WO2006004624A2 - Method for a server-less office architecture - Google Patents
Method for a server-less office architecture Download PDFInfo
- Publication number
- WO2006004624A2 WO2006004624A2 PCT/US2005/022652 US2005022652W WO2006004624A2 WO 2006004624 A2 WO2006004624 A2 WO 2006004624A2 US 2005022652 W US2005022652 W US 2005022652W WO 2006004624 A2 WO2006004624 A2 WO 2006004624A2
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- server
- candidate
- business
- cisco
- component
- Prior art date
Links
- 238000000034 method Methods 0.000 title claims description 57
- 230000006870 function Effects 0.000 claims abstract description 29
- 238000004891 communication Methods 0.000 claims description 31
- 238000007726 management method Methods 0.000 claims description 31
- 230000008901 benefit Effects 0.000 claims description 30
- 238000003860 storage Methods 0.000 claims description 29
- 238000001514 detection method Methods 0.000 claims description 11
- 238000013507 mapping Methods 0.000 claims description 10
- 230000002265 prevention Effects 0.000 claims description 8
- 238000012358 sourcing Methods 0.000 claims description 2
- 230000008520 organization Effects 0.000 abstract description 25
- 238000005516 engineering process Methods 0.000 abstract description 16
- 238000012545 processing Methods 0.000 abstract description 16
- 239000000306 component Substances 0.000 description 109
- 230000008569 process Effects 0.000 description 22
- 230000001965 increasing effect Effects 0.000 description 16
- 230000002829 reductive effect Effects 0.000 description 12
- 241000700605 Viruses Species 0.000 description 11
- 230000010354 integration Effects 0.000 description 11
- 239000000047 product Substances 0.000 description 10
- 239000003795 chemical substances by application Substances 0.000 description 7
- 238000001914 filtration Methods 0.000 description 7
- 238000011084 recovery Methods 0.000 description 7
- 230000010076 replication Effects 0.000 description 7
- 230000003203 everyday effect Effects 0.000 description 6
- 230000000694 effects Effects 0.000 description 5
- 230000005641 tunneling Effects 0.000 description 5
- 235000006508 Nelumbo nucifera Nutrition 0.000 description 4
- 240000002853 Nelumbo nucifera Species 0.000 description 4
- 235000006510 Nelumbo pentapetala Nutrition 0.000 description 4
- 238000004458 analytical method Methods 0.000 description 4
- 230000008859 change Effects 0.000 description 4
- 238000013478 data encryption standard Methods 0.000 description 4
- 238000013500 data storage Methods 0.000 description 4
- 230000007123 defense Effects 0.000 description 4
- 238000013461 design Methods 0.000 description 4
- 238000009434 installation Methods 0.000 description 4
- 238000012544 monitoring process Methods 0.000 description 4
- 230000006855 networking Effects 0.000 description 4
- 230000004044 response Effects 0.000 description 4
- 230000002155 anti-virotic effect Effects 0.000 description 3
- 238000013459 approach Methods 0.000 description 3
- 238000013475 authorization Methods 0.000 description 3
- 238000013523 data management Methods 0.000 description 3
- 238000010586 diagram Methods 0.000 description 3
- 239000000835 fiber Substances 0.000 description 3
- 230000003116 impacting effect Effects 0.000 description 3
- 230000008676 import Effects 0.000 description 3
- 230000007246 mechanism Effects 0.000 description 3
- 238000012986 modification Methods 0.000 description 3
- 230000004048 modification Effects 0.000 description 3
- 238000012360 testing method Methods 0.000 description 3
- 238000012549 training Methods 0.000 description 3
- 238000012546 transfer Methods 0.000 description 3
- 230000009471 action Effects 0.000 description 2
- 230000033228 biological regulation Effects 0.000 description 2
- 238000007596 consolidation process Methods 0.000 description 2
- 238000001816 cooling Methods 0.000 description 2
- 230000002354 daily effect Effects 0.000 description 2
- 238000011161 development Methods 0.000 description 2
- 238000009826 distribution Methods 0.000 description 2
- 230000002708 enhancing effect Effects 0.000 description 2
- 230000007613 environmental effect Effects 0.000 description 2
