Abstract: A fiber optic cassette includes a body defining a front and an opposite rear. A cable entry location, such as a multi-fiber connector, is defined on the body for a cable to enter the cassette, wherein a plurality of optical fibers from the cable extend into the cassette and form terminations at one or more single or multi-fiber connectors adjacent the front of the body. A flexible substrate is positioned between the cable entry location and the connectors adjacent the front of the body, the flexible substrate rigidly supporting the plurality of optical fibers. Each of the connectors adjacent the front of the body includes a ferrule. Dark fibers can be provided if not all fiber locations are used in the multi-fiber connectors. Multiple flexible substrates can be used with one or more multi-fiber connectors.

Abstract: A method and apparatus for providing an automated key distribution to enable communication between two networked devices. A monitoring device receives a request from a network device to send a certificate using a second secure connection prior to an expiration of a timeout period, wherein the second secure connection was created using a known port in response to determining that a request to create a first secure connection was rejected. The monitoring device sends the certificate to the network device using the second secure connection, and establishes the first secure connection with the network device in response to the network device receiving the public key of the monitoring device from a server system by using the certificate.

Abstract: An apparatus and a method for generating a secure cipher key over an insecure channel. In one embodiment, a set of polynomials is generated and shared between a first party and a second party over the insecure channel. The first party generates a first random exponent for its private cipher key. The second party generates a second random exponent for its private cipher key. The first party operates on the set of polynomials with the first random exponent and sends the results to the second party. The second party operates on the set of polynomials with the second random exponent and sends the results to the first party. A shared cipher key is computed based on the exchanged operation results.

Abstract: A method and apparatus for generating multiple keys for a set of archives or portions of a set of archives. The process includes receiving a passphrase from a user and an indicator of a set of archives to be modified or created. An archive key generation process can be based on a random value generation, an algorithm for generating keys with specific characteristics, an indexing scheme, a progressive enciphering scheme or a shared secret scheme. The generated keys are enciphered using an enciphering algorithm in combination with the passphrase. The archive keys are stored with the archives in their enciphered form. Other intermediate key information is also stored with the archive to enable deciphering of the set of archives using the passphrase as needed.

Abstract: The invention relates to a enclosure assembly for at least one connector, including an enclosure, the enclosure having a connector volume configured to receive the connector and an opening at least at a rearward end, a strain relief element being adapted to receive a cable, the strain relief element being provided with a relief portion at one end, the relief portion being configured to support the cable elastically, and with a fastening portion, the fastening portion in a mounted state being arranged at least partially within the opening and affixing the strain relief element to the enclosure. To create an enclosure which is easy to mount and assures a reliable anchorage of the cable within the enclosure, in a pre-mounted state, the enclosure and the strain relief element are adapted to be slid relative to each other in a forward direction (F) up to a forward position, and in that in the forward position the enclosure is automatically engaged in a friction lock with the fastening portion.

Abstract: An apparatus and a method for storing an encrypted username and password. In one embodiment, a username is encrypted. A password associated with the username is encrypted. A user identifier associated with the username is encrypted. The encrypted username, the encrypted password, and the user identifier are stored in one or more database.

Abstract: An apparatus and a method for encrypting a username is described. In one embodiment, a hashed username is encrypted with an encryption function. An input size of the encryption function matches an output size of the encryption function. The password associated with the hashed username is replaced with a function of the encrypted username. The function includes a linear combination operator of the password and the encrypted username. The encrypted username is then swapped with the replaced password. The encryption, replacement, and the swapping are iterated for at least two rounds using a different key with each iteration.

Abstract: A method and apparatus for client authentication using a pseudo-random number generation system. The pseudo-random number generation utilizes a secret key as well as state information as input into the hash function to generate a pseudo-random number. The state information that is part of the input can be any number of prior generated pseudo-random numbers. The authentication allows for synchronization of the client and server by exchanging state information. The authentication is not dependent on any absolute time and consequently the client and servers are not required to maintain a reliable shared time base.

Abstract: An apparatus and a method for authenticating a secure communication is described. A server receives a request from a client for an original SSL certificate. The server embeds a message in a common name (CN) of a new SSL certificate directing the client to another server. The client is transparently reconfigured and establishes a secure communication with the other server using the new SSL certificate.

Abstract: An apparatus and a method for an online desktop distribution is described. In one embodiment, an online desktop operates on a client with an online desktop distributor having an operating system with one or more kernels compiled for usermode. A server coupled to the client stores and uploads a user profile setting to the client to configure the online desktop on the client based on a user login on the online desktop. The online desktop can be booted from the client with the online desktop distributor or run as a hosted operating system in usermode under a default operating system of the client.

