| Patent application number | Description | Published |
|---|
| 20100071048 | SERVICE BINDING - Embodiments for performing service binding between a client and a target server are disclosed. In accordance with one embodiment, a clear text client service binding value is received from a client at the target server, the client service binding value is compared to a server service binding value, and a communication channel is formed between the client and the target server when the client service binding value matches the server service binding value. | 03-18-2010 |
| 20110111863 | METHOD AND APPARATUS FOR SECURING NETWORKED GAMING DEVICES - Embodiments are described for a system operating a plurality of gaming devices. A central gaming computer having a trusted node daughterboard having operational software is configured to be loaded on a gaming computer, a network coupled to the central gaming computer, and a plurality of gaming computers coupled to the network with each of the plurality of gaming computers including an operational node motherboard operable to load operational software sent from the central gaming computer to affect a change in gameplay in the gaming computer. Upon completion of desired computer processing on the operational node, the trusted node causes the operational node to reboot to remove the pre-boot data and the operating system software from the operational node such that no rewrite functions are performed on the operational node. | 05-12-2011 |
| 20110113230 | APPARATUS AND METHOD FOR SECURING AND ISOLATING OPERATIONAL NODES IN A COMPUTER NETWORK - A system and method for securing firmware from malware in a computer processing system having a trusted node daughterboard connected to at least one operational node motherboard. The method includes the steps of sending a power on signal from the trusted node daughterboard to the operational node motherboard when it is desired to utilize the operational node motherboard for computer processing purposes. Pre-boot data is then requested from the operational node motherboard and is sent from the trusted node daughterboard to the operational node motherboard to enable operation of the operational node motherboard. | 05-12-2011 |
| 20110113231 | SYSTEM AND METHOD FOR PROVIDING SECURE RECEPTION AND VIEWING OF TRANSMITTED DATA OVER A NETWORK - A method and system for securely opening an e-mail attachment in a computer processing environment having a trusted node daughterboard connected to at least one operational node motherboard with an e-mail processing system operatively coupled to the trusted node daughterboard. The method includes the steps of when an e-mail attachment is to be opened, sending a power on signal from the trusted node daughterboard to the operational node motherboard when it is desired to utilize the operational node motherboard for opening an e-mail attachment. Pre-boot data is then requested from the operational node motherboard and is sent from the trusted node daughterboard to the operational node motherboard to enable operation of the operational node motherboard for securely opening an e-mail attachment. | 05-12-2011 |
| Patent application number | Description | Published |
|---|
| 20080212484 | Tracing connection paths through transparent proxies - In one embodiment, a method for tracing a connection path from a source node to a destination node through a network having one or more transparent proxies includes generating a trace packet at the source node, transmitting the trace packet over the network towards the destination node, and receiving trace response packets in response to transmission of the trace packet. The trace response packets include a packet from the destination node and a packet from each of the transparent proxies in a data path from the source node to the destination node. Each of the packets from the transparent proxies includes an identifier of the transparent proxy transmitting the packet. The method further includes identifying the transparent proxies in the connection path based on information in the trace response packets. An apparatus for tracing a connection path is also disclosed. | 09-04-2008 |
| 20090319600 | OPTIMIZING PROGRAM REQUESTS OVER A WIDE AREA NETWORK - In various embodiments, data processing apparatus, software, or machine-implemented methods can optimize NFSv3 asynchronous write requests or MSRPC calls that traverse a wide area network, for example, by receiving, from a client, a first request directed to a server across a wide area network; determining whether a related second request has been received previously; when a related second request has been received previously, sending, to the client, a first reply to the second request and forwarding the first request to the server, and otherwise forwarding the first request to the server without sending any reply to the client for the first request. Sending local replies from a WAN optimizer induces the client to send continuous requests, improving throughput, but at least one client request remains unreplied to, and one server error reply is always reported to the client, facilitating correct error processing at the client. | 12-24-2009 |
| 20100061253 | Tracing connection paths through transparent proxies - In one embodiment, a method for tracing a connection path from a source node to a destination node through a network having one or more transparent proxies includes generating a trace packet at the source node, transmitting the trace packet over the network towards the destination node, and receiving trace response packets in response to transmission of the trace packet. The trace response packets include a packet from the destination node and a packet from each of the transparent proxies in a data path from the source node to the destination node. Each of the packets from the transparent proxies includes an identifier of the transparent proxy transmitting the packet. The method further includes identifying the transparent proxies in the connection path based on information in the trace response packets. An apparatus for tracing a connection path is also disclosed. | 03-11-2010 |
| Patent application number | Description | Published |
|---|