- 230000006872 improvement Effects 0.000 description 2
- 230000003993 interaction Effects 0.000 description 2
- 238000012423 maintenance Methods 0.000 description 2
- 230000004043 responsiveness Effects 0.000 description 2
- 229920000638 styrene acrylonitrile Polymers 0.000 description 2
- 230000001360 synchronised effect Effects 0.000 description 2
- 238000013519 translation Methods 0.000 description 2
- 238000012384 transportation and delivery Methods 0.000 description 2
- 238000009423 ventilation Methods 0.000 description 2
- KJLPSBMDOIVXSN-UHFFFAOYSA-N 4-[4-[2-[4-(3,4-dicarboxyphenoxy)phenyl]propan-2-yl]phenoxy]phthalic acid Chemical compound C=1C=C(OC=2C=C(C(C(O)=O)=CC=2)C(O)=O)C=CC=1C(C)(C)C(C=C1)=CC=C1OC1=CC=C(C(O)=O)C(C(O)=O)=C1 KJLPSBMDOIVXSN-UHFFFAOYSA-N 0.000 description 1
- RYGMFSIKBFXOCR-UHFFFAOYSA-N Copper Chemical compound [Cu] RYGMFSIKBFXOCR-UHFFFAOYSA-N 0.000 description 1
- 229940125647 RAED Drugs 0.000 description 1
- 208000015778 Undifferentiated pleomorphic sarcoma Diseases 0.000 description 1
- 230000001133 acceleration Effects 0.000 description 1
- 239000008186 active pharmaceutical agent Substances 0.000 description 1
- 230000002411 adverse Effects 0.000 description 1
- 230000003466 anti-cipated effect Effects 0.000 description 1
- 238000003491 array Methods 0.000 description 1
- 238000012550 audit Methods 0.000 description 1
- 230000005540 biological transmission Effects 0.000 description 1
- 239000000969 carrier Substances 0.000 description 1
- 239000007795 chemical reaction product Substances 0.000 description 1
- 239000003086 colorant Substances 0.000 description 1
- 238000012790 confirmation Methods 0.000 description 1
- 235000014510 cooky Nutrition 0.000 description 1
- 229910052802 copper Inorganic materials 0.000 description 1
- 239000010949 copper Substances 0.000 description 1
- 239000008358 core component Substances 0.000 description 1
- 230000007423 decrease Effects 0.000 description 1
- 239000004744 fabric Substances 0.000 description 1
- 230000012010 growth Effects 0.000 description 1
- 230000000977 initiatory effect Effects 0.000 description 1
- 230000002452 interceptive effect Effects 0.000 description 1
- 230000033001 locomotion Effects 0.000 description 1
- 238000004519 manufacturing process Methods 0.000 description 1
- 238000005259 measurement Methods 0.000 description 1
- 230000000116 mitigating effect Effects 0.000 description 1
- 230000036961 partial effect Effects 0.000 description 1
- 238000003909 pattern recognition Methods 0.000 description 1
- 230000002085 persistent effect Effects 0.000 description 1
- 238000007639 printing Methods 0.000 description 1
- 238000012913 prioritisation Methods 0.000 description 1
- 230000000135 prohibitive effect Effects 0.000 description 1
- 230000002062 proliferating effect Effects 0.000 description 1
- 238000011897 real-time detection Methods 0.000 description 1
- 230000009467 reduction Effects 0.000 description 1
- 230000003252 repetitive effect Effects 0.000 description 1
- 238000011160 research Methods 0.000 description 1
- 230000000717 retained effect Effects 0.000 description 1
- 238000012552 review Methods 0.000 description 1
- 238000013515 script Methods 0.000 description 1
- 230000035945 sensitivity Effects 0.000 description 1
- 230000011664 signaling Effects 0.000 description 1
- 230000002269 spontaneous effect Effects 0.000 description 1
- 230000003068 static effect Effects 0.000 description 1
- 238000004402 ultra-violet photoelectron spectroscopy Methods 0.000 description 1
- 230000000007 visual effect Effects 0.000 description 1
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q10/00—Administration; Management
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q10/00—Administration; Management
- G06Q10/10—Office automation; Time management
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q30/00—Commerce
- G06Q30/02—Marketing; Price estimation or determination; Fundraising
Definitions
- the present invention relates to a method for defining a server-less office architecture that meets pre-determined business objectives and business constraints by providing users thereof anywhere anytime access to appropriate IT resources.
