公开(公告)号：WO2008055772A2

公开(公告)日：2008-05-15

申请号：PCT/EP2007061277

申请日：2007-10-22

Applicant: IBM ,  IBM UK ,  KEOHANE SUSANN MARIE ,  MCBREARTY GERALD FRANCIS ,  MULLEN SHAWN PATRICK ,  MURILLO JESSICA CAROL ,  SHIEH JOHNNY MENG-HAN

Inventor： KEOHANE SUSANN MARIE ,  MCBREARTY GERALD FRANCIS ,  MULLEN SHAWN PATRICK ,  MURILLO JESSICA CAROL ,  SHIEH JOHNNY MENG-HAN

IPC: G06Q20/00

CPC classification number: G06Q10/107 ,  G06Q20/00 ,  G06Q40/00

Abstract: A financial transaction system detects an identifier for a user requesting a transaction at an interface of the financial transaction system. The financial transaction system accesses from the electronic message service provider for the user using the identifier, at least one electronic message addressed to the user and sent to the user over a network for delivery to the user by the electronic message service provider at at least one system accessible via the network and logged into using the identifier. The accessed electronic message is delivered to the user at the interface for the financial transaction system.

Abstract translation: 金融交易系统检测在金融交易系统的接口处请求交易的用户的标识符。 金融交易系统使用标识符从用户的电子消息服务提供商接入，至少一个电子消息寻址到用户，并通过网络发送给用户，由电子消息服务提供商至少提供一个 系统可通过网络访问并使用标识符登录。 所访问的电子消息在金融交易系统的接口处被递送给用户。

公开(公告)号：EP2517433B1

公开(公告)日：2017-06-21

申请号：EP10790412

申请日：2010-12-08

Applicant: IBM

Inventor： MULLEN SHAWN PATRICK ,  SHIEH JOHNNY MENG-HAN ,  MURILLO JESSICA CAROL ,  MCBREARTY GERALD FRANCIS ,  KEOHANE SUSANN MARIE

IPC: H04L29/06 ,  H04L12/22 ,  H04L12/26

CPC classification number: H04L63/1466 ,  H04L43/10 ,  H04L63/0428 ,  H04L63/1475 ,  H04L63/1483

公开(公告)号：WO2004079482A2

公开(公告)日：2004-09-16

申请号：PCT/GB2004000919

申请日：2004-03-04

Applicant: IBM ,  IBM UK ,  KEOHANE SUSANN MARIE ,  MCBREARTY GERALD FRANCIS ,  MULLEN SHAWN PATRICK ,  MURILLO JESSICA KELLEY ,  SHIEH JOHNNY MENG-HAN

Inventor： KEOHANE SUSANN MARIE ,  MCBREARTY GERALD FRANCIS ,  MULLEN SHAWN PATRICK ,  MURILLO JESSICA KELLEY ,  SHIEH JOHNNY MENG-HAN

IPC: H04L12/18 ,  H04L29/06 ,  H04L29/08 ,  G06F

CPC classification number: H04L67/1008 ,  H04L67/1002 ,  H04L67/101

Abstract: A method, apparatus, and computer instructions for obtaining a logical unit. A request is sent for the logical unit. In the depicted examples, the request is sent to a multicast IP address. Responses to the request for the logical unit are received from a number of responders. A responder is identified from the set of responders to form a selected responder. The selected responder is identified based on at least one connection metric between the data processing system and the set of responders. The logical unit is retrieved from the selected responder.

Abstract translation: 一种用于获得逻辑单元的方法，装置和计算机指令。 发送逻辑单元的请求。 在所示的示例中，请求被发送到多播IP地址。 从多个响应者接收到对逻辑单元的请求的响应。 从响应者集合中识别响应者以形成选择的响应者。 基于数据处理系统和响应者集合之间的至少一个连接度量来识别所选择的响应者。 从所选择的响应者检索逻辑单元。

公开(公告)号：WO2004079483A3

公开(公告)日：2004-12-09

申请号：PCT/GB2004000926

申请日：2004-03-04

Applicant: IBM ,  IBM UK ,  KEOHANE SUSANN MARIE ,  MCBREARTY GERALD FRANCIS ,  MULLEN SHAWN PATRICK ,  MURILLO JESSICA KELLEY ,  SHIEH JOHNNY MENG-HAN