| 20110161851 | VISUALIZATION AND CONSOLIDATION OF VIRTUAL MACHINES IN A VIRTUALIZED DATA CENTER - A method for visualizing and simulating server consolidation of different virtual machines in a virtualized data center can include identifying different server computers in a virtualized data center, computing load metrics for each of the server computers, and rendering a graph of the computed load metrics for the server computers in a graphical user interface (GUI) in a host computer. The method further can include selecting a source one of the server computers and also a target one of the server computers and further selecting a virtual machine for prospective migration from the source one of the server computers to the target one of the server computers. Yet further, the method can include further computing prospective load metrics for the source and the target resulting from the prospective migration of the virtual machine to the target. Finally, the method can include displaying in the GUI respective graphs of the prospective load metrics for each of the source and the target. | 06-30-2011 |
| 20110162069 | SUSPICIOUS NODE DETECTION AND RECOVERY IN MAPREDUCE COMPUTING - Embodiments of the present invention address deficiencies of the art in respect to distributed computing for large data sets on clusters of computers and provide a novel and non-obvious method, system and computer program product for detecting and correcting malicious nodes in a cloud computing environment (e.g., MapReduce computing). In one embodiment of the invention, a computer-implemented method for detecting and correcting malicious nodes in a cloud computing environment can include selecting a task to dispatch to a first worker node, setting a suspicion index threshold for the selected task, determining a suspicion index for the selected task, comparing the suspicion index to the suspicion index threshold and receiving a result from a first worker node. The method further can include applying a recovery action when the suspicion index exceeds the selected suspicion index threshold. | 06-30-2011 |
| 20120005345 | OPTIMIZED RESOURCE MANAGEMENT FOR MAP/REDUCE COMPUTING - Embodiments of the present invention include a method for resource optimization of map/reduce computing in a computing cluster. The method can include receiving a computational problem for processing in a map/reduce module, subdividing the computational problem into a set of sub-problems and mapping a selection of the sub-problems in the set to respective nodes in a computing cluster, for example a cloud computing cluster, computing for a subset of the nodes in the computing cluster a required resource capacity of the subset of the nodes to process a mapped one of the sub-problems and an existing capacity of the subset of the nodes, and augmenting the existing capacity to an augmented capacity when the required resource capacity exceeds the existing capacity, and when a cost of augmenting the existing capacity to the augmented capacity does not exceed a penalty for breaching a service level agreement (SLA) for the subset of the nodes. | 01-05-2012 |
| 20120005682 | HOLISTIC TASK SCHEDULING FOR DISTRIBUTED COMPUTING - Embodiments of the present invention provide a method, system and computer program product for holistic task scheduling in a distributed computing environment. In an embodiment of the invention, a method for holistic task scheduling in a distributed computing environment is provided. The method includes selecting a first task for a first job and a second task for a different, second job, both jobs being scheduled for processing within a node a distributed computing environment by a task scheduler executing in memory by at least one processor of a computer. The method also can include comparing an estimated time to complete the first and second jobs. Finally, the first task can be scheduled for processing in the node when the estimated time to complete the second job exceeds the estimated time to complete the first job. Otherwise the second task can be scheduled for processing in the node when the estimated time to complete the first job exceeds the estimated time to complete the second job. | 01-05-2012 |
| Patent application number | Description | Published |
|---|
| 20080244611 | PRODUCT, METHOD AND SYSTEM FOR IMPROVED COMPUTER DATA PROCESSING CAPACITY PLANNING USING DEPENDENCY RELATIONSHIPS FROM A CONFIGURATION MANAGEMENT DATABASE - The invention discloses a computer data processing capacity planning system that utilizes known workload planning information along with hardware and/or software configuration information from the actual operating environment to accurately estimate the production system capacity available for use in carrying out one or more processing task(s). | 10-02-2008 |
| 20090048998 | PROBLEM DETERMINATION RULES PROCESSING - A context-sensitive pre-evaluation analysis of a set of rules is performed based on the circumstance or the current state of a rule clause directed to an infrequently changing condition. A group of multiple-clause rules are identified which each have a clause defining an infrequently changing condition for evaluating a state of a resource. The current state of the resource is monitored. If the identified group of multiple-clause rules, which cannot evaluate as TRUE under the context of the current state the resource, the identified group of multiple-clause rules are excluded from consideration by the rules engine. The rules engine will then encounter fewer rules to evaluate for a solution. The identified group of multiple-clause rules is further analyzed in the context of the infrequently changing condition for the current resource state. State metrics that are defined by clauses of the identified multiple-clause rules, those that cannot evaluate as TRUE, are identified. Those metrics are then also excluded from consideration by the rules engine. Thus, the rules engine will encounter fewer rules and/or event states that cannot be evaluated to a solution. The context-sensitive pre-evaluation analysis of the rules is performed out-of-band as the rules engine traverses the rule. | 02-19-2009 |
| 20090063672 | MONITORING OF COMPUTER NETWORK RESOURCES HAVING SERVICE LEVEL OBJECTIVES - In a typical computer network, at least some of the managed resources are monitored to determine whether those resources are meeting predetermined performance goals or service level objectives. To simplify the process of configuring a network monitor, information about the service level objectives is loaded into the resource itself. When the resource is detected, the service level objective information is extracted from the resource information and made available to a translating engine. The translating engine converts the extracted information to monitoring directions that are used to configure the network monitor. Embodiments in which new resources are detected either buying a registration process or a polling process are described. | 03-05-2009 |