- IT Information Technology
- n-tier architectures include database servers, web servers, and application servers; help desks (i.e., places a user can visit or call to get assistance with a wide range of IT related problems related to hardware, software, communications, networks, application usage, etc.) support hundreds of desktop users; non-standard configurations require support personnel and users to constantly increase their skill sets; maintenance of incompatible configurations increase IT support workloads; software license violations are increasing; firewalls, cookies, junk mail are proliferating; security has become IT's number one priority; and it appears that the increase in IT worker productivity is slowing down. And, as a result, departmental fiefdoms often have emerged, characterized by counterproductive political and budgetary infighting to gain the leverage to implement independent architectures to meet individualized group needs without first considering the overall needs of the organization.
- third party products Throughout the following disclosure the names of several third party products appear. These third party products are included as examples only, and each is intended to represent a class of functionality that can be provided by the method of the present invention, using at least one of a proprietary product and a third party product.
- the present invention utilizes an iterative, customized methodology, which, in response to pre-determined performance improvement and cost reduction business drivers identifies, evaluates and integrates into a server-less office a plurality of IT components that an organization can provide to its staff in order to improve the management of their information resources.
- DMZ virtual private networks
- DMZ demilitarized zone
- a computer or small sub network that sits between a trusted internal network such as a corporate private local area network (LAN), and an untrusted external network, such as the public Internet;
- VPNs virtual private networks
- Firewalls Firewalls
- DMZ demilitarized zone
- LAN corporate private local area network
- untrusted external network such as the public Internet
- SAN storage area network
- the method of the present invention provides an architecture for a server-less office that includes a collection of IT components that are selected, tested and integrated to work together in a pre-defined manner to address pre-determined business needs.
- the business objectives that can be addressed by the present invention include:
- ⁇ provide secure data, data storage, and data transfer
- ⁇ provide management of applications, their licenses, and any compliance requirements.
- the server-less office of the present invention balances the need to centralize and standardize cost-effective services, while still providing flexible, individualized support and customized applications to a wide range of IT users.
- the decision to implement a server-less office has important strategic and tactical implications. Departmental fiefdoms and budgetary powers will be modified, previous project authority will be reassigned, selected functions and services will be centralized, support and development resources will be reassigned, priorities will be assigned globally rather than remotely, and many users will be required to use standard equipment.
- the decision to implement a server-less office imposes a centralized IT framework within which an organization's business objectives and business constraints are satisfied. This framework identifies the elements that will shape the overall architecture. These elements are drawn, in part, from the business objectives and constraints, and in part from the internal requirements imposed by the implementation requirements of a server-less office.
- the framework elements include business objective and business constraints that reflect organizational structure; budgetary and resource authority; centralized administration; centralization of computing, storage, backup, disaster recovery and security; hardware and software standardization; redundancy to avoid single points of failure; interdependent vs. independent prioritization; as well as other elements that are unique to the organization.
- the framework provides the global criteria for the selection of candidate IT components that represent the entire organization's objectives and constraints with regard to anywhere anytime computing support and which drives the selection of candidate IT components for a server-less office architecture.
- the framework is an imposed architecture for centralized computing support and it is provided by the present invention after it has been particularized by an analysis of the business objectives and business constraints of an organization seeking to achieve anywhere anytime computing support rather than its existing support structure.
- the present invention imposes generic business constraints, including the following:
- server-less office of the present invention is distinguishable from the typical IT consolidation effort in which:
- the present invention comprises a set of steps wherein the generic business objectives and business constraints of a server-less office are first particularized to an individual organization by doing a requirements analysis and defining at least one global IT process in terms of global business objective and business constraints for centralized anywhere anytime computer support.
- IT processes are identified that address local requirements in terms of local business objectives and business constraints.
