Abstract: A system and method for allowing bidirectional network traffic to pass through a network address translation (“NAT”)/firewall device thereby allowing bidirectional traffic to flow between the private side of the NAT/firewall device and the public side of the NAT/firewall device while maintaining security between the public side and the private side is described. A network processing system on the public side of the NAT/firewall device anchors network traffic to and from the private side of the NAT/firewall device. A traversal client resides on the private side of the NAT/firewall device and has a secure connection with the network processing system. The traversal client is operable to pass signaling packets bound for a terminal on the private side of the NAT/firewall from the network processing system.

Abstract: A system and method for controlling, by an outside entity, one or more devices associated with a location. A representative embodiment of the system architecture comprises an internal computer system through which a device may be remotely controlled by the outside entity during a communication session between the outside entity and the internal computer system through an external computer network. The external computer network can be the Internet. When the outside entity is requested to control the device, the outside entity's identity information is authenticated before the communication session is established. In a preferred embodiment, the internal computer system is protected by a firewall. The firewall allows the outside entity to access the internal computer system to control the device if the outside entity can provide proper identity information. The identity information of the outside entity may be a password that is recognized by the firewall.

Abstract: A single-chip integrated circuit comprising a first processor for executing a plurality of applications, a second processor for executing a plurality of applications, at least one of a) at least one embedded peripheral and b) at least one memory, and a bus monitor for allowing access to the at least one of a) the at least one embedded peripheral and b) the at least one memory, if the access is allowed, wherein the bus monitor comprises a mapping of access rights to the at least one of a) the at least one embedded peripheral and b) the at least one memory for the first processor and the second processor is disclosed.

Abstract: Encoded data that is obtained by embedding subdata in advertisement information and embedding the subdata-embedded advertisement information in main data is provided to a user. At the user side, the encoded data is decoded to reproduce the main data and the subdata-embedded advertisement information, and the subdata-embedded advertisement information is decoded to reproduce the advertisement information and the subdata embedded therein.

Abstract: Through the use of an intermediate party, a first party is given the ability to communicate with a second party, with the communication appearing as if it originated with the intermediate party. Specifically, in a protected network system, the protected network is capable of acting as a conduit through which an entity, such as law enforcement, can communicate with an entity attempting an unauthorized access attempt unbeknownst to the entity attempting the unauthorized access attempt. This allows, for example, the detection and identification of the entity attempting the unauthorized access attempt.

Abstract: Methods, apparati, and computer-readable media for protecting computer code (1) from malicious retrievers (3). A method embodiment of the present invention comprises the steps of generating (22) retrieval information characteristic of data sent to a retriever (3) by the computer code (1) in response to a retrieval command (5) issued by the retriever (3); accessing at least one rule (6) using at least some of said retrieval information as an input to said at least one rule (6); and, when said at least one rule (6) informs that the retrieval is not acceptable, flagging (28) the retrieval command (5) as suspicious.

Abstract: An environment for remote monitoring of a device, such as a child's computer, from a television or other monitor device. The monitored device has a security layer, which may be implemented in hardware, software, or a combination of the two, where the security layer inspects some or all accessed network data or network access activities, including real-time content such as chat rooms and the like. While the monitored device is used to access network data, alerts are displayed on the remote monitoring device to allow an adult or other responsible entity to keep track of material. Thus, for example, an adult may watch television, confident that an alert will be displayed in a corner of the television screen if necessary to alert the adult to any problems. For serious alerts, the security layer may automatically block or shutdown offending network application programs.

Abstract: A system and method enables controlled distribution of processor IPinformation to users for evaluation, customization and/or production. One aspect of the system and method is a web site that helps coordinate the IP distribution of the processor IP information between a administrator and end-users, and affiliates of the end-users, namely design houses, tool providers and/or foundries. The processor IP information has a configuration specification including a definable portion of the user. By controlling the distribution of the processor IPinformation, while still allowing for convenient access, the system and method enable many users to customize the processor IPinformation for a variety of applications, with license condition being granted to the user to manufacture the customized units.

Abstract: The present invention relates to a method for operating a control unit for controlling or regulating a function of a motor vehicle. The control unit includes a programmable memory device. The control or regulation is realized by executing a computer program (P0) at least partially stored in the memory device and by using data (D0) stored at least partially in the memory device. In order to offer the most efficient protection against manipulation of the contents of the memory device by an unauthorized person, it is provided that, at least following a modification of the computer program (P0) stored in the memory device or of the data (D0) stored in the memory device, the modified computer program (P1) is executed only and/or the modified data (D1) are used only if the modified computer program (P1) and/or the modified data (D1) has/have been successfully verified.