Abstract: In an embodiment, a system includes: a casing for surrounding at least a portion of a rotor, and enclosing a volume of a cooling gas thereabout, the casing including a plurality of static seals; an end housing at each end of the casing, each end housing including a seal system through which the rotor extends, wherein a portion of cooling gas escapes from the casing to at least one seal area; and a source of cooling gas fluidly coupled to the casing by a cooling gas regulator. The system may further include: a scavenging system coupled to each end housing for removing a gas mixture therefrom including a portion of escaping cooling gas; a sensor for determining a purity of the cooling gas in the casing; and a static seal leak detector that generates an alarm indicative of a leak in at least one of the plurality of static seals.

Abstract: A method of streamlined web site navigation includes providing a command line interface supplemental to a graphic user interface. The command line interface accepts entry of verbs and parameters from a web site-specific vocabulary. The web site-specific vocabulary allows a user to access functions of a graphic user interface page of the web site by entering at least one verb and without navigating page links to reach the graphic user interface page. The method receives data entered at the command line interface, including the at least one verb. The method continues with identifying a particular web page responsive to the verb, and sending the particular web page towards a client system. The method may further include receiving with the data entered at the command line interface at least one parameter that modifies the verb, and identifying the particular web page responsive to the verb combined with the parameter.

Abstract: A technique for mitigating excessive operations attacks in a wireless communication network includes receiving message requests from stations, detecting an excessive operation attack, checking if a received request is a first request or a retry request, and ignoring any first requests. The method can also include saving information about the first request, and wherein if checking reveals that the received request is a retry request, the method further confirms that the retry request and the saved information about the first request meet matching conditions, whereupon the retry request is further processed as normal. Since attacks rarely utilize retry requests, this technique effectively ignores attack messages.

Abstract: Detection of, among other things, seal leakage(s) and/or seal oil contamination for a gas cooled generator are provided. Detectors according to some embodiments of the invention provide mechanisms of early detection of cooling gas, e.g., hydrogen, leakage through leakage sources as well as low purity and high cooling gas consumption problems in a gas cooled generator.

Abstract: A system for evaluating bearing metal temperature (BMT) to diagnose rotor misalignment and/or bearing wipe in an electrical machine. A first system is provided that includes: an input system for obtaining bearing metal temperature (BMT) readings from a first BMT sensor located proximate the turbine and a second BMT sensor located proximate the generator, and for obtaining operational data including lube oil inlet temperature, speed and power; a filter system for filtering bad input data; and a misalignment analysis system that issues a misalignment warning in response to one of the BMT sensor reporting an increasing temperature and the other BMT sensor reporting a decreasing temperature.

Abstract: The invention includes a method for encrypting and transmitting a message M from a first location to a second location. Random numbers P and Q are initially selected, each of them being either a prime or a non-prime number. P and Q are both furnished to a sender and a recipient at the first and second locations, respectively. A client at the first location generates an encrypted message E, which is the remainder left when a modulus operator divides a first quantity, equal to M multiplied by P to the i power, where i is a selected number, by a second quantity equal to (PQ?1). A tuple comprising E and i is transmitted from the first location to the second location, and a second data processing system at the second location to determines the message M from E, i and Q.

Abstract: An approach for pre-fetching pages and records in an on demand services environment is disclosed. This approach for pre-fetching pages and records provides for rendering data directly from a locally saved copy. Particular embodiments can include providing a user interface (UI) for a user of the on-demand services environment. According to requests received via the UI, the server can check for a user's log-in credentials. Depending upon the user's activity history, the server can also predict pages which would likely be visited by the user, store those pages as a local copy, and pre-send those pages in advance to the user.

Abstract: A technique for mitigating excessive operations attacks in a wireless communication network includes receiving message requests from stations, detecting an excessive operation attack, checking if a received request is a first request or a retry request, and ignoring any first requests. The method can also include saving information about the first request, and wherein if checking reveals that the received request is a retry request, the method further confirms that the retry request and the saved information about the first request meet matching conditions, whereupon the retry request is further processed as normal. Since attacks rarely utilize retry requests, this technique effectively ignores attack messages.

Abstract: In an embodiment, a system includes: a casing for surrounding at least a portion of a rotor, and enclosing a volume of a cooling gas thereabout, the casing including a plurality of static seals; an end housing at each end of the casing, each end housing including a seal system through which the rotor extends, wherein a portion of cooling gas escapes from the casing to at least one seal area; and a source of cooling gas fluidly coupled to the casing by a cooling gas regulator. The system may further include: a scavenging system coupled to each end housing for removing a gas mixture therefrom including a portion of escaping cooling gas; a sensor for determining a purity of the cooling gas in the casing; and a static seal leak detector that generates an alarm indicative of a leak in at least one of the plurality of static seals.