Abstract: A broadcast stateless protocol by which a client broadcasts a request to a server group is described. In one embodiment, the client broadcasts the request to a server group. A tamper-evident challenge including the request is received from any one server of the server group. A response to the tamper-evident challenge is broadcast to any one server of the server group, the response including the request. A result to the request is received upon any one server of the server group verifying the response being valid and the request being unmodified.

Abstract: A method and apparatus for providing an automated key distribution process to enable communication between two networked devices without the need for human provision of a key to both networked devices. In response to a first connection request from a first network device to a second network device, the second network device will check for a credential such as a public key for the first network device. If the credential is not present, then the second network device will communicate with the first network device on a second secured and pre-defined connection to obtain a certificate from the first network device. The second network device then queries a backend server with the certificate to obtain a credential such as the public key for the first network device. Subsequent connection or communication requests from the first network device will then be properly serviced.

Abstract: Some embodiments of a method and apparatus for encrypting and decrypting data have been presented. In one embodiment, a current key is generated from a prior ciphertext block and another key, which may include a prior key used to encipher the prior ciphertext block or an initialization vector. Then a current plaintext block is enciphered using the current key to generate a current ciphertext block.

Abstract: An optical ferrule comprising: (a) a body defining an end face; (b) one or more channels extending from said end face through said body, each channel adapted to receive an optical fiber; and (c) first and second alignment pin channels defined in said end face, each alignment pin channel having a center point, said center points being disposed along a first axis, said first alignment pin channel having a first cross section essentially the same as that of an alignment pin and being adapted to receive said alignment pin, said second alignment pin channel having a second cross section elongated along said first axis.

Abstract: The invention relates to a fiber optic furcation assembly (1) which comprises an over-molded body (2) formed from a flexible material, having a first end (15) and an opposed second end (16), the first end (15) being adapted to receive a portion of a fiber optic distribution cable (3) having at least two optical fibers (7), and the second end (16) being adapted to receive a portion of at least one furcation cable jacket (13) sheathing at least one furcated optical fiber (7?) from the fiber optic distribution cable (3), at least one of the fiber optic distribution cable (3) and the furcation cable jacket (13) comprising reinforcement members (9, 12). To reduce the load of the optical fibers (7) within the furcation assembly at least a portion of the reinforcement members (9, 12) is anchored within the over-molded body (2) so as to transmit a load from the over-molded body via the anchored reinforcement members (9, 12) to the respective cable (3, 4).

Abstract: A method and apparatus for a pseudo-random number generation system. The pseudo-random number generation mixes the output of two or more pseudo-random number generators to create a new pseudo-random number or sequence. The process operates on pseudo-random numbers with a bit size k, multiplies the numbers and then performs modulo 2k+1 on the result of the multiplication. This process can be performed quickly and with minimal computing resources, while improving the quality of the randomness of the output.

Abstract: An apparatus and a method for an authentication protocol. In one embodiment, a server generates a sequence number, and a server message authentication code based on a server secret key. The server sends the sequence number, an account identifier, and the server message authentication code to the client. The client generates a client message authentication code over the sequence number, a request specific data, and a shared secret key between the client and the server. The client sends a request to the server. The request includes the sequence number, the account identifier, the server message authentication code, the request specific data, and the client message authentication code. The server determines the validity of the client request with the shared secret key.

Abstract: A method and apparatus for generating shared session keys. The method and apparatus does not rely on strong random number generation. The first node sends a timestamp and random sequence to the second node. The second node generates a message authentication code (MAC) using this data and a shared secret key. The MAC is then used to encrypt a reply containing a second timestamp and second random sequence from the second node. The first node receives this message and decrypts it by generating the same MAC. Both nodes then generate a session key using the shared set of timestamps and random sequences.

Abstract: A method and apparatus including a monitoring and correction module that monitors process metrics to identify a steady-state for a process, detects a deviation from the steady-state for the process, and executes a corrective measure automatically to reduce an impact of the process in response to the deviation by a monitoring and correction module. The monitoring and correction module also analyzes the deviation to determine whether the deviation is negatively impact in performance for other processes.

Abstract: A document preprocessor preprocess a document to enhance the statistical features of the document. The system preprocesses the document by matching a prefix and a trailing context in the document with one or more matching prefixes in a transformation database, where the prefix is a first string of one or more tokens in the first document and the trailing context is a second string of one or more tokens in the first document that trail the prefix. Alternatively, the system preprocesses the document by computing cyclic permutations of the document, sorting these permutations and taking the last token from each of the sorted permutations.