Inventor： KEOHANE SUSANN MARIE ,  MCBREARTY GERALD FRANCIS ,  MULLEN SHAWN PATRICK ,  MURILLO JESSICA KELLEY ,  SHIEH JOHNNY MENG-HAN

IPC: G06F21/00 ,  G06F1/00

CPC classification number: G06F21/51 ,  G06F21/33

Abstract: A method, apparatus, and computer instructions for authorizing execution of an application on the data processing system. A request is received to execute the application, wherein the request originates from a remote data processing system and wherein the request includes a digital certificate and the application. The digital certificate is verified in response to receiving the request. Responsive to verifying the digital certificate, a digital digest is calculated for the application to form a calculated digital digest. The calculated digital digest is compared with a set of digital digests from a trusted source. The application is executed if a match between the calculated digital digest and set of digital digests occurs.

Abstract translation: 一种用于授权在数据处理系统上执行应用程序的方法，装置和计算机指令。 接收到执行应用程序的请求，其中该请求源自远程数据处理系统，并且其中该请求包括数字证书和应用程序。 数字证书在接收到请求后进行验证。 响应于验证数字证书，为应用计算数字摘要以形成计算的数字摘要。 将计算出的数字摘要与来自可信来源的一组数字摘要进行比较。 如果计算出的数字摘要和一组数字摘要发生匹配，则执行该应用程序。

公开(公告)号：JP2005092887A

公开(公告)日：2005-04-07

申请号：JP2004270758

申请日：2004-09-17

Applicant: Internatl Business Mach Corp ,  インターナショナル・ビジネス・マシーンズ・コーポレーションInternational Business Maschines Corporation

Inventor： KEOHANE SUSANN MARIE ,  MCBREARTY GERALD FRANCIS ,  MULLEN SHAWN PATRICK ,  MURILLO JESSICA ,  SHIEH JOHNNY MENG-HAN

IPC: G06F13/00 ,  G06F15/16 ,  H04L9/08 ,  H04L12/58

CPC classification number: H04L51/24 ,  H04L63/0442

Abstract: PROBLEM TO BE SOLVED: To provide an apparatus, system and method for canceling an already transmitted e-mail message.
SOLUTION: After an e-mail message is prepared by a sender, the message can be stored in a computing system at the time of its transmission to recipients. Generally, the e-mail message contains a list of destination recipients. Then, a notification message, instead of an actual e-mail message, is generated and transmitted to the recipients (and to the sender). The notification message allows the recipients to automatically access the stored e-mail message. When the sender desires to cancel the message, the user can access the message and modify the list of recipients to exclude any number of recipients, as well as modify the text of the e-mail message. Any recipient whose e-mail address has been excluded will no longer be allowed to access the e-mail message.
COPYRIGHT: (C)2005,JPO&NCIPI

Abstract translation: 要解决的问题：提供用于取消已经发送的电子邮件消息的装置，系统和方法。

解决方案：发件人准备电子邮件后，消息可以在发送给收件人时存储在计算系统中。 通常，电子邮件包含目标收件人列表。 然后，生成通知消息，而不是实际的电子邮件消息，并发送给收件人（和发送方）。 通知消息允许收件人自动访问存储的电子邮件。 当发送者希望取消消息时，用户可以访问该消息并修改收件人列表以排除任何数量的收件人，以及修改电子邮件的文本。 电子邮件地址被排除的任何收件人将不再被允许访问电子邮件。 版权所有（C）2005，JPO＆NCIPI

公开(公告)号：BRPI0410569B1

公开(公告)日：2016-08-23

申请号：BRPI0410569

申请日：2004-04-15

Applicant: IBM

Inventor： MCBREARTY GERALD FRANCIS ,  MURILLO JESSICA KELLEY ,  SHIEH JOHNNY MENG-HAN ,  MULLEN SHAWN PATRICK ,  KEOHANE SUSANN MARIE

