Abstract: A network security system implements connectivity policies of a network environment. The network security system may use a network topology mapping to implement connectivity policies, where the network topology mapping includes sets of security zones, security devices, and zone paths between the security zones via the one or more security devices. The network security system can generate a universal representation of a connectivity policy for the network environment using a universal syntax. Using the network topology mapping, the network security system can identify zone paths between the security zones for implementing the connectivity policy. The network security system can configure security devices along the zone paths in accordance with the connectivity policies. Configuring security devices may include converting some or all of the universal representation of the connectivity policy into a device-specific representation in a native syntax of the security device.

Abstract: Apparatus, methods and logic for vehicles to determine vehicle to vehicle (V2V) safety message transmission rates for transmitting V2V safety messages based on how frequently the vehicles actually need to exchange safety messages, including factors such as vehicle velocities, distances among vehicles, and on how quickly the inter-vehicle distances are closing up. The determined V2V safety message transmission rates are selectively dynamically adjusted in accordance with detected significant changes in one or more of the inter-vehicle distances or inter-vehicle speeds. To avoid needless frequent changes to the transmission rate, statistical modeling techniques including hypothesis testing and sequential change detection are selectively used to more accurately detect significant changes in inter-vehicle distances or inter-vehicle speeds that warrant a change to the message transmission rate.

Abstract: The trustworthiness of vehicle-to-vehicle (V2V) messages received from one or more associated vehicles in the vicinity of a subject vehicle is determined autonomously by a false signal detection system of the subject vehicle. Physical evidence relating to the associated vehicles is collected, and a statistical model is used to perform an analysis of the collected data. A V2V message is received by the system from a first one of the associated vehicles and a trustworthiness level of the message is determined in accordance with a correlation between the received V2V message and the result of the analyzed physical data relating to the first associated vehicle. The correlation may be a comparison of data contained in the received V2V message relative to a result of a stochastic analysis of the physical data. The received V2V message may be any V2V safety message including Emergency Electronic Brake Light (EEBL) messages.

Abstract: A load balancer or other network device in a server farm acts as a web services proxy and performs service orchestration among servers and other resources within the server farm. The load balancer receives an initial service request from a client and is able to optimize orchestration by assigning component operations of the service to multiple different servers. In this manner, a one-to-many allocation of resources can be mapped whereby a single client service request can result in multiple physical servers or other devices, processes or resources being used to handle the service request while maintaining a single back-end flow per multiple transactions.

Abstract: A method and an apparatus for the identification of the mode of a telephony device in a network are provided. A call initiation signal is received from a mode-identifying telephony device. The call initiation signal is used to communicate with a mode-selecting telephony device. Thereafter, the mode at the mode-selecting telephony device is detected and an answer mode signal, including the information regarding the answering mode of the mode-selecting telephony device, is sent to the mode-identifying telephony device.

Abstract: A cable has an integrated cable management system for organizing multiple cables. The body of the cable has a first mating surface with a first interlocking element disposed thereon and a second mating surface with a second interlocking element disposed thereon the second mating surface, where the first interlocking element is configured as a complementary interlocking element for the second interlocking element, so that multiple cables may be joined without the use of additional cable-organizing devices. The first interlocking element may include at least one coupling recess formed in the first mating surface and configured to engage with an interlocking element having the same configuration as the second interlocking element.

Abstract: This method and apparatus is used to process call control protocol messages and quality of service media streams from an internet protocol conferencing session. The status and attributes processed from call control protocol messages are combined with the quality of service information for the parties connecting to a conferencing session for display to users in real-time.

Abstract: An apparatus consisting of a digital communication channel comprised of a multiplicity of lanes where data is striped across the lanes in a predefined sequence. Each lane has the ability to be powered down or powered up in response to the amount of data being held in a transmit buffer at one end of the communication channel. The method consists of monitoring the amount of data being held in the transmit buffer; making the decision of how many lanes are required based on the amount of data; sending signals to cause the required number of lanes to be powered down or powered up; and performing the required power down or power up action at the particular transmitter and receiver.

Abstract: Methods, apparatuses and systems facilitating location or containment of rogue or unauthorized access points on wireless computer network environments. Embodiments of the present invention support one to a plurality of rogue containment methodologies. A first rogue containment type involves identification of the physical connection of the rogue access point to the wired network infrastructure and, thus, allows for disabling of that physical connection to contain the rogue access point. Other rogue containment methods involve wireless techniques for containing the effect of rogue access points. In some embodiments, the present invention provides methods, apparatuses and systems facilitating network location of rogue access points to determine whether one or more rogue containment methodologies should be applied. As discussed below, the rogue location and containment functionality described herein can be applied to a wide variety of wireless network system architectures.

