes a plurality of addresses to refer to groups of related tasks on the host. When the firewall receives an outbound packet having one of these source addresses, it authorizes further inbound packets addressed to the particular source address.

Abstract: A device and method filter information to restrict access to private information of a domain in a domain name system. The device includes a filtering device. The filtering device filters information received from devices external to the domain by removing the private information before forwarding the information to devices within the domain. The private information includes IP addresses and domain names. The private information also includes any additional information appended to legitimate responses to requests from devices in the domain.

Abstract: A system identifies transmission routes between a user and a desired destination site on a wide area communications network, such as the Internet. The system then detects transit characteristics for each of the transmission routes. A user can request the level of activity on the routes. Thus, the user can be apprised of the existence of possible congestion in any attempt to access the desired destination site.

Abstract: A device and method redirect query requests to restrict access to private information of a domain in a domain name system. The device includes a switching device that redirects query requests for the private information from within the domain to a device within the domain. The private information includes IP addresses and domain names. All the devices in the domain may be modified to direct all query requests to the switching device or the switching device may be incorporated into a firewall of the domain.