Abstract: Encryption is provided with additional diffusion components to construct a block cipher with a large and variable block size. The cipher incorporates an encryption system or algorithm such that the cipher is at least as secure as the encryption system or algorithm. Additional components of the cipher provide improved diffusion. This combination ensures that the cipher is at least as strong as the encryption algorithm, and at the same time it provides additional security properties due to its improved diffusion.

Abstract: An authentication mechanism is provided for a web method platform that allows homogeneous access for different types of clients according to a bootstrapping procedure utilized to establish the session. Different clients can be assigned different levels of trust based in part on the bootstrapping procedure and/or information provided during the procedure. The bootstrapping procedure can produce a token that is used by the clients in subsequent requests to provide previous authentication or state information to the platform. The token can comprise a shared secret used to ensure integrity of communications in some cases, and the token can be opaque to the client. Tokens can expire and require a client to re-bootstrap to provide higher levels of authentication protection, and tokens can be shared among a plurality of application servers to facilitate effective handling of requests in a farmed environment.

Abstract: In Transport Layer Security (TLS) or other communication protocols, the load on the server may be lowered by reducing the number of expensive decryption operations that the server has to perform. When a client contacts a server, the client sends the server the client's public key. The server chooses a secret value, encrypts the value with the client's public key, and sends the encrypted value to the client. When the client decrypts the secret, the server and client share a secret value, which may be used to derive an encryption key for further messages. In many key agreement schemes, the client chooses and encrypts the secret value, and the server recovers the value with an expensive decryption operation. By instead having the server choose the value and send it to the client, an expensive decryption operation is redistributed from the server to the client, thereby freeing server resources.

Abstract: In an example, one or more cryptographic keys may be associated with a group. Any member of the group may use the key to encrypt and decrypt information, thereby allowing members of the group to share encrypted information. Domain controllers (DCs) maintain copies of the group's keys. The DCs may synchronize with each other, so that each DC may have a copy of the group's keys. Keys may have expiration dates, and any client connected to a DC may generate a new key when a key is nearing expiration. The various clients may create new keys at differing amounts of time before expiration on various DCs. DCs that store keys early thus may have time to propagate the newly-created keys through synchronization before other DCs are requested to store keys created by other clients. In this way, the creation of an excessive number of new keys may be avoided.

Abstract: An access control system applies contents-based policies to data that is being transferred. This transfer can be between different computers, different operating systems on a single computer, different applications within on the same operating system, or different parts of the same operating system, for example. Data is scanned at a scan engine associated with a security reference monitor (SRM) as the data is being transmitted, on-the-fly. The data is forwarded directly to the recipient, so the data is not stored at the SRM. The data is encrypted at the SRM as it comes by, and the key is revealed to the recipient if it is subsequently determined that the transfer is allowed.

Abstract: The present invention generally relates to methods for treatment of neovascularization in various tissues of a patient's eye. One aspect of the invention is a method of treating a patient for ophthalmologic neovascularization by administering an anti-interleukin-10 agent to the eye of a patient in need thereof to decrease the amount of interleukin-10 in the eye. Another aspect of the invention is a method of treating a patient for ophthalmologic neovascularization by administering isolated macrophages to the eye of a patient in need thereof to decrease a volume of a neovascularization complex within the treated eye.

Abstract: Encryption is provided with additional diffusion components to construct a block cipher with a large and variable block size. The cipher incorporates an encryption system or algorithm such that the cipher is at least as secure as the encryption system or algorithm. Additional components of the cipher provide improved diffusion. This combination ensures that the cipher is at least as strong as the encryption algorithm, and at the same time it provides additional security properties due to its improved diffusion.

Abstract: Encryption is provided with additional diffusion components to construct a block cipher with a large and variable block size. The cipher incorporates an encryption system or algorithm such that the cipher is at least as secure as the encryption system or algorithm. Additional components of the cipher provide improved diffusion. This combination ensures that the cipher is at least as strong as the encryption algorithm, and at the same time it provides additional security properties due to its improved diffusion.

Abstract: An authentication mechanism is provided for a web method platform that allows homogeneous access for different types of clients according to a bootstrapping procedure utilized to establish the session. Different clients can be assigned different levels of trust based in part on the bootstrapping procedure and/or information provided during the procedure. The bootstrapping procedure can produce a token that is used by the clients in subsequent requests to provide previous authentication or state information to the platform. The token can comprise a shared secret used to ensure integrity of communications in some cases, and the token can be opaque to the client. Tokens can expire and require a client to re-bootstrap to provide higher levels of authentication protection, and tokens can be shared among a plurality of application servers to facilitate effective handling of requests in a farmed environment.

Abstract: A security mechanism suitable for wireless local area networks is disclosed that exhibits a reasonable trade-off between computation speed and resistance to attack. The illustrative embodiment can be implemented with operations that are quickly performed on most processors, and, therefore be in many cases reasonably implemented in software. The illustrative embodiment comprises modulo 2 additions, modulo 2B additions, bit rotations, and byte transpositions.

Abstract: A method of dispensing a metal-backed printing blanket onto a printing press cylinder in a controlled fashion is provided. A carton containing the rolled printing blanket may be provided, and a lengthwise slit or opening is opened to withdraw a mounting end of the printing blanket. The alignment and tension of the printing blanket is controlled as it mounts on the printing press cylinder. Parallel reference lines on the carton may be used to draw alignment marks on the printing blanket such that it may be properly inserted into a locking device of the printing press cylinder. The alignment and tension may be controlled using graspable sides of the carton.