- selection and performance criteria are developed and candidate IT components are rated and ranked for satisfaction of the sections criterion and then tested in combination with other components to create a server-less office. If any integration problems occur for a candidate IT component that cannot be resolved, an available alternative for that IT component is substituted therefore until a best working server-less office architecture results.
- a preferred method includes the steps of: specifying at least one business function to be accomplished at least in part by a server-less office; for each specified at least one business function, defining at least one business objective and at least one business constraint that the server-less office must satisfy; mapping the at least one business objective and business constraint to at least one candidate IT component selection criteria and at least one candidate IT component performance criteria associated with a plurality of candidate IT components of a pre-determined server-less office architecture thereby ; ranking each of the plurality of candidate IT components in terms of satisfaction of the mapped selection criteria; and selecting a server-less office architecture comprising the best ranked candidate IT components that satisfy the mapped to performance criteria.
- the criteria are derived from the business objectives and constraints defined by an organization that must be met by a server-less office architecture.
- the criteria are weighted by corresponding weights that define their relative importance to an organization as derived from the business objectives and business constraints defined by the organization.
- the candidate IT components are then each scored in terms of how well the components satisfy the weighted criteria.
- the component rating for each criterion is multiplied by its corresponding criterion weight and all resulting criteria scores are summed to obtain a total score for the candidate IT component.
- the total component satisfaction score (tcss) for a single option sum of (criterion weight (cw) x criterion satisfaction rating (csr)) for each criterion.
- n tcss ⁇ ov ,.* csr ⁇
- n the number of criterion used to evaluate a candidate IT component
- the components within a process having the highest scores are included in a server-less office architecture and are then tested in the architecture.
- the test results are used to revise the criteria, the criteria weights, and the candidate IT component scores.
- the resulting performance, weights, criteria and score data for each candidate IT component are retained in the criteria database for future reuse.
- the architecting process can be accomplished more quickly by finding comparable candidate IT components to those being used in a new server-less office and reusing mapping, weightings, and performance measurements stored in the database for the comparable candidate IT components. This is also more cost- effective.
- a server-less office architecture includes the following groupings of IT components integrated into a networked infrastructure that provides a secure, highly available and highly accessible server-less office customized to the objective and constraints of an organization and typically comprising: GROUPING I - Central Hosting Facility - By taking infrastructure out of existing offices and relocating it to a hosting facility many benefits accrue that would not be cost effective to implement otherwise. These benefits include:
- a central hosting facility typically contains all the components of a server-less office architecture in a single location.
- a server-less office is typically accessed by a workstation, desktop or laptop that supports a browser over a network (internal user) or the Internet (internal or external user), it can also be accessed by any other device that is capable of supporting the required communication protocols, such as wireless, handheld, and remote access devices.
- an important object is to eliminate computing and, therefore, data and data management, at the user level. Once the processing no longer takes place at the user level, it is possible to provide a lower (and thus cheaper) processing speed to users without impacting their overall productivity.
- SAN Storage Area Network
- the SAN provides many benefits which can include:
- Gbs gigabyte per second
- ⁇ redundant Fibre Channel switches can provide redundant paths from hosts to storage
- Networking - Today networks are the core of many organizations. Critical business functions depend on a fully functioning IT Infrastructure. For many organizations, no network means no ability to generate revenue.
- the server-less office of the present invention provides an architecture that provides connectivity, bandwidth, Quality of Service, and redundancy that meets or exceeds an organizations business objectives and business constraints.
- the server-less office of the present invention can provide security that defined by business objectives and business constraints for security, access control and authentication.
- Servers & Applications - Servers including database, web, messaging and application servers, and the software to support them, are the engines that drive today's businesses.
- the server-less office enables users to design platforms that address all business critical needs from performance and reliability to capacity and scalability.
- Storage - the server-less office enables users to implement enterprise backup to protect key data, and to consolidate servers and storage to make more efficient use of management resources.
- the server-less office enables users to develop a blueprint for a storage infrastructure that puts businesses in control of their storage environment; allowing them to control complexity, uncertainty and risk. With this control, businesses gain efficiency, confidence, effectiveness and - ultimately - business agility.
