Abstract: A testing system for testing a missile component having a sense axis includes a centrifuge, a support arm, an orientation assembly, and a controller. The centrifuge rotates the orientation assembly about a vertical axis in a substantially horizontal plane. The orientation assembly includes a first motor, a first gimbal, and a gimballed support. The first motor has a first rotatable shaft defining a first gimbal axis. The first gimbal is coupled with the first rotatable shaft to rotate about the first gimbal axis while the centrifuge rotates the orientation assembly about the vertical axis such that missile component is simultaneously rotated about both the vertical axis and the first gimbal axis to simulate a missile launch of the missile component. The gimballed support is coupled with the first gimbal for supporting the missile component such that the sense axis of the missile component is not parallel to the substantially horizontal plane.

Abstract: A computer-implemented method of operating a user-searchable database system of curated, themed digital content data, which method includes operating a Connects function to process and store heterogeneous digital content comprising topic data as curated topic data and identified connections between each topic and other topics, and operating a user interface to enable users to search the curated topics and present a search results page in a way that invites further investigation of topics searched, including a list or compilation of topics matching terms defining the search. The method also includes displaying topic elements corresponding to the list or compilation of matching topics in prioritized order based on each topic's relatedness to the search.

Abstract: The present invention provides a novel device and method of generating and bagging dialysate for continuous veno-venous hemodialysis (CVVHD). The procedure involves the use of standard hemodialysis (HD) equipment and the device of the present invention. The device of the present invention is an adapter configured to be used with standard hemodialysis equipment.

Abstract: A computer-implemented method of operating a user-searchable database system of curated, themed digital content data, which method includes operating a Connects function to process and store heterogeneous digital content comprising topic data as curated topic data and identified connections between each topic and other topics, and operating a user interface to enable users to search the curated topics and present a search results page in a way that invites further investigation of topics searched, including a list or compilation of topics matching terms defining the search. The method also includes displaying topic elements corresponding to the list or compilation of matching topics in prioritized order based on each topic's relatedness to the search.

Abstract: A testing system for testing a missile component having a sense axis includes a centrifuge, a support arm, an orientation assembly, and a controller. The centrifuge rotates the orientation assembly about a vertical axis in a substantially horizontal plane. The orientation assembly includes a first motor, a first gimbal, and a gimballed support. The first motor has a first rotatable shaft defining a first gimbal axis. The first gimbal is coupled with the first rotatable shaft to rotate about the first gimbal axis while the centrifuge rotates the orientation assembly about the vertical axis such that missile component is simultaneously rotated about both the vertical axis and the first gimbal axis to simulate a missile launch of the missile component. The gimballed support is coupled with the first gimbal for supporting the missile component such that the sense axis of the missile component is not parallel to the substantially horizontal plane.

Abstract: A computer-implemented method of operating a user-searchable database system of curated, themed digital content data, which method includes operating a Connects function to process and store heterogeneous digital content comprising topic data as curated topic data and identified connections between each topic and other topics, and operating a user interface to enable users to search the curated topics and present a search results page in a way that invites further investigation of topics searched, including a list or compilation of topics matching terms defining the search. The method also includes displaying topic elements corresponding to the list or compilation of matching topics in prioritized order based on each topic's relatedness to the search.

Abstract: A three-tier employment model provides flexibility when modeling even moderately complex relationships, such as where an employee has multiple job tasks or assignments for an employer. In such an example, a top level can store information for each employee defining the type of relationship that exists between the employee and the employer, such as where the employee works for multiple entities of the employer. A middle level can capture employment terms and conditions that are associated with the relationship(s), as well as one or many work assignments, such as salary information for each assignment. A bottom level can store the actual details of the work to be performed. A three-tier approach thus provides significant flexibility in modeling the employment of a person for an enterprise, and allows companies and enterprises to easily record the reality of their complex work relationships.

Abstract: A method and apparatus for integrating various network access control frameworks under the control of a single policy decision point (PDP). The apparatus supports pluggable protocol terminators to interface to any number of access protocols or backend support services. The apparatus contains Trust and Identity Mediators to mediate between the protocol terminators and a canonical policy subsystem, translating attributes between framework representations, and a canonical representation using extensible data-driven dictionaries.

Abstract: A method and system for the assignment of security group information using a proxy is disclosed. The method includes receiving an address of a network device at a first network device, receiving a security group of the network device at the first network device and associating the address information and the security group information with one another at the first network device. The first network device is coupled to a second network device. The address is represented by address information, which is received from the second network device. The security group is identified using the security group information, which indicates the network device is a member of the security group. The address information and the security group information are associated with one another by storing the address information and the security group information at the first network device.