Abstract: Detection of, among other things, seal leakage(s) and/or seal oil contamination for a gas cooled generator are provided. Detectors according to some embodiments of the invention provide mechanisms of early detection of cooling gas, e.g., hydrogen, leakage through leakage sources as well as low purity and high cooling gas consumption problems in a gas cooled generator.

Abstract: A method and device enables detecting a spoofing attack in a wireless communication network (100). The method includes receiving at the primary access point (105) a beacon signal transmitted from an alternative access point (115), where the beacon signal includes an alternative access point identification. The primary access point (105) then compares the alternative access point identification with an actual identification of the primary access point (105). It is then determined at the primary access point that the alternative access point (115) is conducting a spoofing attack if the alternative access point identification matches the actual identification of the primary access point (105).

Abstract: A service selection gateway (SSG) which permits multiple access quotas associated with a pre-paid service accessed by a user. For example, the user's access may be terminated if the usage exceeds a specified time or volume of data transferred (examples of access quotas). According to another aspect, access of a service is permitted based on different tariffs. Thus, a user may be charged differently depending on the applicable tariff. In an embodiment implemented in the context of pre-paid tariffs, multiple access quotas may be received associated with the same resource, and each quota may be computed according to a corresponding tariff.

Abstract: A service policy manager may be used to enable a first subscriber in a community to administer rules on another subscriber in the same community. A service selection gateway (SSG) may then be configured according to the rules to provides services according to the rules. As a result, the services provided to a subscriber depend not just on the individual profile of the subscriber, but also potentially on the rules administered by other members of the communities the subscriber is a part of.

Abstract: A service policy manager may be used to enable a first subscriber in a community to administer rules on another subscriber in the same community. A service selection gateway (SSG) may then be configured according to the rules to provides services according to the rules. As a result, the services provided to a subscriber depend not just on the individual profile of the subscriber, but also potentially on the rules administered by other members of the communities the subscriber is a part of.

Abstract: A method is disclosed for authorizing a prepaid network service in a data network. A network end station issues a request for a prepaid network service. At a network node, such as a router serving as a gateway for selecting services, a determination is made about whether a user associated with the end station is authorized to access the prepaid network service. Network traffic from the end station is forwarded to a service provider only when the user is authorized to use the prepaid network service. Specific embodiments provide message flows among a mobile station, gateway support node, router, and authentication server that support providing prepaid services in a packet-switched network for mobile communication. In certain embodiments, a connection is held open for an end station while a prepaid quota value is refreshed at a portal, thereby reducing overhead and precluding the need to repeat user logon steps.

Abstract: An improvement in the compilation of classification tables from across control lists increases the efficiency of memory utilization by fragments in the lower level tables and using the classification ID's from a pair of higher-level tables as pointers to the fragments and as indicators of the depth of the entries in the fragments. A further improvement makes use of aggregate bit vectors, thereby simplifying construction of the lower-level tables. The bit-vector sections preferably coincide with the cache lines of the processing, thereby maximizing the speed with which the relevant bits in the bit vector can be identified from the aggregate bit vectors.

Abstract: A method of creating a browser renderable toolbar or helper application, and a network architecture therefore. The browser renderable toolbar obviates the need for separately-installed software while still permitting a user to take advantage of the functionality provided by a traditional toolbar.

Abstract: A method is provided to aggregate a plurality of affinity lists to generate a single aggregated affinity list representing predicted affinities of a particular item, to other items, under a plurality of conditions. Each of the plurality of affinity lists represents an affinity of the particular item, to other items, under a subset of the plurality of conditions that is less than all of the plurality of conditions. For each of the affinity lists, a sub-list is determined corresponding to that affinity list by determining a subset of the entries of that affinity list based on the indicated affinity, and the indicated lifts of the entries of that affinity list. For each entry of the sub-list, a normalization indication is determined for that entry. Based on the determined normalization indications, the single aggregated affinity list is generated. Each entry of the single aggregated affinity list indicates a unique one of the other items as indicated by entries in one or more of the sub-lists.

Abstract: A technique that simplifies managing and configuring firewalls by provisioning a vendor-neutral firewall in an MPLS-VPN service network. In one example embodiment, this is accomplished by creating a vendor-neutral firewall policy using a service activation tool residing in a host server. One of the one or more VPNs requiring the provisioning of the vendor-neutral firewall in the MPLS-VPN service network is then selected. The created vendor-neutral firewall policy is then transformed to form a vendor-specific firewall policy associated with the selected one of the one or more VPNs.

Abstract: A service selection gateway (SSG) which enables a service provider to conveniently provide access of the same services to a group of hosts. The service provider may specify the specific services each group of hosts is permitted to access, and the SSG forwards packets from the hosts only to the corresponding specified services. In an embodiment implemented substantially in the form of software, the access information (specifying the server addresses which can be accessed from each group of hosts) is stored in the form of data structures in which the same copy of access information is shared by many (all) hosts in the corresponding group.