Abstract: This invention discloses a method and system for processing logic modules, each having a separate functionality, into a unique functionality that is to be executed in an interlocked mode as a unique functionality. The method is based on taking logic modules (programs and data) with known functionality and transforming them into a hidden program by integrating modules to execute together into a logic which is partially obfuscated and/or encrypted and/or physically hidden. The hidden program is being updated dynamically to strengthen it against reverse engineering efforts. The program includes the functionality for generating security signals, which are unpredictable by observers, such as a pseudo random sequence of security signals. Only elements that share the means for producing the security signals can check their validity. The modules include operational tasks and performance parameters for this operation.

Abstract: Methods and systems for packet-by-packet directional mobile wireless transmission utilizing plurality of directional antenna sectors, such that, the transmission of each packet is performed by at least one selected antenna sector. A plurality of directional antenna sectors, at least one receiving controller, and at least one transmitting controller, are all physically located at the same location. The direction of transmission is selected responsive to the direction in which the best electromagnetic signal reception was received. For each plurality of data packets, the transmission direction is selected again. Switching logic is coupling the out going transmission signal to selected ones from the plurality of the antennas responsive to the motion of the mobile user.

Abstract: Methods and systems for packet-by-packet directional mobile wireless transmission utilizing plurality of directional antenna sectors, such that, the transmission of each packet is performed by at least one selected antenna sector. A plurality of directional antenna sectors, at least one receiving controller, and at least one transmitting controller, are all physically located at the same location. The direction of transmission is selected responsive to the direction in which the best electromagnetic signal reception was received. For each plurality of data packets, the transmission direction is selected again. Switching logic is coupling the out going transmission signal to selected ones from the plurality of the antennas responsive to the motion of the mobile user.

Abstract: This invention discloses a method and system for processing logic modules, each having a separate functionality, into a unique functionality that is to be executed in an interlocked mode as a unique functionality. The method is based on taking logic modules (programs and data) with known functionality and transforming them into a hidden program by integrating modules to execute together into a logic which is partially obfuscated and/or encrypted and/or physically hidden. The hidden program is being updated dynamically to strengthen it against reverse engineering efforts. The program includes the functionality for generating security signals, which are unpredictable by observers, such as a pseudo random sequence of security signals. Only elements that share the means for producing the security signals can check their validity. The modules include operational tasks and performance parameters for this operation.

Abstract: Methods and systems for packet-by-packet directional mobile wireless transmission utilizing plurality of directional antenna sectors, such that, the transmission of each packet is performed by at least one selected antenna sector. The direction of transmission is selected responsive to the direction in which the best electromagnetic signal reception was received. For each plurality of data packets, the transmission direction is selected again. Switching logic is coupling the out going transmission signal to selected ones from the plurality of the antennas responsive to the motion of the mobile user. The antenna design in this invention is aimed at increasing the gain and minimizing the interfering signals with respect large number of mobile users who are concurrently and continuously tracking and communicating with their access points, and consequently, increasing the bit rate of each transmission and the aggregate capacity of the wireless system.

Abstract: This invention discloses a method and system for processing logic modules, each having a separate functionality, into a unique functionality that is to be executed in an interlocked mode as a unique functionality. The method is based on taking logic modules (programs and data) with known functionality and transforming them into a hidden program by integrating modules to execute together into a logic which is partially obfuscated and/or encrypted and/or physically hidden. The hidden program is being updated dynamically to strengthen it against reverse engineering efforts. The program includes the functionality for generating security signals, which are unpredictable by observers, such as a pseudo random sequence of security signals. Only elements that share the means for producing the security signals can check their validity. The modules include operational tasks and performance parameters for this operation.

Abstract: An input interface system for mapping data packets, each comprising a header portion and a payload portion, from at least one source to at least one destination. An interface method and system between asynchronous data packet flows and synchronized switching systems, which utilize a global common time reference. The synchronized switching systems utilize a time frame switching method based on predefined switching schedules that are responsive to a global common time reference, where the global common time reference is divided into a plurality of contiguous periodic time frames. The asynchronous data packet flows are routed according to information contained in the packets' header. The interface method and system maps the header information of the asynchronous data packet flows to respective time frames that match the predefined switching schedule over the synchronized switching system.

