| 16th week of 2010 patent applcation highlights part 24 |
| Patent application number | Title | Published |
|---|
| 20100100854 | GESTURE OPERATION INPUT SYSTEM - A gesture operation input system includes one or more subsystems to receive an input indicating a modifier input, receive a gesture input, wherein the gesture input indicates an action to be performed, and receive an indication that the modifier input is no longer being received. After receiving the gesture input, the gesture operation input system then determines the action to be performed using the gesture input and performs the action. | 2010-04-22 |
| 20100100855 | HANDHELD TERMINAL AND METHOD FOR CONTROLLING THE HANDHELD TERMINAL USING TOUCH INPUT - A handheld terminal includes a coordinate recognizer to recognize a first coordinate on a screen where a touch starts and to recognize a second coordinate on the screen where the touch ends, a function identifier to identify a function corresponding to the pair of coordinates, and a function performer to perform the identified function. The first and second coordinates may respectively correspond to a service icon displayed at or near the first coordinate and a process area displayed at or near the second coordinate and associated with the identified function. A method for controlling a handheld terminal includes recognizing a first coordinate on a screen where a touch starts and a second coordinate on the screen where the touch ends, identifying a function corresponding to the first coordinate and the second coordinate, and performing the identified function. | 2010-04-22 |
| 20100100856 | Automated optimization of an integrated circuit layout using cost functions associated with circuit performance characteristics - An integrated circuit (IC) design system and method provide an optimization of a layout of an integrated circuit wherein an assessment is taken into account of the circuit performance characteristics and the layout of the IC design. The system and method assess associated circuit performance characteristics, each as a cost function of a local pattern of shapes in an initial circuit layout, aggregate cost functions of the associated circuit performance characteristics to derive an integral performance number associated to the initial global circuit layout, perturb the integral performance number by varying the global circuit layout, and select perturbations that optimize the performance number, so as to optimize the global circuit layout. Assessment is taken into account of the circuit performance characteristics based on the layout and the interdependence of the circuit performance characteristics for the IC design. The physical process related effects such as well proximity effect and stress/strain engineering and/or performance parameters such as the P-N transistor size ratio are taken into account to achieve optimization. | 2010-04-22 |
| 20100100857 | GENERIC NON-VOLATILE SERVICE LAYER - Method and apparatus for constructing and operating an integrated circuit in an electronic device. In some embodiments, a generic service layer is integrated in a three dimensional integrated circuit and tested using a testing pattern stored in a non-volatile memory. The generic service layer is reconfigured to a permanent non-testing functional component of the integrated circuit. | 2010-04-22 |
| 20100100858 | Systems and Methods for Certifying a Racked Computer Assembly - In some embodiments, a method for testing a chassis including one or more information handling systems is provided. The method includes receiving a chassis configuration specification that defines a set of required components for a chassis configuration, generating one or more test images based at least the received chassis configuration specification, automatically determining components of the chassis, testing the determined components of the chassis using the one or more generated test images, and reporting results from the testing to a user. | 2010-04-22 |
| 20100100859 | DESIGN METHODOLOGY FOR PREVENTING FUNCTIONAL FAILURE CAUSED BY CDM ESD - A design methodology which prevents functional failure caused by CDM ESD events. A transistor model is used to model the final states of cells, and a simulator is then used to identify invulnerable cells. Cells that are potential failure sites are then identified. The cells which have been identified as being potential victims are replaced by the previously-identified invulnerable cells that have the identical logic function. On the other hand, if a cell with identical function cannot be found, an invulnerable buffer cell (that will not effect logic function) can be inserted in front of the potential victim transistor as protection. By replacing all the potential victim cells with cells which have been determined to be invulnerable, the resulting design will be guaranteed to be CDM ESD tolerant. | 2010-04-22 |
| 20100100860 | METHOD AND APPARATUS FOR DEBUGGING AN ELECTRONIC SYSTEM DESIGN (ESD) PROTOTYPE - Using a vector-based emulation technique, a hardware-based prototyping system reduces time-consuming recompilation and reduces the iteration time for a verification run. The vector-based emulation technique takes advantage of information derived from user-defined probe points, automatically generated probe points and low-latency snapshots. Using a bounded-cycle simulation technique, the hardware-based prototyping system can provide complete or partial simulation traces covering interested signals and can efficiently evaluates assertions. A user is therefore able to debug in a real system test and to identify causes of fault conditions interactively under a controlled vector debugging environment. | 2010-04-22 |
| 20100100861 | Modifying integrated circuit layout - A layout for an integrated circuit includes standard cells | 2010-04-22 |
| 20100100862 | WIRING DESIGN METHOD - A wiring design method and apparatus are provided. The wiring design method includes dividing a wiring region represented by wiring region data to generate a plurality of first division regions based on a first wiring rule and generating, when a second wiring rule different from the first wiring rule may be set in the first division region, second division regions with the second wiring rule in the first division region. | 2010-04-22 |
| 20100100863 | ROUTING DESIGN METHOD, ROUTING DESIGN APPARATUS AND RECORDING MEDIUM STORING ROUTING DESIGN PROGRAM - In a routing design method for designing routing of a SiP having first and second routing portions that are connected to each other via bonding wires, whether a DRC error of the first or second routing portion is present or not is determined and the DRC error is selected when the DRC error is present. A plurality of nets associated with the selected DRC error are specified and the routes of the specified nets are removed. Then, bonding wire allocations of the specified nets are changed. Further, the specified nets are rerouted so as not to cause a DRC error and whether the rerouting result is accepted or not is determined. | 2010-04-22 |
| 20100100864 | FLEXIBLE CARRY SCHEME FOR FIELD PROGRAMMABLE GATE ARRAYS - A fast, flexible carry scheme for use in clustered field programmable gate array architectures is described. Each cluster has a cluster carry input node, a cluster carry output node, a cluster carry output circuit having an output coupled to the cluster carry output node, a first input coupled to the cluster carry input node, and a second input and a plurality of logic modules each comprising a logic function generator circuit coupled to a carry circuit. The logic modules are coupled in a series carry arrangement between the cluster carry input node and the second input of the cluster carry output circuit such that the least significant bit of an arithmetic logic circuit can be programmably placed in any of the logic modules. | 2010-04-22 |
| 20100100865 | METHOD FOR MODIFYING PHOTOMASK LAYOUT - A method for modifying a photomask layout includes the following steps. First, a photomask layout having at least an edge is provided. A plurality of evaluation points are positioned on the edge. Then, the photomask layout is interpreted to have an interpreted photomask layout and an interpreted edge pattern. The interpreted edge pattern is formed by interpreting the above-mentioned edge. After that, a shift between the edge and the interpreted edge and corresponding to each of the evaluation points is calculated. Afterwards, a shift gradient between two evaluation points can be derived from the shift. Finally, a number of segments between each two evaluation points can be estimated. | 2010-04-22 |
| 20100100866 | Intelligent Shared Virtual Whiteboard For Use With Representational Modeling Languages - A computer implemented method for enabling an intelligent shared virtual whiteboard on an interconnected network of computers. An intelligent shared virtual whiteboard is hosted on a host computer. A user input is received from a remote client over a computer network. A representation of the user input is selected within a modeling language. The selected representation of the user input is stored on the host computer. The selected representation of the user input is displayed to all remote users of the intelligent shared virtual whiteboard. | 2010-04-22 |
| 20100100867 | METHOD FOR FINDING AN IMPACT ON A COMPUTER GENERATED CODE - The present invention describes a method and a computer program product for finding an impact of a change on a computer generated code. The method includes the generation of a dependency graph for the computer generated code. The dependency graph includes a plurality of nodes that are connected logically by one or more edges. The method enables an expert to assign nodal weights to the nodes, based on their importance. The method also enables the expert to assign edge weights and distribution ratios, based on the criticality of the relationship between the nodes and their distance from the root node. Thereafter, the impact of the change is found by implementing a spreading activation technique on the dependency graph. The output gathered after the activation represents the impact of the change on the computer generated code. | 2010-04-22 |
