Patents by Inventor Yoram Ofek
Yoram Ofek has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 8800032Abstract: This invention discloses a method and system for processing logic modules, each having a separate functionality, into a unique functionality that is to be executed in an interlocked mode as a unique functionality. The method is based on taking logic modules (programs and data) with known functionality and transforming them into a hidden program by integrating modules to execute together into a logic which is partially obfuscated and/or encrypted and/or physically hidden. The hidden program is being updated dynamically to strengthen it against reverse engineering efforts. The program includes the functionality for generating security signals, which are unpredictable by observers, such as a pseudo random sequence of security signals. Only elements that share the means for producing the security signals can check their validity. The modules include operational tasks and performance parameters for this operation.Type: GrantFiled: February 17, 2011Date of Patent: August 5, 2014Inventors: Marcel Mordechay Yung, Yoram Ofek
-
Patent number: 8224253Abstract: Methods and systems for packet-by-packet directional mobile wireless transmission utilizing plurality of directional antenna sectors, such that, the transmission of each packet is performed by at least one selected antenna sector. A plurality of directional antenna sectors, at least one receiving controller, and at least one transmitting controller, are all physically located at the same location. The direction of transmission is selected responsive to the direction in which the best electromagnetic signal reception was received. For each plurality of data packets, the transmission direction is selected again. Switching logic is coupling the out going transmission signal to selected ones from the plurality of the antennas responsive to the motion of the mobile user.Type: GrantFiled: May 25, 2011Date of Patent: July 17, 2012Assignee: Fullerton Assets LLCInventors: Yoram Ofek, Bezalel Gavish
-
Publication number: 20110222448Abstract: Methods and systems for packet-by-packet directional mobile wireless transmission utilizing plurality of directional antenna sectors, such that, the transmission of each packet is performed by at least one selected antenna sector. A plurality of directional antenna sectors, at least one receiving controller, and at least one transmitting controller, are all physically located at the same location. The direction of transmission is selected responsive to the direction in which the best electromagnetic signal reception was received. For each plurality of data packets, the transmission direction is selected again. Switching logic is coupling the out going transmission signal to selected ones from the plurality of the antennas responsive to the motion of the mobile user.Type: ApplicationFiled: May 25, 2011Publication date: September 15, 2011Inventors: Yoram Ofek, Bezalel Gavish
-
Publication number: 20110167490Abstract: This invention discloses a method and system for processing logic modules, each having a separate functionality, into a unique functionality that is to be executed in an interlocked mode as a unique functionality. The method is based on taking logic modules (programs and data) with known functionality and transforming them into a hidden program by integrating modules to execute together into a logic which is partially obfuscated and/or encrypted and/or physically hidden. The hidden program is being updated dynamically to strengthen it against reverse engineering efforts. The program includes the functionality for generating security signals, which are unpredictable by observers, such as a pseudo random sequence of security signals. Only elements that share the means for producing the security signals can check their validity. The modules include operational tasks and performance parameters for this operation.Type: ApplicationFiled: February 17, 2011Publication date: July 7, 2011Inventors: MARCEL MORDECHAY YUNG, Yoram Ofek
-
Patent number: 7953372Abstract: Methods and systems for packet-by-packet directional mobile wireless transmission utilizing plurality of directional antenna sectors, such that, the transmission of each packet is performed by at least one selected antenna sector. The direction of transmission is selected responsive to the direction in which the best electromagnetic signal reception was received. For each plurality of data packets, the transmission direction is selected again. Switching logic is coupling the out going transmission signal to selected ones from the plurality of the antennas responsive to the motion of the mobile user. The antenna design in this invention is aimed at increasing the gain and minimizing the interfering signals with respect large number of mobile users who are concurrently and continuously tracking and communicating with their access points, and consequently, increasing the bit rate of each transmission and the aggregate capacity of the wireless system.Type: GrantFiled: March 31, 2004Date of Patent: May 31, 2011Inventors: Yoram Ofek, Bezalel Gavish
-