- a preferred embodiment includes a data backup and recovery IT component to create business continuity that includes: ⁇ A SAN to provide a centralized data storage;
- the data is replicated to the second SAN in real-time provided that a secondary data center exists.
- the replication is at BIT level, which makes it platform-neutral;
- Delivery/Presentation Operating within the server-less office, users can be more productive because the resources and applications they need are readily available and are presented in a consistent manner. Given today's mobile workforce and non-stop needs, being able to present applications regardless of the user's location, type of connection or hardware platform is necessary to maintain efficiency and productivity..
- the server-less office reduces costs and administrative overhead by utilizing thin clients. It is no longer necessary to provide high-power PC's, workstations or laptops for mainstream business applications on the network. Thin clients or terminals provide all the connectivity necessary and reduce costs. Thin clients deployed properly can also enhance security schemes by allowing access only to prescribed resources and preventing users from installing unauthorized applications.
- GROUPING III Communication Facility -
- a variety of media supported communication are feasible using the infrastructure provided by groupings I and H This is especially true of groupware including conferencing, voice over IP VOIP, workflow, document management and other types of collaboration support.
- FIG. 1 illustrates the integration of components into a server-less office that satisfies the business objectives and meets the business constraints.
- FIG. 2 illustrates the decision-making process of the present invention.
- FIG. 3 illustrates an example of a desktop computer architected using the present invention.
- FIG. 4 illustrates an example of a server-less office architected according to the present invention
- FIG. 5 illustrates a generic server-less office architected according to the present invention.
- FIG. 6 illustrates the same configuration of the server-less office components as FIG.5, but substitutes icons for hardware for the generic diagram elements.
- an example of the framework-guided method of the preferred embodiment is provided as applied to a hypothetical set of business objectives and business constraints.
- a set of candidate IT components is selected to meet these objectives and satisfy these constraints.
- a preferred embodiment of the present invention is applied to derive an architecture based on the set of candidate IT components that 'best' meets the business objectives and business constraints.
- FIG. 1 illustrates the interrelationship between the business objectives and business constraints 110, the iterative method 115, and the resulting sever-less office architecture 118 of the present invention.
- the business objectives and business constraints at both the global and local levels are translated into selection and performance criteria by the present invention and used to derive a 'best' server-less office architecture comprising selected, tested, and integrated IT components that have been selected using a weighted scoring of the satisfaction of the criteria by candidate IT components.
- the results are stored in a criteria database 160.
- the architecture of a preferred embodiment always includes a centrally located data center 120, remote and local users 125, thin client workstations with appropriate configurations 130, business relevant applications 135, storage and backup capability 140, access to applications that are not web-enabled 145, connection to the Internet 150, and security functions and capabilities 155.
- the present invention prejudices the selection of candidate IT components to include these types of architectural components but does not favor any particular candidates.
- FIG. 2 illustrates a preferred iterative decision making method of the present invention.
- Business functions 205 are associated with business objectives and business constraints 210.
- the processes within the IT business function 215 need to be identified, and the objectives and constraints 220 defined for each.
- Business objectives represent the state that the business wants to achieve.
- Business constraints represent the restrictions placed on the processes used to achieve the business objective - in terms of things that must be - or can not be - included in the process.
- Each candidate IT component is evaluated with respect to the at least one criterion, and rated on the satisfaction scale to indicate how well the candidate IT component satisfies the at least one criterion.
- the criterion is multiplied by the corresponding weight to obtain a weighted score.
- a candidate IT component may meet several business objectives and constraints for a given function and one of its component processes.
- a total process score is obtained for each candidate IT component for all the objective and constraints that it satisfies as well as other items such as benefits and interoperability. The option with the highest score is selected for that process, see, e.g., in FIG. 3)
- the present invention anticipates using IDENTICAL off-the-shelf IT components to satisfy all similar business objectives and constraints, e.g., for a database. However, this is not always possible because some requirements are unique and may deserve a particular component, e.g., graphics terminals instead of thin clients. If there is more than one candidate IT component that receives a same satisfaction score, there are three preferred ways to choose a candidate IT component. The first way is to revisit the weights and satisfaction ratings, make any appropriate modifications based on new information, and recalculate the options scores. The second way is to consider both component options during the architecture creating step, evaluate how each performs in the architected server-less office and select the one that performs best. The third way is to include both, based on unique objectives that require each and that were not reflected in the original statement of business objectives and business constraints.