| 20100100868 | INTERACTIVE DESIGN ENVIRONMENTS TO VISUALLY MODEL, DEBUG AND EXECUTE RESOURCE ORIENTED PROGRAMS. - In scenarios involving a data set accessible through a protocol, operations sets may be formulated for performing various operations on the data set, and may be expressed as resource scripts according to a scripting language. However, such resource scripts may be difficult to design due to the complicated aspects of the interaction, such as asynchrony, network transport, the syntax of the scripting language, and the details of the protocol. A design environment may be devised to facilitate designers in generating resource scripts, e.g., through the manipulation of visual elements. The design environment may abstract the lower-level working details of the resource scripts, and may allow designers to focus on the logical designing of the operations set. The design environment may then automatically generate the resource script from the operations set in accordance with the constraints of the script language and the protocol. | 2010-04-22 |
| 20100100869 | Method of Creating an Application That Provides for the Specifying of a New Menu Item in a Context Sensitive Menu - An improved application development tool enables the creation of an application and provides for the creation of additional context-sensitive menu items. | 2010-04-22 |
| 20100100870 | CONFIGURATION DEPLOYMENT MANAGEMENT - Applications, code modules, and other such software objects are able to be deployed and/or ported even when the corresponding configuration data is spread between a relational database management system (RDBMS) database and a meta data services (MDS) database, even where the configuration data is spread across any disparate databases. Configuration data also can be stored in a custom repository, such as an custom extensible markup language (XML) file. One approach involves detecting foreign keys, creating logical references to replace the foreign keys, and resolving the foreign keys to new references in the deployed environment by using the logical references. Code can be stored in the databases in order to help resolve the foreign keys. | 2010-04-22 |
| 20100100871 | METHOD AND SYSTEM FOR EVALUATING SOFTWARE QUALITY - A method for evaluating software quality, the method including the steps of receiving test data for a system under test from a plurality of data sources and determining a failure category for at least one identified failure based on the test data from the plurality of data sources. Additionally, the method includes the steps of assigning a first error reputation to the system under test and assigning a second error reputation for each test file. Furthermore, the method includes the steps of generating at least one report indicating the failure category for the at least one identified failure. | 2010-04-22 |
| 20100100872 | METHODS AND SYSTEMS FOR IMPLEMENTING A TEST AUTOMATION FRAMEWORK FOR TESTING SOFTWARE APPLICATIONS ON UNIX/LINUX BASED MACHINES - This disclosure describes, generally, methods and systems for implementing a test automation framework. The method may include receiving test scenarios. Each of the test scenarios may include at least one test case. The method may further include spawning a process for each of the test scenarios. The processes may be executed in parallel on a Linux based operating system. The method may parse each of the test cases using a parser, execute the parsed test cases using an execution module, and generate test results for each of the test scenarios. Further, the method may display the test results on a Windows based graphical user interface (GUI). | 2010-04-22 |
| 20100100873 | Instrumentation of Computer-Based Application Software - A method for instrumenting a computer-based software application, the method including instrumenting instructions of a computer-based software application, the instructions being in a first computer instruction language, with a native handler referencing instructions in a second language, and creating the instructions referenced by the native handler in the second computer instruction language to carry out at least one task during the execution of the computer-based software application. | 2010-04-22 |
| 20100100874 | COMPLEXITY DEPENDENCY CHANGE IMPACT SYSTEM AND METHOD - A complexity dependency change impact system and method is disclosed. In one embodiment, a method of determining an efficient software testing scheme based on a dependency structure matrix (DSM) analysis includes generating a compressed DSM based on cyclic blocks associated with modules of a software application, tagging and levelling the modules of the software application based on the compressed DSM, and generating at least one compressed partition matrix based on the tagged and levelled modules. The method further includes generating at least one expanded partition matrix based on the at least one compressed partition matrix, generating value threads using the at least one compressed partition matrix and obtaining a new scheduling table and performing a path analysis using the value threads to determine the efficient software testing scheme. | 2010-04-22 |
| 20100100875 | METHOD AND DEVICE FOR PROCESSING CONFIGURATION REPORTS - The method for processing of at least one software configuration report for a data-processing equipment item comprises, for each equipment item:
| 2010-04-22 |
| 20100100876 | Wireless device provisioning hardware tool - Systems and methods are disclosed for provisioning a position monitoring device. The position monitoring device may include a wireless communication modem and a first serial port. A provisioning device may be coupled to the position monitoring device through a serial connection. The provisioning device can include a memory, a second serial port, and a processor. In some embodiments, the provisioning device initiates an automatic configuration of the wireless communication modem through a series of attention commands. | 2010-04-22 |
| 20100100877 | STATISTICAL PACKING OF RESOURCE REQUIREMENTS IN DATA CENTERS - A computer-implemented method of managing resources in a virtual machine environment can include determining a specification of provisioning success corresponding to each of multiple jobs in the virtual machine environment, determining a prediction of resource needs corresponding to each of the jobs, and determining a resource specification corresponding to each of the jobs based on the specification of provisioning success and the prediction of resource needs. | 2010-04-22 |
| 20100100878 | METHOD AND APPARATUS FOR RESOURCE PROVISIONING - Embodiments of the invention provide a method and apparatus for resource provisioning for a new virtual machine to be provided in a computer device. In one embodiment, at least one storage subsystem, the computer device, and a storage management server are connected via a network. A unique virtual port name for the new virtual machine is created by one of a first storage subsystem of the at least one storage subsystem or the storage management server. A volume for the new virtual machine is provided in the first storage subsystem. The first storage subsystem includes a unique port name for a port through which the volume for the new virtual machine has I/O connection via the network. The unique virtual port name is assigned to the new virtual machine in the computer device under NPIV (N_Port ID Virtualization). | 2010-04-22 |
| 20100100879 | METHODS AND SYSTEMS FOR CONVERTING A RELATED GROUP OF PHYSICAL MACHINES TO VIRTUAL MACHINES - A computer implemented method for processing virtualization of physical computers that are part of a group into virtual computers is provided. The method includes obtaining relationship data from the physical computers, where the relationship data identifies parameters used to communicate within the group. Then, the method analyzes utilization parameters for each of the physical computers of the group. A visual model for proposed virtualization of the group of physical computers is then generated. The visual model identifies hosting machines designated to define a virtual computer for each of the physical computers, where the visual model provides a graphical illustration of the group of physical computers once converted to virtual computers. The method enables adjustment of the proposed virtualization of the group of physical computers. Then, an execution sequence of virtualization operations to be carried out is generated, if execution of the proposed virtualization is triggered, and the execution sequence is saved to storage and accessed upon execution. | 2010-04-22 |
| 20100100880 | VIRTUAL SYSTEM CONTROL METHOD AND APPARATUS - A virtual system control apparatus includes a configuration information storage device that stores configuration information for operational systems of virtual systems; a first virtual machine image storage device that stores virtual machine images for the operational systems of the virtual systems; a configuration change information storage device that stores configuration change information that represents configuration information concerning difference between the operational system and a test system of the virtual system; a second virtual machine image storage device that stores virtual machine images for the virtual machine relating to the difference; and a controller. Thus, by adopting data configuration of the operational system and the test system, it becomes possible to easily and smoothly switch the virtual system between the operational system and the test system. | 2010-04-22 |