Patent number: 7895643Abstract: This invention discloses a method and system for processing logic modules, each having a separate functionality, into a unique functionality that is to be executed in an interlocked mode as a unique functionality. The method is based on taking logic modules (programs and data) with known functionality and transforming them into a hidden program by integrating modules to execute together into a logic which is partially obfuscated and/or encrypted and/or physically hidden. The hidden program is being updated dynamically to strengthen it against reverse engineering efforts. The program includes the functionality for generating security signals, which are unpredictable by observers, such as a pseudo random sequence of security signals. Only elements that share the means for producing the security signals can check their validity. The modules include operational tasks and performance parameters for this operation.Type: GrantFiled: August 14, 2002Date of Patent: February 22, 2011Assignee: Trustedflow Systems, Inc.Inventors: Marcel Mordechay Yung, Yoram Ofek
-
Patent number: 7801132Abstract: An input interface system for mapping data packets, each comprising a header portion and a payload portion, from at least one source to at least one destination. An interface method and system between asynchronous data packet flows and synchronized switching systems, which utilize a global common time reference. The synchronized switching systems utilize a time frame switching method based on predefined switching schedules that are responsive to a global common time reference, where the global common time reference is divided into a plurality of contiguous periodic time frames. The asynchronous data packet flows are routed according to information contained in the packets' header. The interface method and system maps the header information of the asynchronous data packet flows to respective time frames that match the predefined switching schedule over the synchronized switching system.Type: GrantFiled: September 11, 2008Date of Patent: September 21, 2010Assignee: Synchrodyne Networks, Inc.Inventors: Yoram Ofek, Mario Baldi
-
Patent number: 7643794Abstract: Methods and systems for constructing multi-sector antenna for packet-by-packet transmission. The transmission of each packet can be performed by a different antenna sector. The system can consist of a plurality of various antenna types: flat panel, parabolic dish, slotted, omni, planar, micro-strip, Yagi, beam-forming, adaptive, and electro-mechanical moveable. The direction of transmission is selected responsive to the direction in which the best signal reception was received. Switching logic is coupling the out going transmission signal to selected ones from the plurality of the antenna sectors. The antenna design in this invention is aimed at increasing the gain and minimizing the interfering signals with respect large number of users who are concurrently and continuously tracking and communicating with their access points, and consequently, increasing the bit rate of each transmission and the aggregate capacity of the wireless system.Type: GrantFiled: March 31, 2004Date of Patent: January 5, 2010Inventors: Yoram Ofek, Bezalel Gavish
-
Patent number: 7509687Abstract: The objective of this invention is to provide continuous remote authenticated operations for ensuring proper content processing and management in remote untrusted computing environment. The method is based on using a program that was hidden within the content protection program at the remote untrusted computing environment, e.g., an end station. The hidden program can be updated dynamically and it includes an inseparable and interlocked functionality for generating a pseudo random sequence of security signals. Only the media server that sends the content knows how the pseudo-random sequence of security signals were generated; therefore, the media server is able to check the validity of the security signals, and thereby, verify the authenticity of the programs used to process content at the remote untrusted computing environment. If the verification operation fails, the media server will stop the transmission of content to the remote untrusted computing environment.Type: GrantFiled: October 22, 2003Date of Patent: March 24, 2009Assignee: TrustedFlow Systems, Inc.Inventors: Yoram Ofek, Mario Baldi
-
Publication number: 20090010152Abstract: An input interface system for mapping data packets, each comprising a header portion and a payload portion, from at least one source to at least one destination. An interface method and system between asynchronous data packet flows and synchronized switching systems, which utilize a global common time reference. The synchronized switching systems utilize a time frame switching method based on predefined switching schedules that are responsive to a global common time reference, where the global common time reference is divided into a plurality of contiguous periodic time frames. The asynchronous data packet flows are routed according to information contained in the packets' header. The interface method and system maps the header information of the asynchronous data packet flows to respective time frames that match the predefined switching schedule over the synchronized switching system.Type: ApplicationFiled: September 11, 2008Publication date: January 8, 2009Inventors: Yoram Ofek, Mario Baldi
