Abstract: The practical benefit of the inventive idea results from an assumption that typically, the operational subCAs will not get compromised. Assuming this, a a batch of revocation lists manifesting no revocations can be generated and signed. These pregenerated CRLs (root CRLs) can then be stored outside the high-security vault and, in case of no subCA compromises, published periodically one at a time to the directory system where the PKI clients can automatically fetch them.

Abstract: A method (400, 610) for handling information about packet data connections arriving at a security gateway element, in order to have in a connection data structure information about packet data connections in accordance with current screening information is presented. In the method, data packet header information about packet data connections in accordance with first screening information is stored (401) in said connection data structure, and updated screening information, said updated screening information forming either by itself or in connection with said first screening information second screening information, is being received (402).

Abstract: The invention relates to methods for controlling of transmission of data in IP networks. According to the invention, the sequence numbers and sending times of transmitted IPSec packets are stored, acknowledgement is sent for every N:th received IPSec packet or after any IPSec packet if T seconds have elapsed after sending a previous acknowledgement packet, the acknowledgement comprising the sequence number of the particular IPSec packet after the reception of which the acknowledgement is sent and the counter values indicating the number of packets and bytes received, and at least the round trip time, packet success rate and throughput value are determined from the reception time of the acknowledgement and the stored sending time associated with the sequence number in the acknowledgement and the counter values indicating the number of packets and bytes received.

Abstract: A system for providing video-on-demand service, broadband internet access and other broadband services over T-carrier systems including a pull multiplexer cherrypicker at the head end is disclosed. The pull multiplexer receives upstream requests and cull out MPEG or other compressed video packets, IP packets and other data packet types to satisfy the requests or to send pushed programming downstream. The downstream can be DSL or HFC. Each customer has a cable modem, DSL modem or a gateway which interfaces multiple signal sources to a LAN to which settop decoders, digital phones, personal computers, digital FAX machines, video cameras, digital VCRs etc. can be attached. Each gateway can coupled the LAN to a DSL line or HFC through a cable modem or a satellite dish through a satellite transceiver. A PSTN and conventional TV antenna interface is also provided.

Abstract: A system for bidirectional communication of digital data between a central unit and a remote unit wherein the need for tracking loops in the central unit has been eliminated. The central unit transmitter generates a master carrier and a master clock signal which are used to transmit downstream data to the remote units. The remote units recover the master carrier and master clock and synchronize local oscillators in each remote unit to these master carrier and master clock signals to generate reference carrier and clock signals for use by the remote unit receiver. These reference carrier and clock signals are also used by the remote unit transmitters to transmit upstream data to the central unit. The central unit receiver detects the phase difference between the reference carrier and clock signals from the remote units periodically and adjusts the phase of the master carrier and master clock signals for use by the central unit receiver to receive the upstream data.

Abstract: A system for providing video-on-demand service, broadband internet access and other broadband services over T-carrier systems including a pull multiplexer cherrypicker at the head end is disclosed. The pull multiplexer receives upstream requests and cull out MPEG or other compressed video packets, IP packets and other data packet types to satisfy the requests or to send pushed programming downstream. The downstream can be DSL or HFC. Each customer has a cable modem, DSL modem or a gateway which interfaces multiple signal sources to a LAN to which settop decoders, digital phones, personal computers, digital FAX machines, video cameras, digital VCRs etc. can be attached. Each gateway can coupled the LAN to a DSL line or HFC through a cable modem or a satellite dish through a satellite transceiver. A PSTN and conventional TV antenna interface is also provided.

Abstract: A multichannel, mixed mode cable modem termination system receiver capable of receiving multiple channels of digital data transmitted on one or more hybrid fiber coaxial cable systems, each the channels being either single mode or mixed-mode. Mixed mode channels are time division multiplexed and have overlapping bandwidth and each sub-channel of a mixed mode channel can have a different center frequency, symbol rate and/or multiplexing type. The receiver is comprised of a plurality of analog front end circuits coupled to the various HFC systems, each selective coupled to any one of a plurality of digital front end receivers. Control circuitry controls these circuits to receive multiple mixed-mode or single mode channels, simultaneously if necessary. An arbiter decides which bursts get processed first in a back end shared demodulator which recovers the data from each burst.

Abstract: Data processing versatility increases for both other companies and a given company to which a user belongs, information simultaneity can be obtained inside and outside the given company, quick data processing can be performed, and knowledge work processing can be obtained. The data processing apparatus has a reception processing means connected to a network, transmission processing means connected to the network, self data group storage portion, reception data group storage portion, and transmission data group storage portion. The data structure of each storage portion is classified into organization, reference, and general control in the vertical direction and slip, book, and knowledge in the horizontal direction. Although data contents in the vertical direction are the same, they are defined as data having different meanings. Slips and books are managed using identification codes, and knowledge is managed using item data and knowledge table.

Abstract: An automated software production system is provided, in which system requirements are captured, converted into a formal specification, and validated for correctness and completeness. In addition, a translator is provided to automatically generate a complete, robust software application based on the validated formal specification, including user-interface code and error handling code.

Abstract: A system for providing video-on-demand service, broadband internet access and other broadband services over T-carrier systems including a pull multiplexer cherrypicker at the head end is disclosed. The pull multiplexer receives upstream requests and cull out MPEG or other compressed video packets, IP packets and other data packet types to satisfy the requests or to send pushed programming downstream. The downstream can be DSL or HFC. Each customer has a cable modem, DSL modem or a gateway which interfaces multiple signal sources to a LAN to which settop decoders, digital phones, personal computers, digital FAX machines, video cameras, digital VCRs etc. can be attached. Each gateway can coupled the LAN to a DSL line or HFC through a cable modem or a satellite dish through a satellite transceiver. A PSTN and conventional TV antenna interface is also provided.