| 20100100881 | VIRTUAL SYSTEM CONTROL METHOD AND APPARATUS - A virtual system control apparatus includes: a configuration information storage device to store configuration information for an operational system of a virtual system; a first virtual machine image storage device to store first virtual machine images for the operational system of the virtual system; a configuration change information storage device to store configuration change information that represents configuration information concerning difference between the operational system of the virtual system and plural types of test systems; a second virtual machine image storage device to store second virtual machine images for a virtual machine relating to the difference; and a controller. By adopting such data configuration of the operational system and the test system, it becomes possible to switch easily and smoothly between the operational system and the test system. | 2010-04-22 |
| 20100100882 | INFORMATION PROCESSING APPARATUS AND CONTROL METHOD THEREOF - When a plurality of objects are subjected to a batch processing by an object selection unit and a batch processing execution unit, if an input is made to an object included in the plurality of objects, an information processing apparatus controls the processing execution unit so as to execute a processing on the object based on the input, thereby executing a processing of moving all of the selected plurality of objects simultaneously with a processing of moving an arbitrary object separately from other objects among the selected plurality of objects. | 2010-04-22 |
| 20100100883 | SYSTEM AND METHOD FOR SCHEDULING TASKS IN PROCESSING FRAMES - Methods and systems for implementing methods for allocating available service capacity to a plurality of tasks in a data processing system having a plurality of processing channels is provided, where each processing channel is utilized in accordance with a time division multiplex processing scheme. A method can include receiving in the data processing system the plurality of tasks to be allocated to the available service capacity and determining a task from among an unassigned set of the plurality of tasks having a requirement for available service capacity which is greatest. The method can also include identifying at least one of the plurality of processing channels that has an available service capacity greater than or equal to the requirement and selectively assigning the task to the processing channel having a remaining service capacity which least exceeds the requirement. | 2010-04-22 |
| 20100100884 | LOAD BALANCING USING DISTRIBUTED PRINTING DEVICES - A system and method of distributing workflow in a document processing or other production environment determines a utilization percentage for each of a plurality of printing devices or other resources located in the production environment. For a first printing device, if the utilization percentage associated with the first printing device is below a threshold value, a request may be sent from the first printing device to a workflow distributor to obtain one or more unassigned jobs. If the request for the one or more unassigned jobs sent from the first printing device is received by the workflow distributor, the one or more unassigned jobs may be received at the first printing device. | 2010-04-22 |
| 20100100885 | TRANSACTION PROCESSING FOR SIDE-EFFECTING ACTIONS IN TRANSACTIONAL MEMORY - A processing system includes a transactional memory, first and second resource managers, and a transaction manager for a concurrent program having a thread including an atomic transaction having a side-effecting action. The first resource manager is configured to enlist in the atomic transaction and manage a resource related to the side effecting action. The second resource manager is configured to enlist in the atomic transaction and manage the transaction memory. The transaction manager is coupled to the first and second resource managers and manager is configured to receive a vote from the first and second resource managers as to whether to commit the transaction. The side-effecting action is postponed until after the transaction commits or applied along with a compensating action to the side-effecting action. | 2010-04-22 |
| 20100100886 | TASK GROUP ALLOCATING METHOD, TASK GROUP ALLOCATING DEVICE, TASK GROUP ALLOCATING PROGRAM, PROCESSOR AND COMPUTER - Even if a multiprocessor includes an uneven performance core, an inoperative core or a core that does not satisfy such a performance as designed but if the contrivance of task allocation can satisfy the requirement of an application to be executed, the multiple processors are shipped. In a task group allocation method for allocating, to a processor having a plurality of cores, task groups included in an application for the processor to execute, a calculation section measures performances and disposition patterns of the cores, generates a restricting condition associating the measured performances and disposition patterns of the cores with information indicating whether the application can be executed, and, with reference to the restricting condition, reallocates to the cores, the task groups that have previously been allocated to the cores. | 2010-04-22 |
| 20100100887 | METHOD AND DEVICE FOR ENCAPSULATING APPLICATIONS IN A COMPUTER SYSTEM FOR AN AIRCRAFT - The object of the invention is in particular a device for execution of applications ( | 2010-04-22 |
| 20100100888 | Resource allocation - A technique for executing a segmented virtual machine (VM) is disclosed. A plurality of core VM's is implemented in a plurality of core spaces. Each core VM is associated with one of a plurality of shell VM's. Resources of the core spaces are allocated among the core VM's. | 2010-04-22 |
| 20100100889 | ACCELERATING MUTUAL EXCLUSION LOCKING FUNCTION AND CONDITION SIGNALING WHILE MAINTAINING PRIORITY WAIT QUEUES - A synchronization library of mutex functions and condition variable functions for threads which are compatible with pthread library functions conforming to a (POSIX) standard. The library can utilize a mutex data structure and a condition variable data structure both including lockwords and queuing anchors. In the library, Compare Swap (CS) instruction processing can be used to protect shared resource. The synchronization library can support priority queuing of threads and can have an ability to yield control when CS spin lock iterations exceed a set limit. | 2010-04-22 |
| 20100100890 | PROVIDING SUPPLEMENTAL SEMANTICS TO A TRANSACTIONAL QUEUE MANAGER - In one embodiment, a computer system instantiates a queue manager configured to process a plurality of existing queue manager commands on messages in a message queue. The computer system instantiates a virtualized instance of a queue manager in a virtual layer associated with the queue manager in the computing system. The a virtualized queue manager instance provides supplemental queue manager commands usable in addition to existing queue manager commands, such that the queue manager can be used to implement the supplemental commands without substantial modification. The computer system receives an indication that a message in a message queue is to be accessed according to a specified command provided by the instantiated virtualized queue manager instance that is not natively supported by the queue manager and the virtualized queue manager performs the specified supplemental command as indicated by the received indication by performing one or more existing queue manager commands. | 2010-04-22 |
| 20100100891 | METHOD AND SYSTEM FOR DATA PREPARATION AND COMMUNICATION BETWEEN SOFTWARE APPLICATIONS - A computer-implemented method can include executing a first application in stateful manner, wherein the first application executes continuously while receiving a sequence of a plurality of inputs from a user; and, in response to each of at least some of the plurality of inputs at the first application, executing a second application in a stateless manner by an execution controller, wherein the stateless execution can include the execution controller instructing the second application to execute an ordered stack of action scripts, the second application initiating and executing the ordered stack of action scripts, and the second application terminating upon completion of the executing of the ordered stack of action scripts. | 2010-04-22 |
| 20100100892 | MANAGING HOSTED VIRTUALIZED OPERATING SYSTEM ENVIRONMENTS - A method, system, and computer usable program product for managing hosted virtualized operating system environments are provided in the illustrative embodiments. An instruction for an operation is received at a hosted virtual operating system environment. A server that is hosting the hosted virtual operating system environment is identified. The instruction is directed to the server to achieve the operation at the hosted virtual operating system environment. The instruction may be received at a network management component that may be in communication with the server and may interact with the server to instantiate the hosted virtual operating system environment. The server may be identified using a mapping information that may contain information about hosting relationships between a set of hosted virtual operating system environments and a set of servers. The instruction may be transformed to be executable on the server to achieve the operation at the hosted virtual operating system environment. | 2010-04-22 |
| 20100100893 | METHOD AND SYSTEM FOR SELECTING ONE OR MORE INTEGRATED CIRCUIT CARD INTERFACE DEVICES - A method for selecting at least one smart card reader from a list of smart card readers includes receiving a parameter indicative of a reader selection criteria, setting an environment variable that specifies a reader filtering library, executing an application that uses a smart card access library, and interposing the reader filtering library between the application and the smart card access library. | 2010-04-22 |