-
Patent number: 7426206Abstract: An interface method and system between asynchronous data packet flows and synchronized switching systems, which utilize a global common time reference. The synchronized switching systems utilize a time frame switching method based on predefined switching schedules that are responsive to a global common time reference, where the global common time reference is divided into a plurality of contiguous periodic time frames. The asynchronous data packet flows are routed according to information contained in the packets' header. The interface method and system maps the header information of the asynchronous data packet flows to respective time frames that match the predefined switching schedule over the synchronized switching system. The interface system can aggregate multiple asynchronous data packet flows into a single pre-defined switching schedule over the synchronized switching system.Type: GrantFiled: March 28, 2000Date of Patent: September 16, 2008Assignee: Synchrodyne Networks, Inc.Inventors: Yoram Ofek, Mario Baldi
-
Patent number: 7398398Abstract: An authenticated and metered flow control method provides a network interface with the capability to determine the authenticity of programs used to generate and send data packets, thereby ensuring that users who send data packets are well behaved. The method is based on using a hidden program that was obfuscated into the program used for generating and sending data packets. More specifically, the hidden program generates a pseudo random sequence of security signals that are included in the sequence of data packets that are sent from the user to the network interface. Only the network interface knows how the pseudo random sequence of security signals was generated, and therefore, the network interface is able to check the validity of the pseudo random sequence of security signals, and thereby verify the authenticity of the programs used to generate and send data packets.Type: GrantFiled: August 14, 2002Date of Patent: July 8, 2008Assignee: TrustedFlow Systems, Inc.Inventors: Yoram Ofek, Mario Baldi
-
Patent number: 7367045Abstract: This invention discloses a method and system for communication that consist of an end station and a network interface, such that, the network interface is capable of determining the authenticity of the program used by the end station to generate and send data packets. The method is based on using a hidden program that was obfuscated and encrypted within the program that is used to generate and send data packets from the end station. The hidden program is being updated dynamically and it includes the functionality for generating a pseudo random sequence of security signals. Only the network interface knows how the pseudo random sequence of security signals were generated, and therefore, the network interface is able to check the validity of the pseudo random sequence of security signals, and thereby, verify the authenticity of the programs used to generate and send data packets. The method further comprises of means for coordinating the initialization of the end station and network interface.Type: GrantFiled: August 14, 2002Date of Patent: April 29, 2008Assignee: TrustedFlow Systems, Inc.Inventors: Yoram Ofek, Marcel Mordechay Yung, Mario Baldi
-
Patent number: 7343619Abstract: The objective of this invention is to ensure that programs that generate and send data packets are well behaved. This invention discloses a method and system that consist of an end station and a network interface, such that, the network interface is capable of determining the authenticity of the program used by the end station to generate and send data packets. The method is based on using a hidden program that was obfuscated within the program that is used to generate and send data packets from the end station. The hidden program is being updated dynamically and it includes the functionality for generating a pseudo random sequence of security signals. Only the network interface knows how the pseudo random sequence of security signals were generated, and therefore, the network interface is able to check the validity of the pseudo random sequence of security signals, and thereby, verify the authenticity of the programs used to generate and send data packets.Type: GrantFiled: August 14, 2002Date of Patent: March 11, 2008Assignee: TrustedFlow Systems, Inc.Inventors: Yoram Ofek, Marcel Mordechay Yung, Mario Baldi, David Howard Sitrick
-