IPC: G06F17/30 ,  G06F1/00 ,  G06F21/00 ,  H04L29/06 ,  H04L29/08

Abstract: "extensão de segurança de rede de sistemas de arquivos distribuídos". um protocolo de segurança que dinamicamente implementa segurança de montagem aumentada de um sistema de arquivos, quando o acesso a arquivos sensíveis em uma rede de sistema de arquivos é solicitado. quando o usuário de um sistema cliente tenta acessar um arquivo sensível especificamente etiquetado, o servidor que hospeda o sistema de arquivos executa um código de software que termina a montagem corrente e reconfigura as portas do servidor para aceitar uma remontagem a partir do cliente através de uma porta mais segura. a porta do servidor reconfigurada é fornecido o endereço de ip do cliente e a correspondência do endereço de ip durante a operação de remontagem. a comutação para uma montagem segura é completada de uma maneira perfeitamente consistente de modo que os usuários autorizados são permitidos acessar arquivos sensíveis sem derrubar o servidor com as a criptografação custosa e outras características de segurança de intensivo recurso. nenhum retardo significante é experimentado pelo usuário, enquanto o arquivo sensível é protegido de captura não autorizada durante a transmissão do sistema cliente.

公开(公告)号：CA2698317A1

公开(公告)日：2009-04-09

申请号：CA2698317

申请日：2008-09-22

Applicant: IBM

Inventor： KEOHANE SUSANN MARIE ,  MCBREARTY GERALD FRANCIS ,  MULLEN SHAWN PATRICK ,  MURILLO JESSICA CAROL ,  SHIEH JOHNNY MENG-HAN

IPC: H04L12/56 ,  H04L45/122

Abstract: A computer implemented method, data processing system, and computer program product for discovering an unauthorized router in a network. The process in the illustrative embodiments first obtains a physical address of a suspected router or destination device. A data packet is created which comprises at least a destination media access control field, a destination internet protocol field, and a time-to-live field, wherein the destination media access control field comprises the physical address of the destination device, wherein the destination internet protocol field comprises a bogus internet protocol address, and wherein the time-to-live field comprises a value indicating the data packet has exceeded a time limit. The data packet is sent to the destination device using the physical address in the destination media access control field. If a time exceeded message is received from the destination device, the destination device is determined to be enabled for routing.

公开(公告)号：AU8552801A

公开(公告)日：2002-05-23

申请号：AU8552801

申请日：2001-10-30

Applicant: IBM

Inventor： MCBREARTY GERALD FRANCIS ,  SHIEH JOHNNY MENG-HAN ,  MULLEN SHAWN PATRICK

IPC: G06F17/30 ,  G06F17/21 ,  G06F15/163 ,  G06F17/60

公开(公告)号：CA2783394A1

公开(公告)日：2011-06-30

申请号：CA2783394

申请日：2010-12-08

Applicant: IBM

Inventor： MULLEN SHAWN PATRICK ,  SHIEH JOHNNY MENG-HAN ,  MURILLO JESSICA CAROL ,  MCBREARTY GERALD FRANCIS ,  KEOHANE SUSANN MARIE

IPC: H04L29/06 ,  H04L12/22

Abstract: Provided are techniques for to enable a virtual input/output server (VIOS) to establish cryptographically secure signals with target LPARs to detect an imposter or spoofing LPAR. The secure signal, or "heartbeat," may be configured as an Internet Key Exchange/Internet Protocol Security (IKE/IPSec) encapsulated packet (ESP) connection or tunnel. Within the tunnel, the VIOS pings each target LPAR and, if a heartbeat is interrupted, the VIOS makes a determination as to whether the tunnel is broken, the corresponding LPAR is down or a media access control (MAC) spoofing attack is occurring. The determination is made by sending a heartbeat that is designed to fail unless the heartbeat is received by a spoofing device.

公开(公告)号：DE60208810D1

公开(公告)日：2006-04-06

申请号：DE60208810

申请日：2002-10-28

Applicant: IBM

Inventor： MCBREARTY GERALD FRANCIS ,  MULLEN SHAWN PATRICK ,  SHIEH JOHNNY MENG-HAN ,  TESAURO JAMES STANLEY

IPC: H04L9/16 ,  H04L29/06 ,  H04L12/28 ,  H04L12/56 ,  H04W12/02 ,  H04W84/12

Abstract: Apparatus for eavesdropping within an area layer adjacent to and surrounding a LAN area periphery for potential wireless transmissions of an intruder having a lower frequency within a level below the LAN frequency; and an implementation responsive to said eavesdropping apparatus for changing the encryption code of said encrypted wireless transmission upon the eavesdropping detection of a wireless transmission of said lower frequency addressed to a network location of one of the terminals in said LAN.