| 20100100894 | System and Method for Asynchronously Invoking Dynamic Proxy Interface Using Supplemental Interfaces - In a Java-based environment, a dynamic proxy runtime provides a client with the ability to asynchronously invoke an interface method, thereby unblocking the client and allowing it to perform other tasks while waiting for results to be returned from the runtime. The original interface is not redefined nor is the real target object implementation modified. Rather, the runtime defines rules which the client employs to define an additional asynchronous interface to supplement the original interface. | 2010-04-22 |
| 20100100895 | Disc distribution apparatus - A distribution apparatus for a plurality of discs each having an aperture therethrough utilizing a shaft. The shaft is sized to fit within each of the apertures of the plurality of discs when such discs lie in a stacked configuration. A movable contact supported by the shaft extends from the shaft to engage the edges of the disc surrounding the apertures of the discs. Such extension of the moveable contact holds each of the discs to the shaft. A quick retraction of the movable contact releases a single disc and the remaining disc are again held by the movable contact by its subsequent extension. Feet on the shaft may hold a single disc released from the disc stack held by the moveable contact. Retraction of the feet releases a single disc from the shaft. | 2010-04-22 |
| 20100100896 | System for simultaneous delivery of digital television and interactive broadband service - A method and apparatus is provided for the delivery of digital television and interactive broadband service in a manner that maximizes the useage of the digital broadcast spectrum. A digital television signal is transmitted to a given broadcast area in a relatively small part (for example, a 1 MHz band) of one or more licensed portions of the digital broadcast spectrum. Interactive broadband service is delivered within at least a portion of the same broadcast area covered by the broadcast digital television signal, in the remainder (for example, a 5 MHz band) of an unused part of the same licensed portion of the digital broadcast spectrum as is occupied by the digital television signal, or within an unlicensed (unused) portion of the digital broadcast spectrum. The broadcasting of the digital television and delivery the interactive broadband service occur simultaneously. In one embodiment, digital television and broadband service are delivered by the same equipment within the same bandwidth. | 2010-04-22 |
| 20100100897 | Method and system to provide live entertainment digital content to the home viewers - Disclosed is a system for providing live entertainment at home through interactive display electronic devices like television, personal computer. The system includes web interface components, ticket booking module, billing module, validation module and notification module. The web interface component gathers entities from viewer while booking a ticket for movie/event. The entities include viewer's preferred location to watch the event like if they want to see the event at home or in the theatre/auditorium along with event details, date, time and IP address. The validation module obtains identification credentials, which is 6-digit authentication from a viewer's ticket and validates those credentials. If the ticket credentials are valid, the entity that submitted the credentials is considered an authenticated identity. Once authenticated, the authorization process determines whether that identity has access to the event. After this the live event content streams to viewer's home interactive display device from the theater/auditorium. | 2010-04-22 |
| 20100100898 | METHOD AND APPARATUS FOR PERSONALIZED MULTI-USER CENTRALIZED CONTROL AND FILTERING OF IPTV CONTENT - A method that allows subscribed content to be available to all users of an account on all devices that are capable of carrying the content. An administrator may tap into the features of the centralized data store to assign personalized usage guidelines and restrictions for all IPTV services available. This includes all devices and users within an administrator's account (including spouse, children, employees. etc.) Thus, an administrator may configure all devices under their control from a convenient centralized location without the need to locally configure each device or user profile. The administrator may enable access controls on the devices in their profiles (or subordinate profiles) from a Web-based system (that is also access controlled). The Web-based system allows the administrator to set content access controls that pertain to any or all devices (such as content blocking˜no “adult” material on any device at any time). The invention also allows the administrator to select filtering based on individual IDs (username, pins) or by device (child's cell phone, playroom DVR unit). The invention allows for content, channel, time, and other types of filtering for each ID or device. | 2010-04-22 |
| 20100100899 | ACCESSING CONTENT - Various embodiments include a system for providing users access to audio/visual content, the system comprising means for storing content, means for broadcasting content on a scheduled basis, means for downloading the stored content from the storage means, means for enabling a user to access the downloaded content only within a specified time period, means for streaming content off the storage means, and means for receiving the content broadcast on a scheduled basis. | 2010-04-22 |
| 20100100900 | CONTENT DELIVERY SYSTEM, CONTENT DELIVERY METHOD AND CONVERSION APPARATUS FOR USE IN THEM - A transcoder | 2010-04-22 |
| 20100100901 | PLAYER DEVICE - A player device including a processing module and a player module is provided. The player device is adapted for playing an internet broadcasting station or an internet TV station. The player device is connected to at least one server. A user can use the player module of the player device to select and download a station list. The player device is then connected to the selected internet broadcasting station or internet TV station. The player module directly plays a program of the connected internet broadcasting station or internet TV station. The player module may, together with the processing module, record the program of the connected internet broadcasting station or internet TV station or execute a program subscription setting. The player module can also receive advertising information transmitted from the advertisement broadcasting server in accordance with a region where the user is located or an ID code of the player device. | 2010-04-22 |
| 20100100902 | Device Name Editing Apparatus and Device Name Display Method - According to an aspect of the invention, a device name editing apparatus includes: a connector to which a device is connected; a display unit configured to display a device name of the device; and a device name editor configured to allow a user to input character information so as to edit the device name to be displayed on the display unit. | 2010-04-22 |
| 20100100903 | DISPLAY APPARATUS AND METHOD FOR DISPLAYING WIDGET - A display apparatus and a method for displaying a widget thereon are provided. The display apparatus includes a generation unit which generates a displayable target widget, a display unit which displays the generated target widget, and a controlling unit which processes one or more target widgets related to a program a user is viewing so that the target widgets are displayed. | 2010-04-22 |
| 20100100904 | COMMENT DISTRIBUTION SYSTEM, COMMENT DISTRIBUTION SERVER, TERMINAL DEVICE, COMMENT DISTRIBUTION METHOD, AND RECORDING MEDIUM STORING PROGRAM - A comment distribution server includes: a first comment information storage unit that stores comment information including a comment assignment time that is a point of time when comment data is assigned shown by an elapse time from a dynamic image reproduction start time; and the comment data, and being correlated with the dynamic image data, and a comment information distribution unit that reads out a plurality of the comment information, and that distributes them to a terminal device. The terminal device includes: a dynamic image reproduction unit that receives and reproduces the dynamic image data distributed from a dynamic image distribution server; a comment information reception unit that receives the plurality of the comment information correlated with the dynamic image, from the comment distribution server; and a display unit that displays the dynamic image reproduced by the dynamic image reproduction unit, that reads out comment data correlated with a point of time shown by the comment assignment time, from the plurality of the comment information, and that displays the read out comment data along with the dynamic image. | 2010-04-22 |
| 20100100905 | SYSTEM AND METHOD FOR A MASTER SCHEDULER - A system and method for associating and controlling multimedia supporting events with a primary event. The events are translated into tasks and sent to media servers for execution at a predetermined time by being further translated into media specific tasks to control a bit-pump. | 2010-04-22 |
| 20100100906 | Scheduling and presenting IPG ads in conjunction with programming ads in a television environment of application - A method and system whereby conventional television advertisements (i.e., those delivered to viewers while they watch television programming) can be delivered in conjunction with and correlated with advertisements that are presented to viewers in the Interactive Program Guide (IPG). Moreover, the invention described herein provides for delivering highly targeted ads to viewers in both conventional programming avails and in the IPG, and for linking the targeted ads in these two media to provide for enhanced and highly effective advertising campaigns. | 2010-04-22 |
