Abstract: An HVAC line set duct system includes a line set duct with a channel clip. The duct houses an HVAC line set and includes a channel connector for slidably securing the channel clips along the length of the line set duct. The channel clips have collars that engage tie wraps that in turn secure the HVAC line set to the line set duct. The channel clips are installed onto the line set channel connector by exerting a force perpendicular to the length of the line set duct so that the channel clips snap onto the channel connector and slide along the channel connector.

Abstract: In one embodiment, an auxiliary condensate collection system for an air conditioner includes a guide sheet and a drain pan. The guide sheet is positioned under an air handler of the air conditioner to collect condensate overflow and direct the condensate to a drain pan. The guide sheet is large, but flexible, so that it can be rolled up to fit through an attic access hole. The drain pan is small enough that it fits through the attic access hole also. In other embodiments, the auxiliary condensate collection system includes two or more drain pans that can fit through an attic access hole and a bridge that spans a seam formed between the edges of the drain pans arranged side-by-side or end-to-end to seal the seam and direct condensate into the side-by-side or end-to-end drain pans. In other embodiments, each drain pan has an integral overlapping flange so that a matrix of drain pans can be connected together both side-by-side and/or end-to-end.

Abstract: An HVAC line set duct system includes a line set duct with a channel clip. The duct houses an HVAC line set and includes a channel connector for slidably securing the channel clips along the length of the line set duct. The channel clips have collars that engage tie wraps that in turn secure the HVAC line set to the line set duct. The channel clips are installed onto the line set channel connector by exerting a force perpendicular to the length of the line set duct so that the channel clips snap onto the channel connector and slide along the channel connector.

Abstract: Multi-wing hovering and gliding flapping Micro Air Vehicles (“MAV”) are disclosed. The MAV can have independent wing control to provide enhance energy efficiency and high maneuverability. Power to each wing can be controlled separately by varying the amplitude of the wing flapping, the frequency of the wing flapping, or both. The flapping frequency can be controlled such that it is at or near the natural frequency of the wings for improved energy efficiency. The wings can be controlled by a gear train, coil-magnet arrangement or many other actuation systems that enable variable frequency flapping, variable amplitude flapping, or a combination of both. The gear train mechanism provides gyroscopic stability during flight. The wing flapping can include a rotation, or feathering motion, for improved efficiency. The wings can be transitioned between flapping flight and fixed wing flight to enable gliding and hovering in a single configuration.

Abstract: Multi-wing hovering and gliding flapping Micro Air Vehicles (“MAV”) are disclosed. The MAV can have independent wing control to provide enhance energy efficiency and high maneuverability. Power to each wing can be controlled separately by varying the amplitude of the wing flapping, the frequency of the wing flapping, or both. The flapping frequency can be controlled such that it is at or near the natural frequency of the wings for improved energy efficiency. The wings can be controlled by a gear train, coil-magnet arrangement or many other actuation systems that enable variable frequency flapping, variable amplitude flapping, or a combination of both. The gear train mechanism provides gyroscopic stability during flight. The wing flapping can include a rotation, or feathering motion, for improved efficiency. The wings can be transitioned between flapping flight and fixed wing flight to enable gliding and hovering in a single configuration.

Abstract: Malicious network activities do not make use of the Domain Name System (DNS) protocol to reach remote targets outside a local network. This DNS-based enforcement system for confinement and detection of network malicious activities requires that every connection toward a resource located outside the local network is blocked by default by the local enforcement box, e.g. a firewall or a proxy. Outbound connections are allowed to leave the local network only when authorized directly by an entity called the DNS Gatekeeper.

Abstract: A system and method are provided for providing multiple aliases and associated policy profiles for a user of a VoIP communication system. The user configures a multitude of aliases by the user wishes to be contacted, and associates with each alias a policy stored at a user terminal. The aliases are stored within the network so as to be associated with contact information for the user terminal. A proxy processes call requests by determining the contact information associated with an alias entered by a caller, and forwards the call request to the user terminal associated with the contact information. The user terminal determines the alias used by the caller, and processes the connection request in accordance with the policy. The invention allows users to add and delete aliases in order to effect temporary and private contact information. Calls can be handled depending on which alias was used by a caller, rather than on an identification of the device used by the caller.

Abstract: A system and method of tracing network flows in an autonomous communications system are described. The Autonomous System may be formed of multiple subgroups depending on size and application. Each subgroup contains multiple, interconnected routers which participate in transporting data flow across the Autonomous System (AS). A Director within the AS has a full and complete vision of the network topology. When it is desired to trace a particular flow because of an identified attack, selected routers in key locations—through which that particular flow travels—mark packets with labels which enable the tracing of the path. These labels permit the source of the attack, at least in so far as it travels through the AS, to be identified. If the number of entry (or key) points to the AS is larger than the number of available labels, the AS will be divided into subgroups, the flow is traced from subgroup to subgroup.