Abstract: A method and apparatus for integrating various network access control frameworks under the control of a single policy decision point (PDP). The apparatus supports pluggable protocol terminators to interface to any number of access protocols or backend support services. The apparatus contains Trust and Identity Mediators to mediate between the protocol terminators and a canonical policy subsystem, translating attributes between framework representations, and a canonical representation using extensible data-driven dictionaries.

Abstract: A method and system for including security information with a packet is disclosed. A packet is detected as it exits a first network and enters a second network. The first network is configured to support a network security technique, and the second network is not configured to support the network security technique. Network security information associated with the network security technique is included with the packet. A network device is configured to include network security information in overhead of a packet. A method for identifying a first network device in a network is also disclosed. Identification information of the first network is communicated to a second network device.

Abstract: A method and apparatus for integrating various network access control frameworks under the control of a single policy decision point (PDP). The apparatus supports pluggable protocol terminators to interface to any number of access protocols or backend support services. The apparatus contains Trust and Identity Mediators to mediate between the protocol terminators and a canonical policy subsystem, translating attributes between framework representations, and a canonical representation using extensible data-driven dictionaries.

Abstract: A method and apparatus for integrating various network access control frameworks under the control of a single policy decision point (PDP). The apparatus supports pluggable protocol terminators to interface to any number of access protocols or backend support services. The apparatus contains Trust and Identity Mediators to mediate between the protocol terminators and a canonical policy subsystem, translating attributes between framework representations, and a canonical representation using extensible data-driven dictionaries.

Abstract: Various systems and method are disclosed for disseminating security server contact information in a network. For example, one method (e.g., performed by a security server) involves determining that a network device is a secure network device, in response to participating in a security exchange with the network device; and then sending a server list to the network device. The server list includes the network address of at least one security server. Another method (e.g., performed by a network device) involves initiating an authentication exchange; receiving a server list, which includes the network address of a security server, as part of the authentication exchange; and communicating with the security server by sending a packet to the network address included in the server list.

Abstract: A method and an apparatus are disclosed for securing authentication, authorization and accounting (AAA) protocol messages. An encryption key, a device identifier value, and verification data are received and stored at a network device. The verification data comprises in part a copy the encryption key and the device identifier value, and has been encrypted using a private key of a server. A shared secret is generated by applying a computational function to the encryption key and the device identifier value. Based on the shared secret, a first message integrity check value for a message is generated. The message, the first integrity check value, and the verification data are sent to the server. The server decrypts the verification data using the private key, extracts the encryption key and the device identifier value, and generates the same shared secret by applying the same computational function to the extracted encryption key and device identifier value.

Abstract: A method and system for including security information with a packet is disclosed. A packet is detected as it exits a first network and enters a second network. The first network is configured to support a network security technique, and the second network is not configured to support the network security technique. Network security information associated with the network security technique is included with the packet. A network device is configured to include network security information in overhead of a packet. A method for identifying a first network device in a network is also disclosed. Identification information of the first network is communicated to a second network device.

Abstract: A method and system for including security information with a packet is disclosed. A packet is detected as it exits a first network and enters a second network. The first network is configured to support a network security technique, and the second network is not configured to support the network security technique. Network security information associated with the network security technique is included with the packet. A network device is configured to include network security information in overhead of a packet. A method for identifying a first network device in a network is also disclosed. Identification information of the first network is communicated to a second network device.

Abstract: A method and system for including security information with a packet is disclosed. A packet is detected as it exits a first network and enters a second network. The first network is configured to support a network security technique, and the second network is not configured to support the network security technique. Network security information associated with the network security technique is included with the packet. A network device is configured to include network security information in overhead of a packet. A method for identifying a first network device in a network is also disclosed. Identification information of the first network is communicated to a second network device.

Abstract: A method and system for the assignment of security group information using a proxy is disclosed. The method includes receiving an address of a network device at a first network device, receiving a security group of the network device at the first network device and associating the address information and the security group information with one another at the first network device. The first network device is coupled to a second network device. The address is represented by address information, which is received from the second network device. The security group is identified using the security group information, which indicates the network device is a member of the security group. The address information and the security group information are associated with one another by storing the address information and the security group information at the first network device.

Abstract: A method and system for the assignment of security group information using a proxy is disclosed. The method includes receiving an address of a network device at a first network device, receiving a security group of the network device at the first network device and associating the address information and the security group information with one another at the first network device. The first network device is coupled to a second network device. The address is represented by address information, which is received from the second network device. The security group is identified using the security group information, which indicates the network device is a member of the security group. The address information and the security group information are associated with one another by storing the address information and the security group information at the first network device.