| 20100100907 | PRESENTATION OF AN ADAPTIVE AVATAR - A system that incorporates teachings of the present disclosure may include, for example, an avatar engine having a controller to retrieve a user profile of a user, present the user an avatar having characteristics that correlate to the user profile, detect one or more responses of the user during a communication exchange between the avatar and the user, establish a communication session with a language translation system responsive to identifying from the one or more responses a need to engage in language translations, transmit to the language translation system content in a language format other than a language understood by the user, receive from the language translation system a translation of the content in the language understood by the user, and present the user an adaptation of the avatar that presents the translated content in the user's language. Other embodiments are disclosed. | 2010-04-22 |
| 20100100908 | METHOD AND APPARATUS FOR RECEIVING MULTIMEDIA SERVICE AND AIDING THE RECEIPT OF MULTIMEDIA SERVICE - The invention provides a new solution for multimedia service guides, so as to aid the user equipment to receive multimedia service. The multimedia service management device notifies a service identifier and a service address of the multimedia service to a network server, and notifies the service identifier of the multimedia service to multimedia service guide device. Multimedia service guide device generates multimedia service guides comprising service identifier. After the user equipment obtains the multimedia service guides, it queries the network server for the service address corresponding to the multimedia service according to the service identifier comprised in the multimedia service guides, and obtains the multimedia service according to the service address. | 2010-04-22 |
| 20100100909 | METHOD AND APPARATUS FOR CONDITIONALLY PROCESSING, STORING, AND DISPLAYING DIGITAL CHANNEL CONTENT IN A TELEVISION RECEPTION SYSTEM - Content used in creating an electronic program guide and/or channels for a television reception system is delivered to a local receiving device, such as a direct to home satellite receiver, as individual digital objects. Rules (i.e., conditional expressions) may be embedded in the digital objects to allow different actions in different situations. These rules can be used to determine whether an object should be stored, which objects should be included in an electronic program guide, and/or what content should be used to create a particular channel. | 2010-04-22 |
| 20100100910 | Broadband Mobile Satellite Vehicle (MSV) - Multi-mobile satellite vehicle (MSV) video/audio broadband teleconferencing system with one to one or one to multiple broadband location capabilities. The mobile satellite vehicle (MSV) utilizes multiple internal video/audio monitors, a wireless broadband network and/or a broadband satellite communication system. The primary video/audio source (mobile satellite vehicle (MSV)) will receive all video/audio signals, which are generated by other broadband sources whether broadband mobile satellite vehicle (MSV) systems, broadband water based systems, broadband air based systems or broadband land based systems. The mobile satellite vehicle (MSV) receives the broadband video/audio signals, which are displayed onto internal video/audio monitors. In addition, internal video/audio cameras (PTZ—pan tilt zoom) records and captures signals, which are then transmitted via broadband wireless network(s) or broadband satellite to fixed or mobile broadband conference locations. This conference can also be saved/burned to a disk(s), stored on an internal MSV hard drive(s) or stored on a portable external hard drive(s). Finally, these broadband signals are transmitted through the broadband satellite system in real time, utilizing a broadband satellite dish or through a wireless broadband network surrounding the MSV. | 2010-04-22 |
| 20100100911 | System and Method for Delivery of Video-on-Demand - A method of providing video-on-demand content includes receiving a request from a set-top box, and determining the video-on-demand content is not stored locally. The request includes a content identifier for the video-on-demand content. The method further includes identifying a peer likely to have the video-on-demand content, receiving at least a first portion of the video-on-demand content from the peer, and providing the video-on-demand content to the set-top box. | 2010-04-22 |
| 20100100912 | UPSTREAM BANDWIDTH CONDITIONING DEVICE BETWEEN CATV DISTRIBUTION SYSTEM AND CATV USER - An upstream bandwidth conditioning premise device for use as part of a CATV system and for placement on or near a user's premise to reduce noise created on the user's premise that would otherwise be injected into upstream transmission channels and passed into an RF main signal distribution system of the CATV system. The device includes a variable attenuation device, a signal measurement circuit, a memory circuit and an electronic circuit, which is configured to iteratively determine (i) whether an incremental amount of additional attenuation is to be applied and (ii) whether at least a portion of a previously applied incremental amount of attenuation is to be removed. The electronic circuit includes a counting circuit, a threshold comparison circuit configured to compare a peak signal strength to a predetermined threshold, and a peak comparison circuit configured to compare a contemporary peak signal strength to a previous peak signal strength. | 2010-04-22 |
| 20100100913 | Method for processing a channel request in an IPTV system - The present invention relates to a method for processing a channel change request in a television system operating according to the IP protocol. This method is implemented in a digital decoder of the subscriber and its purpose is to avoid overloading the access network in the case of burst zapping and avoid penalising the reactivity time of the system in the case of simple zapping. According to the invention, in the case of reception of a burst of channel change requests separated by a time interval less than the duration of the predetermined timeout (T | 2010-04-22 |
| 20100100914 | VIDEO DISTRIBUTION SYSTEM AND VIDEO DISTRIBUTION METHOD - A video distribution system according to the present invention includes a user terminal, an SIP session controller, and a video distribution server. When the SIP session controller receives a request to establish a session, the SIP session controller establishes a session between the user terminal and the video distribution server, and controls a bandwidth controller to reserve a bandwidth for the distribution of video content in a communication path between the user terminal and the video distribution server. The video distribution server sends a bandwidth changing request for requesting the SIP session controller to change the bandwidth to reserve a bandwidth depending on a fraction of the bandwidth that is needed for distributing video content. In response to the bandwidth changing request, the SIP session controller further secures a bandwidth for the distribution of video content in the communication path between the user terminal and the video distribution server. | 2010-04-22 |
| 20100100915 | FAST-START STREAMING AND BUFFERING OF STREAMING CONTENT FOR PERSONAL MEDIA PLAYER - A personal media broadcasting system enables video distribution over a computer network and allows a user to view and control media sources over a computer network from a remote location. A personal broadcaster receives an input from one or more types of media sources, digitizes and compresses the content, and streams the compressed media over a computer network to a media player running on any of a wide range of client devices for viewing the media. The system may allow the user to issue control commands (e.g., “channel up”) from the media player to the broadcaster, causing the source device to execute the commands. The broadcaster and the media player may employ several techniques for buffering, transmitting, and viewing the content to improve the user's experience. | 2010-04-22 |
| 20100100916 | PRESENTATION OF AN AVATAR IN ASSOCIATION WITH A MERCHANT SYSTEM - A system that incorporates teachings of the present disclosure may include, for example, an avatar engine having a controller to retrieve a user profile, cause a presentation device to present a user an avatar having characteristics that correlate to the user profile, detect one or more responses of the user, identify from the one or more responses a need to communicate with a merchant system, establish a communication session with the merchant system, receive a notification from the merchant system of a merchant avatar engine, establish communication with the merchant avatar engine, adapt the characteristics of the avatar at least in part according to instructions supplied by the merchant avatar engine, and cause the presentation device to present the user the adapted avatar. Other embodiments are disclosed. | 2010-04-22 |
| 20100100917 | MOBILE TV SYSTEM AND METHOD FOR SYNCHRONIZING THE RENDERING OF STREAMING SERVICES THEREOF - An Internet Protocol (IP)-based mobile TV system and a method for synchronizing the rendering of a streaming service are provided. In the IP-based mobile TV system, a plurality of mobile terminals receives a streaming service from network equipment, along with both a sequence of Network Time Protocol (NTP) time stamps corresponding to the streaming service and a synchronization clock. Each mobile terminal recovers an NTP reference clock for rendering the received streaming service according to both the synchronization clock and a synchronization time difference value, and then renders the received streaming service according to both the recovered NTP reference clock and the received NTP time stamps. Accordingly, the plurality of mobile terminals in the IP-based mobile TV system is able to render the received streaming service synchronously. | 2010-04-22 |