Abstract: A system, method, and computer readable medium for mass call defense in a communications network, comprises detecting a mass call event, detecting a resource exhaust event related to the mass call event, where the resource exhaust event is based upon a release message indicating a call connection attempt in excess of a threshold, and releasing, upon detecting the resource exhaust event, subsequent call connection attempts to a called telephone number.

Abstract: This invention is a vehicle data recorder with the capability to continuously record and store selected data on both driver and vehicle performance that will include but not be limited to, miles driven, speed, acceleration/deceleration, brake activation, seatbelt usage, vehicle direction, steering anomalies, global position, impact forces and direction, transmission status, and alcohol usage. Specifically, this recorder will have extended data storage capacity, a drunk driver prevention smart ignition, real-time GPS data, low-power cell phone jamming, and internal wireless communication capabilities. It uses microprocessor controlled electronics to record, store, and transmit both driver and vehicle performance data in a date and time stamped file which can be utilized to establish personalized insurance rates, assess road tax and use fees, locate “Amber alert” victims or stolen vehicles, and with it's on scene access, provide critical mechanism of injury information to emergency responders.

Abstract: A signaling transfer point (STP) (or Signaling Server Global (SSG)) is described herein which includes a processor and a mapping database that can depending on the direction of a message change the Origination Point Code (OPC) or the Destination Point Code (DPC) and the Circuit Identification Code (CIC) contained in the message. As such, the STP can receive a message from a foreign switch located in another telecommunications network and redirect the message that was originally destined for an old switch, which is in the process being removed or has been removed, to a new switch which now hosts the trunks previously connected to the old switch. The return traffic from the new switch is also processed by the STP so that when the foreign switch receives the message, it will appear like it originated from the old switch. As a result, the user of the STP can transparently consolidate switches without affecting the SS7 database contained in other carrier networks.

Abstract: A snap-hook that has a hook, forming a portion of an eye loop, and a lever that is pivotally movable relative to the hook. The lever forms a remaining portion of said eye loop with respect to the hook. A thumb tab is connected to the lever, and is positioned in a slot defined in the hook. The thumb tab is slidable in the slot relative to the hook, forming a release mechanism, such that the sliding movement of the thumb tab in the slot causes the lever to pivot relative to the hook to open said eye loop. The snap-hook has essentially broad, opposing, front and back sides, and relatively narrower edges, such that the back side of the snap-hook can be placed into the palm of a user's hand to hold the snap. The thumb tab is located on the front side of the snap-hook to allow simpler holding of the snap-hook and operation of the release mechanism with one hand while essentially eliminating swiveling of the snap-hook in the hand.

Abstract: Liquid phase liquid crystal polymers (LCPs) are disclosed having a composition and structure that can be varied to provide desirable properties. The liquid phase LCPs have polyiminoborane, polyaminoborane, and/or borozine polymer backbone molecules, with silicon and/or phosphorous side chain molecules linked to the backbone that provide a degree of alignment assigned an Order Parameter (S), defined as S=?[3 cos2 ??1], where ? is the angle between the axis of an LCP molecule and the vertical direction. The inventive liquid phase LCPs have an average Order Parameter in the range of about 0.2 to about 0.99 and are applicable to a number of rinse, coolant, lubricant, sterilization and other protectant processes.

Abstract: A security mechanism suitable for wireless local area networks is disclosed that exhibits a reasonable trade-off between computation speed and resistance to attack. The illustrative embodiment can be implemented with operations that are quickly performed on most processors, and, therefore be in many cases reasonably implemented in software. The illustrative embodiment comprises modulo 2 additions, modulo 2B additions, bit rotations, and byte transpositions.

Abstract: An apparatus comprises an active region, a phosphor layer and a substrate. The active region is configured to emit light having a first band of wavelengths selected from a first group of wavelengths. The phosphor layer has a first refractive index. The phosphor layer includes a plurality of wavelength-converting phosphors. The phosphor layer is configured to convert the first band of wavelengths of light emitted from the active region to a second band of wavelengths. A center wavelength of the second band of wavelengths is greater than a center wavelength of the first band of wavelengths. The substrate is disposed between and in contact with the active region and the phosphor layer. The substrate has a second refractive index. The first refractive index substantially equals the second refractive index.

Abstract: An apparatus, comprises an active region, a phosphor layer and a reflective layer. The active region is configured to emit light having a first band of wavelengths from a first group of wavelengths. The phosphor layer is disposed between and in contact with the active region and an exterior medium. The phosphor layer is configured to convert the first band of wavelengths of light emitted from the active region to a second band of wavelengths. A center wavelength of the second band of wavelengths is greater than a center wavelength of the first band of wavelengths. The reflective layer is optically coupled to the active region. The active region is disposed between the reflective layer and the phosphor layer. The reflective layer is configured to reflect at least the first band of wavelengths and the second band of wavelengths.

Abstract: A mask particularly useful in the weld repair of air cooled gas turbine blades and vanes contains a mixture of ceramic particles in a liquid carrier. The mask is applied onto the surface of the blade or vane, and into the cooling holes. Following a sintering treatment, an inert, thermally stable, electrically nonconductive ceramic mask is produced, which is easily removed after welding.