Abstract: Methods and systems for constructing multi-sector antenna for packet-by-packet transmission. The transmission of each packet can be performed by a different antenna sector. The system can consist of a plurality of various antenna types: flat panel, parabolic dish, slotted, omni, planar, micro-strip, Yagi, beam-forming, adaptive, and electro-mechanical moveable. The direction of transmission is selected responsive to the direction in which the best signal reception was received. Switching logic is coupling the out going transmission signal to selected ones from the plurality of the antenna sectors. The antenna design in this invention is aimed at increasing the gain and minimizing the interfering signals with respect large number of users who are concurrently and continuously tracking and communicating with their access points, and consequently, increasing the bit rate of each transmission and the aggregate capacity of the wireless system.

Abstract: The objective of this invention is to provide continuous remote authenticated operations for ensuring proper content processing and management in remote untrusted computing environment. The method is based on using a program that was hidden within the content protection program at the remote untrusted computing environment, e.g., an end station. The hidden program can be updated dynamically and it includes an inseparable and interlocked functionality for generating a pseudo random sequence of security signals. Only the media server that sends the content knows how the pseudo-random sequence of security signals were generated; therefore, the media server is able to check the validity of the security signals, and thereby, verify the authenticity of the programs used to process content at the remote untrusted computing environment. If the verification operation fails, the media server will stop the transmission of content to the remote untrusted computing environment.

Abstract: An input interface system for mapping data packets, each comprising a header portion and a payload portion, from at least one source to at least one destination. An interface method and system between asynchronous data packet flows and synchronized switching systems, which utilize a global common time reference. The synchronized switching systems utilize a time frame switching method based on predefined switching schedules that are responsive to a global common time reference, where the global common time reference is divided into a plurality of contiguous periodic time frames. The asynchronous data packet flows are routed according to information contained in the packets' header. The interface method and system maps the header information of the asynchronous data packet flows to respective time frames that match the predefined switching schedule over the synchronized switching system.

Abstract: An interface method and system between asynchronous data packet flows and synchronized switching systems, which utilize a global common time reference. The synchronized switching systems utilize a time frame switching method based on predefined switching schedules that are responsive to a global common time reference, where the global common time reference is divided into a plurality of contiguous periodic time frames. The asynchronous data packet flows are routed according to information contained in the packets' header. The interface method and system maps the header information of the asynchronous data packet flows to respective time frames that match the predefined switching schedule over the synchronized switching system. The interface system can aggregate multiple asynchronous data packet flows into a single pre-defined switching schedule over the synchronized switching system.

Abstract: An authenticated and metered flow control method provides a network interface with the capability to determine the authenticity of programs used to generate and send data packets, thereby ensuring that users who send data packets are well behaved. The method is based on using a hidden program that was obfuscated into the program used for generating and sending data packets. More specifically, the hidden program generates a pseudo random sequence of security signals that are included in the sequence of data packets that are sent from the user to the network interface. Only the network interface knows how the pseudo random sequence of security signals was generated, and therefore, the network interface is able to check the validity of the pseudo random sequence of security signals, and thereby verify the authenticity of the programs used to generate and send data packets.

Abstract: This invention discloses a method and system for communication that consist of an end station and a network interface, such that, the network interface is capable of determining the authenticity of the program used by the end station to generate and send data packets. The method is based on using a hidden program that was obfuscated and encrypted within the program that is used to generate and send data packets from the end station. The hidden program is being updated dynamically and it includes the functionality for generating a pseudo random sequence of security signals. Only the network interface knows how the pseudo random sequence of security signals were generated, and therefore, the network interface is able to check the validity of the pseudo random sequence of security signals, and thereby, verify the authenticity of the programs used to generate and send data packets. The method further comprises of means for coordinating the initialization of the end station and network interface.