| 20100100918 | Multi-Port Entry Adapter, Hub and Method for Interfacing a CATV Network and a MoCA Network - A cable television (CATV) entry adapter interfaces to a CATV network and and serves as a hub in a Multimedia over Coax Alliance (MoCA) network. MoCA signals are bypassed around the CATV communication paths within the entry adapter to maintain adequate signal strength and to allow a passive port of the entry adapter to be used as part of the MoCA network. MoCA signals are suppressed from exiting the CATV entry adapter onto the CATV network. | 2010-04-22 |
| 20100100919 | METHOD FOR REDUCING UPSTREAM INGRESS NOISE IN CABLE DATA SYSTEM - In a method of reducing and diagnosing upstream ingress noise in cable data system utilize a MAC/MAP management messages via a downstream path based on Cable Systems Interface Specification (DOCSIS) to provide precise control of gates deployed near the user side provide a powerful algorithm for CATV operators to mitigate ingress noise problem. | 2010-04-22 |
| 20100100920 | DATA APPLICATION PROVIDING SERVER, BROADCASTING SERVER AND RECEIVER FOR DYNAMICALLY PROCESSING DATA APPLICATION AND DIGITAL BROADCASTING SYSTEM INCLUDING THE SAME - A data application providing server, a broadcasting server and a receiver for dynamically processing a data application and a digital broadcasting system including the same are disclosed wherein a data of a minimum quantity required for executing a data application is received and other data is received by a pull method to minimize a time required for receiving and executing the data application, and wherein a change in the data application is facilitated, and a stability of the execution of the data application is maintained and an execution speed is improved through a tread management or a task management. | 2010-04-22 |
| 20100100921 | DYNAMICALLY CONFIGURABLE FREQUENCY BAND SELECTION DEVICE BETWEEN CATV DISTRIBUTION SYSTEM AND CATV USER - A frequency band selection device that can be inserted into a signal transmission line of a CATV system on the premise of a user includes at least two signal path sets between a tap side and a premise side. Each signal path set includes two discrete signal paths, a high frequency signal path for a downstream bandwidth and a low frequency signal path for an upstream bandwidth. The high frequency signal path and the low frequency signal path are separated by a cut-off transition frequency that is different for each signal path set. The device further includes a switch controller having at least two discrete switch positions. The switch controller chooses one of the switch positions as a result of an information signal. Each of the switch positions corresponds to a respective one of the signal path sets. | 2010-04-22 |
| 20100100922 | DOWNSTREAM OUTPUT LEVEL AND/OR OUTPUT LEVEL TILT COMPENSATION DEVICE BETWEEN CATV DISTRIBUTION SYSTEM AND CATV USER - A downstream bandwidth output level and/or output level tilt compensation device that can be inserted into a signal transmission line of a CATV system on a premise of a user. The device includes a tuner that identifies low and high band signal channels, and a channel analyzer that determines a format of each of those channels. A signal measurement measures low and high band signal strengths. An offset circuit adds or subtracts an offset value to the low and/or high band channel signal strengths depending on whether the respective channel is analog or digital. A microprocessor compares the low and high band signal strengths, including any offset values, to a predetermined signal strength loss curve. A variable output level compensation device and a variable slope adjusting circuit are provided to amplify and adjust the gain slope of the downstream bandwidth. | 2010-04-22 |
| 20100100923 | RECEIVER - A delay controller performs a delay control so as to stepwise increase a first delay amount in a first delay generator or second delay generator so as to minimize the delay amount of a video signal and an audio signal output from a first AV decoder and a second AV decoder. Thus, immediately after channel selection, the first video signal and the first audio signal or the second video signal and the second audio signal are output without a delay. This can provide a receiver capable of synchronizing the video signal output and the audio signal output between a plurality of receivable broadcast methods. | 2010-04-22 |
| 20100100924 | Digital Rights Management (DRM)-Enabled Policy Management For A Service Provider In A Federated Environment - A method operative at a service provider enforces a digital rights management (DRM) scheme associated with a piece of content. The service provider typically is a content provider. The service provider is an entity that participates in a “federation” with one or more other entities including, for example, an identity provider, a DRM privileges provider, and a DRM policy provider. In one embodiment, the method begins upon receipt at the service provider of a single sip on (SSO) message generated by the identity provider entity that includes a reference to a set of DRM privileges associated with an end user requesting access to the piece of content. In response to receiving the message, the service provider as necessary obtains the DRM privileges and at least one applicable DRM policy. It then evaluates the DRM privileges associated with the end user against the DRM policy, and provides the end user a response. | 2010-04-22 |
| 20100100925 | Digital Rights Management (DRM)-Enabled Policy Management For An Identity Provider In A Federated Environment - A method operative at an identity provider enforces a digital rights management (DRM) scheme associated with a piece of content. The identity provider is an entity that participates in a “federation” with one or more other entities including, for example, an service provider (e.g., a content provider), a DRM privileges provider, and a DRM policy provider. In one embodiment, the method begins by having the identity provider obtain and evaluate against a DRM policy a set of DRM privileges associated with the end user requesting access to the piece of content. Based on the evaluation, the identity provider generates a single sign on (SSO) message that includes a reference to the set of DRM privileges. The message is then forward to the service provider entity, which provides the end user a response. | 2010-04-22 |
| 20100100926 | INTERACTIVE SELECTION OF IDENTITY INFORMATOIN SATISFYING POLICY CONSTRAINTS - A system and method for verifying an attribute includes providing a compound policy by a relying party. The compound policy has one or more claims and/or sub-claims expressing conditions on attributes and constants. Identity providers are associated with aspects of the compound policy by mapping attributes of the compound policy with attributes of the identity providers. A selection of at least one identity provider that satisfies the compound policy is enabled. At least one attribute of the user is verified by at least one identity provider in accordance with the selection. | 2010-04-22 |
| 20100100927 | SYSTEMS AND METHODS FOR PROTECTING WEB BASED APPLICATIONS FROM CROSS SITE REQUEST FORGERY ATTACKS - Computer implemented methods ( | 2010-04-22 |
| 20100100928 | Secure network computing - A host based security system for a computer network includes in communication with the network a credential host that is operative in concert with a local computer and a destination site. The destination site has a credential authentication policy under which credentials associated with the local computer upon being authenticated authorizes data to be communicated between each of the destination site and the local computer during a communication session over the network. The credential host stores the credentials to be used by the destination and is operative to transmit the credentials onto the network in response to a request received from the local computer. The destination site upon the credentials being received and authenticated thereat is operative to transmit session information onto the network. In turn, the local computer is then operative to commence the communication session upon receipt of said the information. | 2010-04-22 |
| 20100100929 | APPARATUS AND METHOD FOR SECURITY MANAGING OF INFORMATION TERMINAL - Provided is an apparatus and a method for security managing of an information terminal. The provided classifies a plurality of information providing means into a plurality of domains including at least one information providing means and when a user process accesses any one domain and then attempts to access another domain, controls the access to said another domain by verifying whether or not the access of the user process to said another domain is allowed. According to the provided, security threats are monitored for each domain which an execution process accesses by simply constructing domain classification information of an entire system without specifically establishing a security policy of an information providing device, such that it is possible to protect a terminal from a multi-domain access process having high security risk. Accordingly, it is advantageous to increase security for the terminal from various security threats. | 2010-04-22 |
| 20100100930 | HOSTED VULNERABILITY MANAGEMENT FOR WIRELESS DEVICES - A method, a multi-tenant security server apparatus and associated system for securing wireless communication of devices. The method includes transferring security policy configuration information from the security server to wireless devices. The method also includes ascertaining compliance of wireless activity of the wireless devices with the security policy configuration using client software modules installed on the wireless devices. | 2010-04-22 |