| 20090100192 | AUTONOMIC SERVICE ROUTING USING OBSERVED RESOURCE REQUIREMENT FOR SELF-OPTIMIZATION - A service request routing system and method includes a model table configured to store resource models. A monitor is coupled to the model table and programmed both to model resource consumption in a service providing infrastructure, and also to store the modeled resource consumption in the model table. A router is coupled to the model table, and the router is programmed to route each service request to a corresponding service instance disposed in an associated service host having a service providing infrastructure. The associated service host includes a grid host in a grid computing system. | 04-16-2009 |
| 20090234686 | SYSTEM AND METHOD FOR PROVIDING ACCESS CONTROL IN A COLLABORATIVE ENVIRONMENT - A method, apparatus, and program product for providing access control in a collaborative environment are provided. A pool of approvable candidates for use in building an access control list for a project team are provided by matching attributes for potential candidates with requirements for the project, with the pool being larger than a projected size for the project team. In response to a vacant role on the project team, an invitation to join the project team is sent to an approvable candidate in the pool. At least one of the access control list or the pool is modified based upon an action by the approvable candidate. | 09-17-2009 |
| 20090313093 | OPTIMIZING GREENNESS - A greenness metric is obtained for a plurality of services. The greenness metric of each of the plurality of services are compared. One or more services are determined from the plurality of services based at least in part upon the greenness metric for each of the plurality of services. | 12-17-2009 |
| 20090326732 | PROTECTING SECRET DATA ENTRY FROM INFRARED AND AUDIO EAVESDROPPING - A method for protecting a data entry device from eavesdropping includes masking a signature of entry resulting from entry of data by a user of the data entry device so as to reduce the detectability of the signature by eavesdropping. The signature may include a temperature differential in the data entry device from data entry by the user and the masking may include controlling the external temperature of the data entry device to reduce temperature differentials left in the data entry device by the user. Alternatively, the signature may include sound waves emitted from the data entry device and the masking may include masking sound waves emitted from the data entry device to reduce the detectability of the sound waves. A system may also be employed for protecting data entry to a data entry device from eavesdropping. The system includes a data entry device and means for masking a signature of entry resulting from entry of data by a user of the data entry device so as to reduce the detectability of the signature by eavesdropping. | 12-31-2009 |
| 20110191466 | AUTONOMIC SERVICE ROUTING USING OBSERVED RESOURCE REQUIREMENT FOR SELF-OPTIMIZATION - A service request routing system and method includes a model table configured to store resource models. A monitor is coupled to the model table and programmed both to model resource consumption in a service providing infrastructure, and also to store the modeled resource consumption in the model table. A router is coupled to the model table, and the router is programmed to route each service request to a corresponding service instance disposed in an associated service host having a service providing infrastructure. The associated service host includes a grid host in a grid computing system. | 08-04-2011 |
| 20110249828 | PROTECTING SECRET DATA ENTRY FROM INFRARED AND AUDIO EAVESDROPPING - A method for protecting a data entry device from eavesdropping includes masking a signature of entry resulting from entry of data by a user of the data entry device so as to reduce the detectability of the signature by eavesdropping. The signature may include a temperature differential in the data entry device from data entry by the user and the masking may include controlling the external temperature of the data entry device to reduce temperature differentials left in the data entry device by the user. Alternatively, the signature may include sound waves emitted from the data entry device and the masking may include masking sound waves emitted from the data entry device to reduce the detectability of the sound waves. A system may also be employed for protecting data entry to a data entry device from eavesdropping. The system includes a data entry device and means for masking a signature of entry resulting from entry of data by a user of the data entry device so as to reduce the detectability of the signature by eavesdropping. | 10-13-2011 |
| Patent application number | Description | Published |
|---|
| 20110027181 | Device including altered microorganisms, and methods and systems of use - Devices, methods, and systems are described for administration to at least one biological tissue of at least one device including at least one altered microorganism. In an embodiment, the altered microorganism includes at least one nucleic acid construct encoding at least one therapeutic agent. | 02-03-2011 |
| 20110028945 | Device including altered microorganisms, and methods and systems of use - Devices, methods, and systems are described for administration to at least one biological tissue of at least one device including at least one altered microorganism. In an embodiment, the altered microorganism includes at least one nucleic acid construct encoding at least one therapeutic agent. | 02-03-2011 |
| 20110172826 | Device including altered microorganisms, and methods and systems of use - Devices, methods, and systems are described for administration to at least one biological tissue of at least one device including at least one altered microorganism. In an embodiment, the altered microorganism includes at least one nucleic acid construct encoding at least one therapeutic agent. | 07-14-2011 |