Patent number: 7307989Abstract: This invention relates generally to a method and apparatus for timely forwarding, discarding, and delivering data packets over the network and to their destination nodes and the optimization of data transfer throughput through the network. The timely forwarding and discarding are possible thanks to the standard global common time reference (CTR) that is known as UTC (Coordinated Universal Time). UTC is available from GPS (Global Positioning System), Galileo, and GLONASS (Global Navigation Satellite System). Data transfer throughput optimization is pursued by taking advantage of the timely forwarding and discarding properties to improve the data packets transfer flow control mechanisms, such as the sliding window re-sizing algorithm implemented by the widely deployed Transmission Control Protocol (TCP).Type: GrantFiled: March 17, 2003Date of Patent: December 11, 2007Assignee: TrustedFlow Systems, Inc.Inventors: Yoram Ofek, Mario Baldi
-
Patent number: 7305704Abstract: This invention discloses a method and system for detecting and reacting to unexpected communications patterns. The system consists of a plurality of end stations and a plurality of network interfaces, such that, the network interface is capable of determining the authenticity of the program used by the end station to generate and send data packets. The system further consists of a plurality of secure management servers, which continuously exchange management messages with the network interfaces. Consequently, the secure management servers have the information for detecting unexpected communications patterns. The method allows the control of end stations, and when an unexpected communication pattern is detected, selectively only packets from authenticated programs can be allowed to be transmitted.Type: GrantFiled: August 14, 2002Date of Patent: December 4, 2007Assignee: TrustedFlow Systems, Inc.Inventors: Yoram Ofek, Marcel Mordechay Yung
-
Patent number: 7177308Abstract: A time frame switching method and system of data units that utilize a common time reference, which is divided into a plurality of contiguous periodic time frames. The system is designed to operate with time frames, which have a plurality of predefined time durations. The plurality of data units that are contained in each of the time frames are forwarded in a pipelined manner through the network switches. The system operates with high-speed wavelength division multiplexing (WDM) links, i.e., with multiple lambdas, having a plurality of transmission capacities. The outcome of this method is called fractional lambda switching with a plurality of time frame durations.Type: GrantFiled: September 21, 2001Date of Patent: February 13, 2007Assignee: Synchrodyne Networks, Inc.Inventors: Yoram Ofek, Mario Baldi
-
Patent number: 7170906Abstract: Time-based grooming and degrooming methods and systems of data units that utilize a common time reference is disclosed. Time is divided into a plurality of contiguous periodic time frames with a plurality of time frame durations. The system and method enable the grooming and switching of data units from a plurality of low speed links into one or more high-speed links. The system and method further enable the grooming and switching of data units from one or more high-speed links into a plurality of low speed links. The plurality of data units that are contained in each of the time frames are forwarded in a pipelined manner through the network switches. The system operates with high-speed wavelength division multiplexing (WDM) links, i.e., with multiple lambdas. The outcome of this method is called fractional lambda grooming.Type: GrantFiled: September 21, 2001Date of Patent: January 30, 2007Assignee: Synchrodyne Networks, Inc.Inventors: Yoram Ofek, Mario Baldi
-
Patent number: 7139277Abstract: A time-based switching method and system of SONET frames that utilize a common time reference is disclosed. Time is divided into a plurality of contiguous periodic time frames. A plurality of SONET frames is associated with a time frame; the plurality of SONET frames that are contained in each of the time frames is forwarded in a pipelined manner through the network switches. The system operates with high-speed wavelength division multiplexing (WDM) links. This switching method can be used to implement an all-optical SONET switching system.Type: GrantFiled: September 21, 2001Date of Patent: November 21, 2006Assignee: Synchrodyne Networks, Inc.Inventors: Yoram Ofek, Mario Baldi
-
Patent number: 7110669Abstract: A time frame switching method and system of data units that utilize a global common time reference, which is divided into a plurality of contiguous periodic time frames. The system is designed to operate with high-speed wavelength division multiplexing (WDM) links, i.e., with multiple lambdas. The plurality of data units that are contained in each of the time frames are forwarded in a pipelined manner through the network switches, wherein at every stage of the pipeline is tuned to a new wavelength by using a wavelength converter. Furthermore, the incoming wavelength of a time frame and wavelength determines to which output port the data units in this time frame will be switched, while the new wavelength and time frame determine to which output the data units in this time frame will be switched in the next switch on the route. The outcome of this switching method is called wavelength conversion based fractional lambda switching.Type: GrantFiled: September 21, 2001Date of Patent: September 19, 2006Assignee: Synchrodyne Networks, Inc.Inventors: Yoram Ofek, Mario Baldi