Abstract: An intrusion masquerade detection system and method that includes a grammar inference engine. A grammar-based Minimum Description Length (MDL) compression algorithm is used to determine a masquerade based on a distance from a threshold in a model of an estimated algorithmic minimum sufficient statistic.

Abstract: An intrusion masquerade detection system and method that includes a grammar inference engine. A grammar-based Minimum Description Length (MDL) compression algorithm is used to determine a masquerade based on a distance from a threshold in a model of an estimated algorithmic minimum sufficient statistic.

Abstract: A network intrusion detection system and method that includes a grammar inference engine. A grammar-based Minimum Description Length (MDL) compression algorithm is used to determine an attack based on closeness of fit to one or more compression models. The network intrusion detection system and method can determine zero day attacks.

Abstract: A network activity visualization system can include an MDL grammar database adapted to store a plurality of MDL grammars, and a pattern matching module adapted to match a received network activity data set against the MDL grammars by calculating a distance of the network activity data set from each MDL grammar. The system can also include an intelligent icon module adapted to receive the MDL grammars and distances of a network data set from each respective MDL grammar, and adapted to generate intelligent icons based on the MDL grammars and distances. The system can further include a display system adapted to display the intelligent icons so as to provide a visual indication of network security.

Abstract: A network activity visualization system can include an MDL grammar database adapted to store a plurality of MDL grammars, and a pattern matching module adapted to match a received network activity data set against the MDL grammars by calculating a distance of the network activity data set from each MDL grammar. The system can also include an intelligent icon module adapted to receive the MDL grammars and distances of a network data set from each respective MDL grammar, and adapted to generate intelligent icons based on the MDL grammars and distances. The system can further include a display system adapted to display the intelligent icons so as to provide a visual indication of network security.

Abstract: An information disseminating apparatus that transmits information between nodes of a network while expending minimal or no network bandwidth for transmitting the information. The apparatus can include a message processor that generates or receives a message to be transmitted from a first note to a second node in the network, and a transmitter that transmits data packets in a sequence that represents the message from the first node to the second node. The apparatus may further include a plurality of queues each associated with a class and services one or more data packets each having a marker that corresponds to the class, and a queue processor that dequeues the data packets from the queues in accordance to the sequence and the class associated with each of the queues.

Abstract: An intrusion masquerade detection system and method that includes a grammar inference engine. A grammar-based Minimum Description Length (MDL) compression algorithm is used to determine a masquerade based on a distance from a threshold in a model of an estimated algorithmic minimum sufficient statistic.

Abstract: An intrusion masquerade detection system and method that includes a grammar inference engine. A grammar-based Minimum Description Length (MDL) compression algorithm is used to determine a masquerade based on a distance from a threshold in a model of an estimated algorithmic minimum sufficient statistic.

Abstract: A network intrusion detection system and method that includes a grammar inference engine. A grammar-based Minimum Description Length (MDL) compression algorithm is used to determine an attack based on closeness of fit to one or more compression models. The network intrusion detection system and method can determine zero day attacks.

Abstract: A method and system of congestion control in a network are provided. A required quality of service (QoS) parameter, such as a maximum allowable latency, for a packet received at a queue in the network, and a route cost metric, such as accumulated and estimated latency, are determined, and the packet is either discarded if the route cost metric exceeds the required QoS parameter, or a discard bias value is set for the packet. Also, if the required QoS parameter exceeds the route cost metric, the method includes determining whether a congestion condition exists in the network, and if the congestion condition exists, biasing the packet for discard based on its latency if the route cost metric for the packet exceeds a threshold. The network may be an IP network, and a network such as a mobile ad hoc network (MANET).

Abstract: An information disseminating apparatus that transmits information between nodes of a network while expending minimal or no network bandwidth for transmitting the information. The apparatus can include a message processor that generates or receives a message to be transmitted from a first note to a second node in the network, and a transmitter that transmits data packets in a sequence that represents the message from the first node to the second node. The apparatus may further include a plurality of queues each associated with a class and services one or more data packets each having a marker that corresponds to the class, and a queue processor that dequeues the data packets from the queues in accordance to the sequence and the class associated with each of the queues.