- a server-less office architecture comprising the highest rated candidate TT components is then tested 245.
- the criteria used to rate each candidate IT component are derived from the business functions 252 and the processes 254, as well as interoperability requirements, and focus on how well the component integrates with the other components.
- FIG. 3 illustrates architecting a desktop computer 305 that could arise within an IT workstation process.
- FIG. 3 shows two options 310, one where computing power is placed on the server and the other where computing power is placed on the desktop.
- the decision criteria 315 selected by the decision makers are drawn from business and process level objectives and constraints, from candidate IT component level attributes and benefits, and from architecture level interoperability requirements.
- a subjective 5-point satisfaction scale 320 is created for each ALL criteria.
- the scale indicates the range of satisfaction for all criteria, and captures the users perspective of what would be very satisfactory (++) for the criteria, satisfactory (+), ok (0), unsatisfactory (-), and very unsatisfactory (--).
- a satisfaction scale is shown for only one criterion in order to simplify the appearance of the decision making table.
- Each criterion is given a weight 325, ranging from high (10) to low (1), that indicates how important the criterion is to the decision-maker relative to the other criterion.
- the decision-maker takes into consideration the objectives and constraints from the function and process levels, from the component attributes and benefits, and from the architecture interoperability requirements to determine relative importance.
- each candidate TT component is then rated 330 on the satisfaction scale and a weighted satisfaction score is then computed for the candidate IT component. All the ratings for a candidate IT component are added to obtain a total score 340 for the candidate IT component.
- candidate IT component 1 captures 80% of the criteria 350, and is preferable to candidate H component 2 which has a -16 weighted score 340 and captures a negative 17% of the criteria 350.
- candidate IT component 1 has the highest rating, and achieves more than 50% of the ideal rating, and is the component selected by a preferred embodiment (workstations in the example). Subsequent testing of the workstation architecture may lead to a revision of candidate IT component ratings and a different architecture.
- FIG. 4 illustrates an example of a server-less office architected using the method of the present invention.
- This server-less office combines existing technologies into a unified IT environment.
- the present invention anticipates using off-the-shelf IT components. Experience with such components using the present invention to architect a server- less office is included in the sections that follow. Selected candidate IT component are described in the following sections for the server-less office example illustrated in FIG. 4. This example was used to develop the present invention and resulted in the imposition of 3 groups as the organizing paradigm for the server-less office of the present invention. In FIG. 4 the example's server-less office components are organized into these 3 groups. Group/Grouping I - Central Hosting Facility 410
- a central hosting facility provides:
- UPSs uninterruptible power supplies UPSs to regulate and provide uninterruptible power supplies
- multiple central hosting facilities are geographically distant from one another to protect them against local or regional natural or manmade events;
- the multiple central hosting facilities are owned and operated by different companies to provide protection against adverse economic conditions; and ⁇ a second and subsequent central hosting facility can be an exact replica or smaller version of the first or primary central hosting facility. In the latter case, it is important that the second central hosting facility contractually and physically provide for future expansion to become a replica of the primary.
- a central hosting facility typically contains all the components of a server-less office architecture in a single location.
- a central hosting facility is a "federated" environment. Federation is an approach to the coordinated sharing and interchange of computerized information emphasizing partial, controlled sharing of data among autonomous hosting facilities each having at least one database. Office information systems provide a particularly appropriate context for this type of information sharing.
- a federated data sharing architecture is a collection of independent database systems that are united into a loosely coupled federation in order to share information.
- a federation consists of a plurality of database components and a single federal dictionary that describes each component independent database system. The components represent individual users, applications, workstations, or other components in an office information system.
- the federal dictionary is a specialized component shared by each independent component database system that maintains the topology of the federation and controls the entry of new components into the federal dictionary.
- Each component in the federation controls its interactions with other components by means of an export schema and an import schema.