| 20100100931 | TRANSACTION TOOL MANAGEMENT INTEGRATION WITH CHANGE MANAGEMENT - A change management system coordinates information of a transaction tool managed by a transaction tool management system. The system includes a receiver that receives, over a communications network, activity information and/or lifecycle event information for the transaction tool. The system also includes a storage that stores the received information. Additionally, the system includes a processor that manages a change in a status of the transaction tool based on the received information. | 2010-04-22 |
| 20100100932 | SYSTEM AND METHOD FOR DETERMINING A SECURITY ENCODING TO BE APPLIED TO OUTGOING MESSAGES - A system and method for determining a security encoding to be applied to a message being sent by a user of a computing device, such as a mobile device, for example. In one broad aspect, the method comprises determining, at the computing device, whether a general message encoding configuration setting thereon indicates that the security encoding to be applied to the message is to be established by a policy engine; if the general message encoding configuration setting on the computing device indicates that the security encoding to be applied to the message is to be established by the policy engine, determining the security encoding to be applied to the message by querying the policy engine for the security encoding to be applied to the message; applying the determined security encoding to the message; and transmitting the message to which the security encoding has been applied to the at least one recipient. In one embodiment, the policy engine is a PGP Universal Server. | 2010-04-22 |
| 20100100933 | APPARATUS AND METHOD FOR TRANSITIONING ACCESS RIGHTS FOR ROLE-BASED ACCESS CONTROL COMPATIBILIITY - Disclosed is a method for transitioning access rights, in a remote station with role-based access control, for an unknown role having access rights defined by a central access control management module. In the method, a role capability table is maintained in the remote station specifying centrally-defined access rights of roles that are interpretable in the remote station. An access request associated with an unknown role that is not interpretable in the remote station is received. The access request includes a role transition list that relates the unknown role to other centrally-defined roles. At least one of the other centrally-defined roles is interpretable in the remote station. A role is selected, from the role transition list, that is interpretable in the remote station for interpreting the unknown role of the access request. Access is granted based on the access request associated with the unknown role using the access rights of the interpretable role selected from the role transition table. | 2010-04-22 |
| 20100100934 | SECURITY METHODOLOGY TO PREVENT USER FROM COMPROMISING THROUGHPUT IN A HIGHLY THREADED NETWORK ON A CHIP PROCESSOR - A computer-implemented method, system and computer program product for preventing an untrusted work unit message from compromising throughput in a highly threaded Network On a Chip (NOC) processor are presented. A security message, which is associated with the untrusted work unit message, directs other resources within the NOC to operate in a secure mode while a specified node, within the NOC, executes instructions from the work unit message in a less privileged non-secure mode. Thus, throughput within the NOC is uncompromised due to resources, other than the first node, being protected from the untrusted work unit message. | 2010-04-22 |
| 20100100935 | CONTENT DISTRIBUTION SYSTEM, CONTENT DISTRIBUTION METHOD AND PROGRAM - A content distribution system. A distribution management and unauthorized operation management device generates a one-time URL by using URL of content information specified by a user terminal and transmits the one-time URL and bandwidth information concerning the content information to the user terminal. A session control server extracts the one-time URL from a session control message transmitted from the user terminal, transmits it to the distribution management and unauthorized operation management device, and establishes a session between the content distribution server and the user terminal according to an authentication result performed by using the one-time URL transmitted from the distribution management and unauthorized operation management device and a correlation result obtained by correlating the bandwidth information contained in the session control message transmitted from the user terminal with the bandwidth information transmitted together with the authentication result from the distribution management and unauthorized operation management device. | 2010-04-22 |
| 20100100936 | Secure Wireless Network Using Radiometric Signatures - A network security system for wireless devices derives a fingerprint from the modulation imperfections of the analog circuitry of the wireless transceivers. These fingerprints may be compared to templates obtained when the wireless devices are initially commissioned in a secure setting and used to augment passwords or other security tools in detecting intruders on the network. | 2010-04-22 |
| 20100100937 | METHOD AND SYSTEM FOR LOCAL SEARCH AND SOCIAL NETWORKING WITH CONTENT VALIDATION - A social networking and local search service validates content including personal information, business information, text, photographs, music, video and/or other media or content. The service provides each member of with the ability to author and share content with the fellow members and visitors. In an embodiment of the invention, if a member claims to be a business owner and provides content for a local business, then the website performs validation functions to authenticate the business information. This allows the website to host only accurate information and allows small businesses to effectively advertise their merchandise. | 2010-04-22 |
| 20100100938 | METHOD AND APPARATUS FOR MANAGING SERVICE LISTS - A method and apparatus for managing service lists receives a service list and a security layer identifier at a device. The service list comprises at least two service identifiers. The method and apparatus determines whether the security layer is authorized for the device, and, for each service identified in the service list, when the security layer is authorized for the device the method and apparatus acquires each service in the service list that is not already installed in the device and enables each service in the service list that is not already enabled in the device. | 2010-04-22 |
| 20100100939 | SECURE MOBILE PLATFORM SYSTEM - The present invention is directed toward a secure platform which enables mobile devices, such as a cell phones, smartphones, or PDAs, to have relationships with services or service providers that are controlled by the state of security on each device. In an embodiment, the platform is comprised of a server that receives data from security software on a mobile device regarding the device's security state. The platform enables access to a service to be granted, denied, or limited based on the security state of the mobile device. The platform may provide two-way communications between a mobile device and a service so that the platform can enforce access security both from the client to the service and from the service to the client. Furthermore, the platform allows services or service providers to evaluate the security state of a device independently of using the platform to communicate with the device. | 2010-04-22 |
| 20100100940 | System and Method for Supporting Multiple Identities for a Secure Identity Device - A multiple-identity secure device (MISD) persistently stores a single identification code (a “seed identity”). The seed identity need not be a network address, and may be stored in an integral memory of the device, or on an interchangeable card received in a physical interface of the MISD. The MISD is provided with a transformation engine, in hardware or software form, that is subsequently used to generate one or more unique identities (e.g., network addresses) from the stored seed identity using predefined logic. The generated identities may be dynamically generated, e.g., in real-time as needed after deployment of a device into possession of a subscriber/customer/user, etc., or may be securely stored in the MISD for subsequent retrieval. The transformation engine may generate a unique identity in accordance with an addressing scheme identified as a default setting, a global/network setting, or as determined from a received data transmission. | 2010-04-22 |
| 20100100941 | CONTEXT-AWARE ROLE-BASED ACCESS CONTROL SYSTEM AND CONTROL METHOD THEREOF - A context-aware role-based access control system and a control method thereof. The context-aware role-based access control system includes: a context-aware user assignment manager (CAUAM) for performing a role assignment function, a role delegation function, or a role revocation function for a user according to a context of the user, based on a preset context request condition; a context-aware permission assignment manager (CAPAM) for performing a permission modification, a permission restoration, and a personalized permission modification for a permission, which the role has, according to changes in the context of the user; an information repository for storing a user profile and context information; and an access control manager (ACM) for controlling the context-aware user assignment manager, the context-aware permission assignment manager, and the information repository, and processing an access control request. Accordingly, more efficient access control can be achieved in ubiquitous environments where the context of the user dynamically changes. | 2010-04-22 |