Abstract: The objective of this invention is to ensure that programs that generate and send data packets are well behaved. This invention discloses a method and system that consist of an end station and a network interface, such that, the network interface is capable of determining the authenticity of the program used by the end station to generate and send data packets. The method is based on using a hidden program that was obfuscated within the program that is used to generate and send data packets from the end station. The hidden program is being updated dynamically and it includes the functionality for generating a pseudo random sequence of security signals. Only the network interface knows how the pseudo random sequence of security signals were generated, and therefore, the network interface is able to check the validity of the pseudo random sequence of security signals, and thereby, verify the authenticity of the programs used to generate and send data packets.

Abstract: This invention relates generally to a method and apparatus for timely forwarding, discarding, and delivering data packets over the network and to their destination nodes and the optimization of data transfer throughput through the network. The timely forwarding and discarding are possible thanks to the standard global common time reference (CTR) that is known as UTC (Coordinated Universal Time). UTC is available from GPS (Global Positioning System), Galileo, and GLONASS (Global Navigation Satellite System). Data transfer throughput optimization is pursued by taking advantage of the timely forwarding and discarding properties to improve the data packets transfer flow control mechanisms, such as the sliding window re-sizing algorithm implemented by the widely deployed Transmission Control Protocol (TCP).

Abstract: This invention discloses a method and system for detecting and reacting to unexpected communications patterns. The system consists of a plurality of end stations and a plurality of network interfaces, such that, the network interface is capable of determining the authenticity of the program used by the end station to generate and send data packets. The system further consists of a plurality of secure management servers, which continuously exchange management messages with the network interfaces. Consequently, the secure management servers have the information for detecting unexpected communications patterns. The method allows the control of end stations, and when an unexpected communication pattern is detected, selectively only packets from authenticated programs can be allowed to be transmitted.

Abstract: A time frame switching method and system of data units that utilize a common time reference, which is divided into a plurality of contiguous periodic time frames. The system is designed to operate with time frames, which have a plurality of predefined time durations. The plurality of data units that are contained in each of the time frames are forwarded in a pipelined manner through the network switches. The system operates with high-speed wavelength division multiplexing (WDM) links, i.e., with multiple lambdas, having a plurality of transmission capacities. The outcome of this method is called fractional lambda switching with a plurality of time frame durations.

Abstract: Time-based grooming and degrooming methods and systems of data units that utilize a common time reference is disclosed. Time is divided into a plurality of contiguous periodic time frames with a plurality of time frame durations. The system and method enable the grooming and switching of data units from a plurality of low speed links into one or more high-speed links. The system and method further enable the grooming and switching of data units from one or more high-speed links into a plurality of low speed links. The plurality of data units that are contained in each of the time frames are forwarded in a pipelined manner through the network switches. The system operates with high-speed wavelength division multiplexing (WDM) links, i.e., with multiple lambdas. The outcome of this method is called fractional lambda grooming.

Abstract: A time-based switching method and system of SONET frames that utilize a common time reference is disclosed. Time is divided into a plurality of contiguous periodic time frames. A plurality of SONET frames is associated with a time frame; the plurality of SONET frames that are contained in each of the time frames is forwarded in a pipelined manner through the network switches. The system operates with high-speed wavelength division multiplexing (WDM) links. This switching method can be used to implement an all-optical SONET switching system.

Abstract: A time frame switching method and system of data units that utilize a global common time reference, which is divided into a plurality of contiguous periodic time frames. The system is designed to operate with high-speed wavelength division multiplexing (WDM) links, i.e., with multiple lambdas. The plurality of data units that are contained in each of the time frames are forwarded in a pipelined manner through the network switches, wherein at every stage of the pipeline is tuned to a new wavelength by using a wavelength converter. Furthermore, the incoming wavelength of a time frame and wavelength determines to which output port the data units in this time frame will be switched, while the new wavelength and time frame determine to which output the data units in this time frame will be switched in the next switch on the route. The outcome of this switching method is called wavelength conversion based fractional lambda switching.