- the export schema specifies the information that a component will share with other components, while the import schema specifies the non-local information that a component wishes to manipulate.
- the federated architecture provides mechanisms for sharing data, for sharing transactions (via message types) for combining information from several components, and for coordinating activities among autonomous components (via negotiation).
- server-less office is typically accessed by a workstation, desktop or laptop that supports a browser over a network (internal user) or the Internet (internal or external user), it can also be accessed by any other device that is capable of supporting the required communication protocols, such as wireless, handheld, and remote access devices.
- an important object is to eliminate computing and, therefore, data and data management, at the user level. Once the processing no longer takes place at the user level, it is possible to provide a lower (and thus cheaper) processing speed to users without impacting their overall productivity.
- Active DirectoryTM 416
- the Microsoft Active DirectoryTM and the Windows® 2000 Server provide the following capabilities:
- the Windows® 2000 Server operating system and the Active DirectoryTM service integrate applications, users, data, and other resources into a unified environment. Integration between Windows 2000 Server and application services allows companies to build more powerful architectures on the platform by taking advantage of available features without adding layers of complexity, lengthening development time, or increasing management costs.
- the Windows 2000 Platform including Windows 2000 Professional, Windows 2000 Server, Windows 2000 Advanced Server, and Windows 2000 Datacenter Server provide. Although customers can deploy Windows 2000 without deploying Active Directory, many of the advanced features of Windows 2000 are only available if Active DirectoryTM is deployed.
- Windows 2000 Server provides organizations with a significantly advanced architecture — made possible with Active Directory. The following capabilities can only be achieved by installing Active Directory:
- IntelliMirror - IntelliMirror® management technologies use policy-based change and configuration management to enable users' data, software, and settings to follow them throughout a distributed computing environment, whether they are online or offline;
- ⁇ delegation of administration can assign responsibility for managing a portion of the network to another user or group;
- ⁇ objects can be administered granularly, such as the ability to reset passwords
- any domain controller can accept and replicate changes to any other domain controller
- ⁇ domains can scale to millions of users
- GC Global Catalog
- Kerberos is the Internet standard security protocol for handling authentication of users or system identity.
- Kerberos allows UNIX clients and servers to have Active DirectoryTM accounts and obtain authentication from a domain controller
- ⁇ services can impersonate users allowing middle-tier service to authenticate to a back-end data server on behalf of the user.
- ⁇ Administrators can create a trust relationship between a Windows 2000 domain controller and a MIT Kerberos V5 realm.
- QoS Quality of Service
- QoS Policy is stored in Active Directory, which provides a secure, replicated, and persistent store.
- ⁇ user authentication is performed using the Internet standard Kerberos protocol.
- SYSVOL System policies and logon scripts stored in the SYSVOL are automatically replicated to all domain controllers.
- SYSVOL is an automatically replicated folder used by domain controllers of the same domain.
- Multimaster replication allows any domain to propagate changes to any other domain controller.
- ⁇ FRS can copy and maintain shared files and folders on multiple servers simultaneously. When changes occur, content is synchronized immediately within sites and by schedule between sites;
- ⁇ secure communications uses authenticated remote procedure call (RPC) with Kerberos encryption.
- RPC remote procedure call
- group policy - group policy is the primary administrative tool for defining and controlling how programs, network resources, and the operating system operate for users and computers in an organization.
- group policy is applied to users or computers on the basis of their membership in sites, domains, or organizational units (OUs);
- ⁇ universal groups can contain members from any domain in the forest and be used throughout the Active DirectoryTM forest;
- ⁇ domain local groups can contain members from any domain in the forest, as well as users from trusted domains outside the forest. Domain local groups can be used anywhere within the domain in which they are defined;
- ⁇ administrators can use nested groups (adding a group as a member of another group), simplifying group management.