| 20100100942 | System and Method for Exchanging Information Regarding Financial Markets in a Moderated Environment - A method and system for exchanging information regarding financial markets in a moderated environment are disclosed. According to one embodiment, a computer-implemented method comprises granting an administrator access to a collaborative interface, wherein the collaborative interface is one for a financial group that accepts posts from registered group members and distributes posts to the registered group members upon submission of new posts, and wherein the administrator approves the distribution of each new post. One or more clients are granted access to the collaborative interface, wherein the administrator identifies a permission level for each client. Posts are received from the administrator or a client of the one or more additional clients, approval is received from the administrator to display the post, and the post is displayed. | 2010-04-22 |
| 20100100943 | Permissions using a Namespace - Permissions using a namespace is described. In an embodiment, a namespace system includes a network resource that has a resource permission, and includes a namespace that has one or more members associated with the namespace. The namespace system also includes a namespace permission to permission the network resource to one or more of the members of the namespace. | 2010-04-22 |
| 20100100944 | METHOD AND SYSTEM FOR FILTERING UNAUTHORIZED ELECTRONIC MAIL MESSAGES - A computer system and method for filtering unauthorized electronic mail messages that are sent by senders to a user. The system includes a list of the identifications of the senders who are authorized to send an electronic mail message to the user. When an electronic mail message is received, the system determines whether the sender of the electronic mail message is authorized by determining whether the identification of sender in the electronic mail message is in the list of the identifications of the senders who are authorized. When the sender of the electronic mail message is determined to be authorized, the system stores the electronic mail message in an Inbox folder. When the sender of the electronic mail message is determined to be not authorized, the system stores the electronic mail message in a Junk Mail folder. In this way, the electronic mail messages are automatically stored in the appropriate folder based on whether the sender is authorized so that the user can view the Inbox folder containing the electronic mail messages sent by authorized senders separately from the Junk Mail folder containing the electronic mail messages sent by unauthorized senders. | 2010-04-22 |
| 20100100945 | USER AUTHENTICATION MANAGEMENT - End users of a multi-factor authentication service can utilize an account management service, and third-party website can register to utilize the multi-factor authentication service. Registering a third-party website can comprise the multi-factor authentication service receiving a valid digital identity certificate for the third-party website, and receiving an agreement to terms of use of the multi-factor authentication service for the third-party website. Once received, the multi-factor authentication service can enable the third-party website to utilize the service (e.g., switch the service on, or send an authorization key to the third-party website). Further, registering a user to the multi-factor authentication service can comprise determining availability of service, and providing a location-specific access code. Additionally, registering the user can comprise registering the user's mobile device, for example, to provide multi-factor authentication. Also, an Internet-based user account management user interface can be provided that allows a user to view transactions on their account, and an ability to shut off a designated mobile device's ability to authenticate. | 2010-04-22 |
| 20100100946 | Transparent Client Authentication - A system and method for authenticating an application (client) to a server or service. During a registration phase, an application that requests access to a service can receive a service identifier, which it can authenticate. The application can generate and send to the server or service an application-service key that is based upon the authenticated service identifier and a secret application key; a service-application identifier that can be based upon the authenticated service identifier and an application identifier; and a registration nonce, all of which can be stored at the server. During the authentication phase, the client can send to the server the application-service identifier, which the server can use to lookup the stored registration data. The server can send the registration nonce to the client, which can compute a proof of possession of the service-application key and send to the server. The server can compute its own version of this key and compare it to the received key. If they correspond, then the client is authenticated. | 2010-04-22 |
| 20100100947 | SCHEME FOR AUTHENTICATING WITHOUT PASSWORD EXCHANGE - Aspects relate to systems and methods implementing a scheme allowing a Verifier (V) to authenticate a Prover (P). The scheme comprises pre-sharing between V and P a graph of nodes. Each node is associated with a polynomial. V sends P data comprising data for selecting a polynomial of the graph, such as traversal data for proceeding from a known node to another node, a time interval, and a number k. P uses the time interval in an evaluation of the polynomial. P then uses the evaluation as a λ in a Poisson distribution, and determines a value related to a probability that a number of occurrences of an event equals k. P sends the determined value to V. V performs a similar determination to arrive at a comparison value. P authenticates V if the separately determined values match, or otherwise meet expectations. The process can be repeated to increase confidence in authentication. | 2010-04-22 |
| 20100100948 | RULES DRIVEN MULTIPLE PASSWORDS - A rules driven multiple passwords system is provided wherein a list of stored passwords are used in rotation over time in accordance with a set of rules or conditions managed by the system. With such an arrangement, the currently active password of a system User may automatically be changed, in accordance with the rules or conditions, to the next password in the list. The User is notified as to the newly assigned password. | 2010-04-22 |
| 20100100949 | IDENTITY AND POLICY-BASED NETWORK SECURITY AND MANAGEMENT SYSTEM AND METHOD - A system and method for providing security for a network connecting a source and a destination. The system and method provide a security and management system between the source and the destination which is configured to apply rules and policies which are specific to the user to the connection between the source and the destination. The user-specific policies are used to govern. | 2010-04-22 |
| 20100100950 | CONTEXT-BASED ADAPTIVE AUTHENTICATION FOR DATA AND SERVICES ACCESS IN A NETWORK - A method includes sending a command set to a client module via a network, receiving via the network a context identifier and a data set associated with the command set, verifying the command set, and authenticating the client module. The command set is verified based on the data set. The client module is authenticated based on the context identifier. A service is made accessible to the client module after the authenticating, The service is inaccessible to the client module before the authenticating. | 2010-04-22 |
| 20100100951 | Communication system and method - A method of authenticating a user terminal with an access node providing restricted access to a communication network is provided. The method comprises the user terminal transmitting a request for an authentication token to a trusted network node via an unrestricted channel on the access node, the request comprising a network identity for a user of the user terminal. The network node verifies the identity of the user using the network identity, generates an authentication token and transmits the authentication token to the user terminal via the unrestricted channel. The user terminal derives login information from the authentication token and provides the login information to the access node. The access node authenticates the login information and removes the restricted access such that the communication network can be accessed by the user terminal. | 2010-04-22 |
| 20100100952 | NETWORK AGGREGATOR - A device, system and method for aggregating resources, services or data across a network in which data and services from various source networks can be converted into an internal, aggregatable form (or vice versa) that can be sent to relevant properties or systems on request or through scheduling. The framework of the device, system and method permits scalability and potentially support any number of users, applications and services. | 2010-04-22 |
| 20100100953 | PassThru for Client Authentication - This disclosure pertains generally to client authentication. One aspect of the disclosure relates to a first server for presenting evidence to a Domain Controller (DC) of a first authentication context being submitted from a client to the first server to obtain a delegable credential, wherein the credential can be used to request a second authentication context from that client to a second server. Another aspect relates to the first server providing a pass-thru with evidence to a DC. The evidence relates to a first authentication context being submitted from a client to the first server that it obtained a delegable credential. The pass-thru is used in combination with the credential to request a second authentication context from the client to a second server. | 2010-04-22 |