Abstract: A system and method for servicing a caller at a contact center includes providing self-service menu options to the caller through an automated system, and determining a total time spent by the caller in the automated system. If the caller's attempts at self-service are unsuccessful, the caller is transferred out of the automated system and into a position of a wait queue, the position of the caller in the wait queue being determined based on a credit for the total time spent by the caller in the automated system. It is emphasized that this abstract is provided to comply with the rules requiring an abstract that will allow a searcher or other reader to quickly ascertain the subject matter of the technical disclosure. It is submitted with the understanding that it will not be used to interpret or limit the scope or meaning of the claims.

Abstract: A wireless node location mechanism that employs a differential signal strength metric to reduce the errors caused by variations in wireless node transmit power, errors in signal strength detection, and/or direction-dependent path loss. As opposed to using the absolute signal strength or power of an RF signal transmitted by a wireless node, implementations of the location mechanism compare the differences between signal strength values detected at various pairs of radio receivers to corresponding differences characterized in a model of the RF environment. One implementation searches for the locations in the model between each pair of radio receivers where their signal strength is different by an observed amount.

Abstract: Methods, apparatuses and systems directed to preventing unauthorized access to internal network addresses transmitted across wireless networks. According to the invention, mobile stations are assigned virtual client network addresses that are used as the outer network addresses in a Virtual Private Network (VPN) infrastructure, as well as unique internal network addresses used as the inner network addresses. In one implementation, the virtual client network addresses have little to no relation to the internal network addressing scheme implemented on the network domain. In one implementation, all clients or mobile stations are assigned the same virtual client network address. A translation layer, in one implementation, intermediates the VPN session between the mobile stations and a VPN server to translate the virtual client network addresses to the internal network addresses based on the medium access control (MAC) address corresponding to the mobile stations.

Abstract: Methods, apparatuses and systems directed to, or facilitating, the graphical display of status information in wireless network management systems. In one implementation, the present invention provides a graphical user interface that allows a network administrator to readily ascertain the overall status of a wireless network, and quickly identify the network element(s) within the network that are associated with any potential problem or condition. In another implementation, the present invention provides a graphical user interface that provides status icons that efficiently convey status information for corresponding access points. In another implementation, the present invention provides a hierarchical network model that facilitates network data management, configuration and display tasks associated with wireless network management systems.

Abstract: Various embodiments provide an apparatus and method for configuring a shared data rate in a stackable interface network. An example embodiment includes detecting a data cable identifier, the data cable identifier being indicative of a first data rate capacity associated with a data cable identified by the data cable identifier; propagating information indicative of the first data rate capacity to at least one of a plurality of network devices connected via stackable network interfaces; receiving information indicative of a second data rate capacity from at least one of the plurality of network devices; determining an appropriate shared data rate from the information indicative of the first data rate capacity and the information indicative of the second data rate capacity; and configuring at least one of the plurality of network devices to communicate via a stackable network interface at the shared data rate.

Abstract: A method for operating a network and a network architecture implementing the method are described. The method, in one embodiment, begins by grouping a plurality of nodes into zones, where the network includes the plurality of nodes. At least one of the nodes in each one of the zones is one of a plurality of boundary nodes, and each of the boundary nodes in each one of the zones is coupled to a boundary node in another of the zones by one of a first number of inter-zone optical links. One of the zones includes a number of nodes, each of which is coupled to at least one other of the nodes by one of a second number of intra-zone optical links. Next, a non-boundary node is configured to transmit network information to other of the nodes. The non-boundary node is a node in the zone that is not a boundary node. Finally, a boundary node in the zone is configured to limit transmission of the network information through itself to other of the boundary nodes.

Abstract: A method and an apparatus to distribute power to a networked apparatus are provided. The apparatus may comprise a communication module to receive sensor data via a communication network connected to a plurality of sensors operatively located within a building. The plurality of sensors may be to provide sensor data identifying a presence of one or more persons in the building. The apparatus includes a policy engine including a plurality of rules, each rule associated with at least one powered device located within the building. A power control module is configured to adjust power supplied to the at least one powered device based on the rule. Power to the powered devices may be provided over a power over Ethernet network.

Abstract: Methods, apparatuses and systems directed to the dynamic configuration of QoS policy for sessions in wireless network environments. Certain embodiments of the present invention feature the transparent processing of session initiation messages associated with wireless clients and the dynamic configuration of QoS policy for the wireless clients having no QoS configuration mechanism. In certain embodiments, the dynamic QoS configuration mechanism is transparent to the wireless clients, requiring no QoS functionality to reside on the wireless clients. Certain embodiments of the present invention transparently process SIP messages to dynamically configure QoS policy for the resulting sessions. As discussed below, the dynamic QoS configuration functionality described herein can be applied to a variety of wireless network system architectures.