Abstract: An example intermediary system allows a control system to securely identify and communicate with a device. The device uses master secret and time data shared with the control system to generate and advertise a time-dependent device identifier and potentially an encrypted device message. The intermediary system augments the received device data with a message (e.g., an estimate of the device's location) encrypted using the time-dependent device identifier as an encryption key. Furthermore, it hashes the time-dependent device identifier for additional security. The augmented data is provided for retrieval and processing by the control system. The owner uses the shared master secret, time data and hash function to generate a hashed time-dependent device identifier used to retrieve matching augmented data from the server. The retrieved message data is decrypted using the reverse of the encryption operations.

Abstract: An example intermediary system allows a control system to securely identify and communicate with a device. The device uses master secret and time data shared with the control system to generate and advertise a time-dependent device identifier and potentially an encrypted device message. The intermediary system augments the received device data with a message (e.g., an estimate of the device's location) encrypted using the time-dependent device identifier as an encryption key. Furthermore, it hashes the time-dependent device identifier for additional security. The augmented data is provided for retrieval and processing by the control system. The owner uses the shared master secret, time data and hash function to generate a hashed time-dependent device identifier used to retrieve matching augmented data from the server. The retrieved message data is decrypted using the reverse of the encryption operations.

Abstract: An example method for the remote authorization of a gateway to communicate with a device includes accessing time interval data, specified by an owner of the device, the time interval data specifying an access authorization time interval. A calculation is performed, using at least one processor, to generate authorization data that is specific to the device and valid for the access authorization time interval. The authorization data is accessed using the gateway. A scanning function is performed using the gateway, the scanning function to locate the device. A control request is sent to device to control the device.

Abstract: An example intermediary system allows an owner computer system to securely identify and communicate with an end device. The end device uses master secret and time data shared with the owner computer system to generate and advertise a time-dependent device identifier and potentially an encrypted device message. The intermediary system augments the received device data with a message (e.g., an estimate of the device's location) encrypted using the time-dependent device identifier as an encryption key. Furthermore, it hashes the time-dependent device identifier for additional security. The augmented data is forwarded to a server for retrieval and processing by the owner computer system. The owner uses the shared master secret, time data and hash function to generate a hashed time-dependent device identifier used to retrieve matching augmented data from the server. The retrieved message data is decrypted using the reverse of the encryption operations.

Abstract: An example intermediary system allows an owner computer system to securely identify and communicate with an end device. The end device uses master secret and time data shared with the owner computer system to generate and advertise a time-dependent device identifier and potentially an encrypted device message. The intermediary system augments the received device data with a message (e.g., an estimate of the device's location) encrypted using the time-dependent device identifier as an encryption key. Furthermore, it hashes the time-dependent device identifier for additional security. The augmented data is forwarded to a server for retrieval and processing by the owner computer system. The owner uses the shared master secret, time data and hash function to generate a hashed time-dependent device identifier used to retrieve matching augmented data from the server. The retrieved message data is decrypted using the reverse of the encryption operations.

Abstract: An example method for the remote authorization of a gateway to communicate with a device includes accessing time interval data, specified by an owner of the device, the time interval data specifying an access authorization time interval. A calculation is performed, using at least one processor, to generate authorization data that is specific to the device and valid for the access authorization time interval. The authorization data is accessed using the gateway. A scanning function is performed using the gateway, the scanning function to locate the device. A control request is sent to device to control the device.

Abstract: A method to reconfigure a connection-oriented network from an existing configuration to a desired configuration includes generating a sequence of configuration specifications for the connection-oriented network. The sequence specifies a plurality of intermediate configurations between the existing and the desired configurations. The sequence of configuration specifications is implemented within the connection-oriented network by, for each configuration specification, issuing at least one instruction to an element of the connection-oriented network to modify configuration information maintained at the element to thereby instantiate respective configurations. The implementing includes issuing a specific instruction to instantiate a subsequent configuration specification only if an acknowledgment is received that a preceding configuration has been successfully instantiated.

Abstract: A method of communicating predicted network behavior includes generating network topology structure data describing at least part of a topology of a first network. Demand structure data is generated, the demand structure data describing at least some traffic demands relating to a source in the first network and a destination in a second network, wherein there are a plurality of network links between the first network and the second network. Traffic routing change data, describing at least one change scenario which would require a change of traffic routing, is generated. This data is then used to calculate change data that describes a routing of traffic through each of the plurality of network links between the first network and the second network for the at least one change scenario. The change data is transmitted to the second network.

Abstract: A method to reconfigure a connection-oriented network from an existing configuration to a desired configuration includes generating a sequence of configuration specifications for the connection-oriented network. The sequence specifies a plurality of intermediate configurations between the existing and the desired configurations. The sequence of configuration specifications is implemented within the connection-oriented network by, for each configuration specification, issuing at least one instruction to an element of the connection-oriented network to modify configuration information maintained at the element to thereby instantiate respective configurations. The implementing includes issuing a specific instruction to instantiate a subsequent configuration specification only if an acknowledgment is received that a preceding configuration has been successfully instantiated.

Abstract: A method to reconfigure a connection-oriented network from an existing configuration to a desired configuration includes generating a sequence of configuration specifications for the connection-oriented network. The sequence specifies a plurality of intermediate configurations between the existing and the desired configurations. The sequence of configuration specifications is implemented within the connection-oriented network by, for each configuration specification, issuing at least one instruction to an element of the connection-oriented network to modify configuration information maintained at the element to thereby instantiate respective configurations. The implementing includes issuing a specific instruction to instantiate a subsequent configuration specification only if an acknowledgment is received that a preceding configuration has been successfully instantiated.

Abstract: A method of communicating predicted network behavior includes generating network topology structure data describing at least part of a topology of a first network. Demand structure data is generated, the demand structure data describing at least some traffic demands relating to a source in the first network and a destination in a second network, wherein there are a plurality of network links between the first network and the second network. Traffic routing change data, describing at least one change scenario which would require a change of traffic routing, is generated. This data is then used to calculate change data that describes a routing of traffic through each of the plurality of network links between the first network and the second network for the at least one change scenario. The change data is transmitted to the second network.

Abstract: A method to reconfigure a connection-oriented network from an existing configuration to a desired configuration includes generating a sequence of configuration specifications for the connection-oriented network. The sequence specifies a plurality of intermediate configurations between the existing and the desired configurations. The sequence of configuration specifications is implemented within the connection-oriented network by, for each configuration specification, issuing at least one instruction to an element of the connection-oriented network to modify configuration information maintained at the element to thereby instantiate respective configurations. The implementing includes issuing a specific instruction to instantiate a subsequent configuration specification only if an acknowledgment is received that a preceding configuration has been successfully instantiated.

Abstract: A system and method for documenting and displaying computer program code comprises a token annotation unit, a comment analyzer, a token parsing library, and a code outline unit. The token parsing library parses a program comprising related program code files into a set of constituent tokens. The token annotation unit selectively associates one or more annotations with tokens in a program by creating a token annotation object. When program code is displayed, the token annotation unit visually identifies each annotated token present according to a display style. The token annotation unit presents annotations corresponding to an annotated token in response to the selection of the annotated token during program code display.