Abstract: A method is provided for intercepting network packets in a computer system, where a number of functions are used to communicate network packets between a network adapter and a protocols entity. A first network adapter and a first protocols entity installed in the computer system are identified. A set of replacement functions is provided within a packet interceptor module. At least one function used for transmitting network packets from said first protocols entity to said first network adapter is hooked into a first replacement function. At least one function used for transmitting network packets from said first network adapter to said first protocols entity is hooked into a second replacement function. At least one function used for receiving information about the status of the network interface implemented by said first network adapter is hooked into a third replacement function.

Abstract: A system for bidirectional communication of digital data between a central unit and a remote unit wherein the need for tracking loops in the central unit has been eliminated. The central unit transmitter generates a master carrier and a master clock signal which are used to transmit downstream data to the remote units. The remote units recover the master carrier and master clock and synchronize local oscillators in each remote unit to these master carrier and master clock signals to generate reference carrier and clock signals for use by the remote unit receiver. These reference carrier and clock signals are also used by the remote unit transmitters to transmit upstream data to the central unit. The central unit receiver detects the phase difference between the reference carrier and clock signals from the remote units periodically and adjusts the phase of the master carrier and master clock signals for use by the central unit receiver to receive the upstream data.

Abstract: A switch, switched architecture and process for transferring data through an FCAL switch is disclosed. The switch uses multiple switch control circuits each coupled to one FCAL [net]work and all connected to a crossbar switch. The switch control circuits are coupled together by a protocol bus for coordination purposes. Local conversations can occur on each FCAL loop and crossing conversations through the switch can occur concurrently. The OPN primitive is used to establish the connection before any data is transferred thereby eliminating the need for buffer memory in the switch control circuits. The destination address of each OPN is used to address a lookup table in each switch control circuit to determine if the destination node is local. If not, the destination is looked up and a connection request made on the protocol bus. If the remote port is not busy, it sends a reply which causes both ports to establish a data path through the backplane crossbar switch.

Abstract: The invention relates to automated methods for creating offers for items to a customer. According to the invention, an automated system queries an user interface of a customer's product catalog database. The user interface can be for example a www (world wide web) server of the customer's internet site, which allows searching for products available at the customer's service. The system queries each item in a set of items, and examines the resulting output from the user interface. Internet commerce sites typically allow a user to enter a query for a product, and then reply with a response document detailing the results of the query, i.e. if the queried product was found, and if any such products are presently available and possibly also in how large numbers. The system receives the response document after each query, and examines the response document to find out, if the response indicates that the customer has the queried product available or not.

Abstract: Process and device structures for constructing RFID tag and smart card and toy controller integrated circuit transceivers built inexpensively using flat panel display manufacturing machines on large plastic or glass or plastic laminated to glass substrates using thin film technologies at low temperatures and using chemicals and gases which will not attack or damage the substrate. Also disclosed are structures to eliminate the reliability problems caused by differential strain caused by different coefficients of thermal expansion.

Abstract: A process and apparatus to automatically determine whether a police radar is installed in a vehicle which has a coupling between a vehicle speed sensor and the police radar. The process automatically, without any operator input, determines the correct ratio between the true ground speed and the frequency output by vehicle speed sensor at that ground speed. The process and apparatus then use that ratio and the frequency from the vehicle speed sensor to establish a software search window that limits the speed range of the search by the police traffic radar for the true ground speed.

Abstract: A method for allowing upstream channels having the same multiplexing type but different symbol rates or the same symbol rates but different multiplexing types to be transmitted on the same frequency band without interfering with each other. In particular, a method for allowing DOCSIS 1.0 TDMA only cable modems to coexist on a digital data delivery distributed system with advanced PHY TDMA or SCDMA mode cable modems without the need for modification of the DOCSIS 1.0 cable modems or the need for the DOCSIS 1.0 modems to transmit on a different frequency.

Abstract: Data packets are communicated between a transmitting virtual router in a transmitting computer device and a receiving virtual router in a receiving computer device. A security association is established for the secure transmission of data packets between the transmitting computer device and the receiving computer device. The transmitting virtual router and the receiving virtual router are identified within said security association. In the transmitting computer device, the security association for processing a data packet coming from the transmitting virtual router is selected on the basis of the identification of the transmitting virtual router within the security association. In the receiving computer device, the security association for processing a data packet coming from the transmitting computer device is selected on the basis of values contained within the data packet.

Abstract: A system for reducing the cost of network managment by using a proxy agent and subchannel communications so fewer SNMP licenses and fewer protocol stacks are needed. Subchannel communication is achieved in a plurality of different embodiments. Embodiments having single subchannel transceivers, multiple transceivers, single multiplexer and multiple multiplexers are disclosed. An NMS process using routing table CRC to automatically detect when the NMS topology information is incorrect and automated topology discovery is disclosed. A process for automated discovery of redundant cables during automated topology discovery is disclosed.

Abstract: A narrow band interference excision circuit for use in broadband digital data communication systems such as CDMA systems. The excision circuit is comprised of a matrix of polyphase filters that divide the input signal into a plurality of narrow subbands. Each narrow subband signal is examined to determine if narrowband interference exists in that bin. This is done preferably by computing the average power of the subband signal. If a signal in a bin has an average power greater than some adjustable or adaptive threshold, then the entire subband signal is eliminated. A bank of polyphase synthesis filters reassembles the composite signal. An equalization circuit with an error predictor comprised of an adaptive FIR filter is coupled to adapt coefficients of the filter and generate a colored noise cancellation signal to remove colored noise from the input to the slicer.