Abstract: A computer-implemented method for controlling access to data is. A request to access data is received. A determination is made that an access-control policy of the data is satisfied. A virtualization layer is activated to allow access to the data after determining that the access-control policy is satisfied. Various other methods, systems, and computer-readable media are also disclosed.

Abstract: Example embodiments relate to a memory card including a generally box-shaped printed circuit board, a control chip in the generally box-shaped printed circuit board, a memory chip in the generally box-shaped printed circuit board, and a plurality of contact pads on at least two portions of an upper portion, a lower portion, a left portion and a right portion of a front face of the generally box-shaped printed circuit board, and on at least two portions of an upper portion, a lower portion, a left portion and a right portion of a rear face of the generally box-shaped printed circuit board.

Abstract: An apparatus and method for providing a security service is provided. The apparatus includes a reception module which receives first data including a first public key and marked with a security ID, the first public key being one of a pair of public keys necessary for providing a security service to a home server and the security ID indicating that the first data needs to be encrypted; a response generation module which generates second data by encrypting part of a response message for the first data; and a transmission module which transmits the second data to a home server in a home network.

Abstract: An electronic unit includes a first circuit board having a power semiconductor device and an electrolytic capacitor and a second circuit board having an electronic component to control the power semiconductor device. The second circuit board is arranged perpendicular to the first circuit board and along the surface of the electrolytic capacitor. The electronic unit further includes a connecting member being jointed at one end thereof to the first circuit board and jointed at the other end thereof to the second circuit board for electrical connection between the first and second circuit boards.

Abstract: A job processing apparatus that can communicate with a security server configured to manage an access right to data, executes a job for inputting data, stores data resulting from execution of the job, determines whether an access right to the stored data is managed by the security server, and automatically sets information for enabling the security server to manage an access right to the data when no access right to the stored data is managed by the security server.

Abstract: A method for monitoring stored procedures is disclosed. The method performs on-line and inline monitoring of stored procedures for detecting table access operations performed by the procedures. This allows the enforcing of access control policies, correlation rules and audit rules on stored procedures. The monitoring is performed using mapping information gathered about each stored procedure that can be executed by a database server. The method comprises parsing an incoming transaction submitted by a client; determining whether the incoming transaction includes an invocation of a stored procedure; obtaining a query group corresponding to the stored procedure; applying an access control policy on the query group; and asserting an unauthorized event if the query group is not compliant with the access control policy.

Abstract: Disclosed herein is a printed circuit board facilitating expansion of number of memory modules and memory system including the same. The printed circuit board of the present invention includes a plurality of slots and a plurality of controller terminals. Each of slots disposed in locations ranging from a 2n?1+1th location to a 2nth location with respect to the controller terminals includes 2k?n module terminals connected to the module terminals of slots ranging from the slot disposed in the first location to a slot disposed in a 2n?1th location; wherein, in the printed circuit board and memory system including the printed circuit board according to the present invention, dummy modules are not required to expand the number of memory modules. Further, according to the printed circuit board of the present invention, the expansion of the number of memory modules is facilitated.

Abstract: A method and logic encoded in tangible media and apparatus for securing links between a mesh point and one or more identities of one or more parent mesh points of a wireless mesh network in order to secure the links. A first association is carried out to one of the identities of one of the parent mesh points. The first mesh point undergoes a mutual authentication with an authenticator and announces the possibility of multiple links and/or multiple paths. The authentication generates a first master key from which the root master key of the key hierarchy is derived so that other master keys for different identities are derivable using a hierarchy. The mesh point undergoes a 4-way handshake to derive a first transient key. Other transient keys are obtained by a fast roaming method without having to re-undergo a backend authentication, the other transient keys being for other links and/or paths and derived using the hierarchy.

Abstract: As a result of the inability to assign security in multiple applications at one time, there is an opportunity to tie the disparate security systems together. Security synchronization services is a method and apparatus that uses roles to provide a common administration experience for all applications that use it and fits better for new applications.

Abstract: A Tamper-Resistant Communication layer (TRC) adapted to mitigate ad hoc network attacks launched by malicious nodes is presented. One embodiment of the invention utilizes TRC, which is a lean communication layer placed between a network layer and the link layer of a network protocol stack. All aspects of the network protocol stack, with the exception of the routing protocol and data packet forwarding mechanism in the network layer, are unchanged. TRC takes charge of certain key functions of a routing protocol in order to minimize network attacks. Additionally, TRC implements highly accurate self-monitoring and reporting functionality that can be used by nodes in the network to detect compromised nodes. TRC of a node controls its ability to communicate with other nodes by providing non-repudiation of communications. The tamper-resistant nature of TRC provides high assurance that it cannot be bypassed or compromised.