Abstract: An IPTV network and a method are described herein that seamlessly integrate a multicast-based file transfer mechanism with unicast IPTV middleware to enable the efficient transfer of VOD assets from a Super Headend Office (SHO) to one or more Video Hub Offices (VHOs).

Abstract: The Time to Live (TTL) field in an IP header is used as a covert channel in a communication system. More particularly the TTL field can be used to selectively mark packets with unique identifiers as they pass through an upstream station on their way to a downstream station. In this way the source of a traffic flow at least within a particular domain can be absolutely identified. This method of performing a traceback operation doesn't utilize additional resources as it relies on functionality which already exists in the system.

Abstract: A network monitoring system (60). The system comprises storage circuitry (32) for storing network packet information, wherein the network packet information includes a predicted identifier. The network monitoring system also comprises at least one monitoring circuit (36) coupled to a network (70) along which network traffic flows in a form of packets. The at least one monitoring circuit programmed to perform the steps (44) of receiving a packet communicated along the network and determining whether the received packet is communicated between a source and destination in a first set of network nodes. Each packet in a sequence of communications between the source and the destination comprises a packet identifier that uniquely identifies the packet from all other communications in a flow between the source and the destination.

Abstract: Malicious network activities do not make use of the Domain Name System (DNS) protocol to reach remote targets outside a local network. This DNS-based enforcement system for confinement and detection of network malicious activities requires that every connection toward a resource located outside the local network is blocked by default by the local enforcement box, e.g. a firewall or a proxy. Outbound connections are allowed to leave the local network only when authorized directly by an entity called the DNS Gatekeeper.

Abstract: A system and method are provided for providing multiple aliases and associated policy profiles for a user of a VoIP communication system. The user configures a multitude of aliases by the user wishes to be contacted, and associates with each alias a policy stored at a user terminal. The aliases are stored within the network so as to be associated with contact information for the user terminal. A proxy processes call requests by determining the contact information associated with an alias entered by a caller, and forwards the call request to the user terminal associated with the contact information. The user terminal determines the alias used by the caller, and processes the connection request in accordance with the policy. The invention allows users to add and delete aliases in order to effect temporary and private contact information. Calls can be handled depending on which alias was used by a caller, rather than on an identification of the device used by the caller.

Abstract: Systems and methods of detecting, and dealing with, a man-in-the-middle attack in wireless communications systems are described. The invention operates on the principle that if a mobile terminal is stationary there should be no reason for the access point to which it communicates to hand-over the connection. A hand-over, from the legitimate access point to a rogue access point can be detected by: the occurrence of a full hand-over procedure or simply by detecting a change in signal from the access point, either signal strength or direction of arrival. This indicates the initiation of an attack. Upon detecting such a man-in-the-middle attack, appropriate alerting actions are taken.

Abstract: The Time to Live (TTL) field in an IP header is used as a covert channel in a communication system. More particularly the TTL field can be used to selectively mark packets with unique identifiers as they pass through an upstream station on their way to a downstream station. In this way the source of a traffic flow at least within a particular domain can be absolutely identified. This method of performing a traceback operation doesn't utilize additional resources as it relies on functionality which already exists in the system.

Abstract: A system and method of tracing network flows in an autonomous communications system are described. The Autonomous System may be formed of multiple subgroups depending on size and application. Each subgroup contains multiple, interconnected routers which participate in transporting data flow across the Autonomous System (AS). A Director within the AS has a full and complete vision of the network topology. When it is desired to trace a particular flow because of an identified attack, selected routers in key locations—through which that particular flow travels—mark packets with labels which enable the tracing of the path. These labels permit the source of the attack, at least in so far as it travels through the AS, to be identified. If the number of entry (or key) points to the AS is larger than the number of available labels, the AS will be divided into subgroups, the flow is traced from subgroup to subgroup.

Abstract: A network monitoring system (60). The system comprises storage circuitry (32) for storing network packet information, wherein the network packet information includes a predicted identifier. The network monitoring system also comprises at least one monitoring circuit (36) coupled to a network (70) along which network traffic flows in a form of packets. The at least one monitoring circuit programmed to perform the steps (44) of receiving a packet communicated along the network and determining whether the received packet is communicated between a source and destination in a first set of network nodes. Each packet in a sequence of communications between the source and the destination comprises a packet identifier that uniquely identifies the packet from all other communications in a flow between the source and the destination.