Abstract: Methods and apparatuses for optimizing distributed multiplexed bus interconnects are described. Parameters of components that make up a distributed multiplexed bus interconnect may be optimized, such as an amount of area on a chip occupied by the component, an amount of power consumed by the component, etc., while satisfying existing timing constraints between nodes of a distributed multiplexed bus interconnect.

Abstract: A system, method and program storage device tangibly embodying a program of instructions for determining whether to allow transmission of data from a source destined for a destination over a network, comprising: acquiring a string of a predetermined length in bits (L) from the data; partitioning the acquired string into a partition of phrases, each of the phrases in the partition being unique and having one or more bits; determining a number of phrases (N) in the partition; estimating a normalized complexity (C) for the Kolmogorov Complexity in the acquired string via C ? N 2 ? L ; and evaluating whether to allow transmission of the data based on a comparison of whether the normalized complexity estimate (C) is within a predetermined normal complexity estimate band.

Abstract: A method and apparatus for communicating between an appliance and a power line carrier communication system includes at least one power line carrier connection, at least one appliance connection, and processing circuitry for translating between an appliance communication protocol and a power line carrier communication protocol. The method and apparatus allow bidirectional communication between power line carrier and apparatus.

Abstract: A method of monitoring and automating a home using a network-based system is provided. The system employs a server system coupled to a centralized database, at least one client system, and a plurality of sensors positioned throughout the home. The method includes receiving monitoring and automation (M&A) information from the client system, storing M&A information into the centralized database, cross-referencing M&A information, updating the centralized database periodically to maintain M&A information, monitoring M&A information within the home through the plurality of sensors, performing M&A tasks in the home using the plurality of sensors based on M&A information inputted into the client system and monitored M&A data, and notifying a home owner of the monitored M&A data and the M&A tasks performed within the home.

Abstract: A method and apparatus for optimizing distributed multiplexed bus interconnects are described. The multiplexed bus interconnect contains one or more multiplexers to route signals through the bus interconnect. An amount of signaling wiring present within a distributed multiplexed bus interconnect is optimized by eliminating individual signaling wires based upon whether an Intellectual Property core connected to the multiplexed bus interconnect transmits or receives signals from the distributed multiplexed bus interconnect.

Abstract: A method of distributing wide band data using a neutral-to-ground circuit within an electrical wiring installation includes modifying a load center with an interface module which interfaces to the neutral-to-ground circuit and configuring the interface module to compensate for varying impedance within the neutral-to-ground circuit to improve data transmission characteristics. Multiple embodiments are included within the method for compensation of varying impedance including channel sounding, spectral waterfilling, and communications using spread spectrum techniques, for example, frequency hopping and direct sequencing techniques.

Abstract: A system, method and program storage device tangibly embodying a program of instructions for determining whether to allow transmission of data from a source destined for a destination over a network, comprising: acquiring a string of a predetermined length in bits (L) from the data; partitioning the acquired string into a partition of phrases, each of the phrases in the partition being unique and having one or more bits; determining a number of phrases (N) in the partition; estimating a normalized complexity (C) for the Kolmogorov Complexity in the acquired string via 1 C ≡ N 2 ⁢ L ;

Abstract: A system and method for network security analysis are provided, wherein points of high vulnerability in the network may be identified by evaluating the complexity of data in the network. Points of low complexity are determined to be highly vulnerable, while points of high complexity are determined to be less vulnerable.

Abstract: A system for communicating with a residential electrical load center, including a residential electrical wiring system and at least one electronic communicating circuit breaker. The electronic communicating circuit breaker includes a fuse protected communications and control module. The system provides power to the fuse protected communications and control module utilizing the residential electrical wiring system, and operates the electronic communicating circuit breaker utilizing the fuse protected communications and control module regardless of whether the electronic communicating circuit breaker is in an ‘Open’ or ‘Closed’ state.