Abstract: An article of manufacture includes a machine-readable medium that stores a multimedia content file in a first format and multiple program sets. Each program set is a version of software that, when executed by a respective electronic system, produces the multimedia content file in a second format for use in the respective electronic system. A first program set is compatible with a first operating system executed by a first electronic system and a second program set is compatible with a second operating system executed by a second electronic system. The second operating system is distinct from the first operating system.

Abstract: A graphical password authentication method is based on sketches drawn by user. The method extracts a template edge orientation pattern from an initial sketch of the user and an input edge orientation pattern from an input sketch of the user, compares the similarity between the two edge orientation patterns, and makes an authentication decision based on the similarity. The edge orientations are quantized, and each edge orientation pattern includes a set of quantized orientation patterns each corresponding to one of the quantized edge orientations. The number of quantized edge orientations, as well as other parameters such as the dimension of the final orientation patterns and acceptance threshold, can be optimized either globally or user-specifically.

Abstract: A bridge for multi-network communications is provided. A voice bridge includes an open settlement protocol (OSP) compliant interface for establishing inter-domain voice connections. The voice bridge facilitates connections between OSP compliant and non-OSP compliant networks and interfaces with an OSP server. A call set-up component processes requests from OSP compliant and non-OSP compliant networks. An OSP interface facilitates OSP compliant reporting to the OSP server. Other embodiments comprising additional features, such as address masking, are also provided.

Abstract: A method for communicating between a first Fibre Channel (FC) enabled device and a second FC enabled device, where the communication occurs across a fabric that operates in accordance with a first protocol different from a FC protocol of the first and second FC enabled devices. The method includes receiving, from the first FC enabled device, at a first gateway receiver a sequence of bytes including at least one control character in accordance with the FC protocol. The method then includes replacing the at least one control character with at least one data character. The method also includes generating an encapsulation header and an encapsulation footer for encapsulating the sequence of bytes in which at least one control character was replaced with at least one data character. The method then includes setting a control character indicator in the encapsulation header if a first byte in the sequence of bytes received at the gateway receiver is a control character.

Abstract: An integrated circuit (203) for use in processing streams of data generally and streams of packets in particular. The integrated circuit (203) includes a number of packet processors (307, 313, 303), a table look up engine (301), a queue management engine (305) and a buffer management engine (315). The packet processors (307, 313, 303) include a receive processor (421), a transmit processor (427) and a risc core processor (401), all of which are programmable. The receive processor (421) and the core processor (401) cooperate to receive and route packets being received and the core processor (401) and the transmit processor (427) cooperate to transmit packets. Routing is done by using information from the table look up engine (301) to determine a queue (215) in the queue management engine (305) which is to receive a descriptor (217) describing the received packet's payload.

Abstract: A scalable video transmission scheme is provided in which client interaction and video content itself are taken into consideration during transmission. Methods and arrangements are provided to prioritize/classify different types of information according to their importance and to packetize or otherwise arrange the prioritized information in a manner such that lower priority information may be dropped during transmission. Thus, when network congestion occurs or there is not enough network bandwidth to transmit all of the prioritized information about an object, some (e.g., lower priority) information may be dropped at the server or at an intermediate network node to reduce the bit rate. Thus, when the server transmits multiple video objects over a channel of limited bandwidth capacity, the bit rate allocated to each object can be adjusted according to several factors, such as, e.g., information importance and client interaction.

Abstract: A computer network connects a personal computer system to a content delivery system for delivering digital content to the personal computer. The personal computer comprises a disk drive which includes a network address for the content delivery system and a server-contacting program. The disk drive comprises firmware installed during manufacturing of the drive which initiates execution of the server-contacting program to enable the network connection and facilitate delivery of content to a large number of personal computers.

Abstract: A method of signalling in a telecommunications system that includes a Call Control level and a Bearer Control level, where the Call Control level includes a plurality of Media Gateway Controllers and the Bearer Control level includes a plurality of Media Gateways, each of which is controlled by a Media Gateway Controller. The method includes allocating to each Media Gateway at least one address that corresponds to one of a plurality of different addressing formats, and conveying these addresses between peer Media Gateway Controllers by encapsulating them using a Network Service Access Point addressing format.

Abstract: A system and a method for transmitting data between a local data processing system and a remote data processing system through an asynchronous transmission channel. To ensure synchronization between a local and a remote data processing device, it is proposed that when a first program of the local data processing device sends a call, such as a RPC (Remote Procedure Call) to a second program of the remote data processing device, at least one predefinable parameter of the data to be transmitted is stored in the local data processing device. When the remote data processing device sends a response to the local data processing device, the predefinable parameter is provided to identify and/or synchronize the response in the first program.

Abstract: A method for anonymous subject-based addressing includes receiving, from a client computer, a point-to-point request message. The method also includes converting the point-to-point request message to a subject-based message. The subject-based message is also multicast. Additionally, a response is received to the subject-based message. The method also includes converting the response to the subject-based message to a point-to-point response message. Moreover, the point-to-point response message is transmitted back to the client computer.