- DNS Domain Name System
- ACLs access control lists
- Multimaster zone replication allows DNS updates to be written to any Active Directory-integrated DNS server, and the data will be automatically replicated across all domain controllers;
- ⁇ DNS enables a single replication topology for both Active DirectoryTM and DNS, eliminating manual configuration and maintenance of separate DNS replication topology
- DNS Domain Name System
- DHCP Dynamic Host Configuration Protocol
- Active DirectoryTM is used to store records of authorized DHCP servers and neglect rogue servers. Rogue DHCP servers are unauthorized, and if they do not receive confirmation they will not respond to DHCP requests. DHCP allows proxy registration and updates for earlier versions of Windows using secure update. Routing and Remote Access Service
- Remote access policy and remote access permissions can be set for user accounts using Active Directory.
- Virtual Private Network (VPN) Virtual Private Network
- VPN is the extension of a private network that encompasses logical links across shared or public networks such as the Internet.
- VPN support in Windows 2000 is a combination of tunneling technologies, authentication methods, authorization policies, and encryption technologies to secure traffic across a VPN connection.
- Active DirectoryTM enhances VPNs in Windows 2000 by allowing authorization to be specified by user or group, including domain-local and universal groups.
- IP Security (IPsec) IP Security
- ⁇ IPSec Group Policy can be applied to local computers, organizational units, and domains. Because policies store multiple security actions, one policy may be applied to multiple computers; and
- Telephony API (TAPI)
- the TAPI H.323 TSP uses Active DirectoryTM to perform user-to-IP address resolution.
- the user-to-EP mapping information is stored and refreshed using the Internet Locator Service (ILS) Dynamic Directory, a real-time server component of Active Directory;
- ILS Internet Locator Service
- ⁇ TAPI uses Active DirectoryTM to associate users with particular ILS servers.
- the Telephony container in the User object contains the name of the ILS server for that user's site, which is then queried for the IP address in question. This eliminates the need to manually configure TAPI programs with the locations of the ILS servers; and
- ⁇ TAPI 3.0 uses the security features of Active DirectoryTM and the Lightweight Directory Access Protocol (LDAP) to provide for secure conferencing with NetMeeting® software over the Internet.
- Each Active DirectoryTM object has an Access Control List (ACL) specifying object- access rights on a user or group basis.
- ACL Access Control List
- conference creators can specify who can enumerate and view conference announcements.
- ⁇ disk quotas can be defined based on user identities in Active Directory.
- ⁇ file shares can be published in Active DirectoryTM for simplified browsing of network resources.
- ⁇ DFS allows administrators to organize disjointed and distributed shares into a single hierarchy, a benefit that provides numerous advantages such as letting users easily find the closest printer to their location;
- ⁇ DFS uses Active DirectoryTM to automatically redirect requests to the nearest available server.
- EFS Used in conjunction with Certificate Services, EFS enables auto-enrollment, publication of public keys in Active DirectoryTM for easy retrieval and publication, and the Certificate Revocation List in Active DirectoryTM for validating certificates.
- ⁇ group policy-recovery agent provides domain-wide consistency. Computers that are joined to the domain cannot bypass recovery policy;
- ⁇ universal groups can contain members from any domain in the forest and be used throughout the Active DirectoryTM forest;
- ⁇ domain local groups can contain members from any domain in the forest, as well as users from trusted domains outside the forest. Domain local groups can be used anywhere within the domain in which they are defined;
- ⁇ administrators can use nested groups to add a group as a member of another group, simplifying group management.
- ⁇ printers can be automatically published in Active Directory
- ⁇ users can search for printers by an attribute such as a color printer
- IIS Internet Information Services
- IIS supports advanced authentication methods including basic, digest, integrated windows, certificates, and FTP basic;
- IIS enables directory service mapping of user certificates to Active DirectoryTM user accounts
- ⁇ US provides the ability to control Web resource access using Active DirectoryTM security groups.
- Smart cards are a tamper-resistant and portable way to provide security capabilities for tasks such as client authentication, logging on to a Windows 2000 domain, code signing and securing e-mail. In an environment, smart card users have a single sign-on to the domain. Terminal Services
- a Terminal Services profile can be created for each user in Active Directory. Administrators can then create user profiles tailored to the Terminal Services environment. The Terminal Services profile can be used to restrict access to applications by removing them from the user's Start menu. Administrators can also create and store network connections to printers and other resources for use during user sessions. Servers 412 An organization can require separate servers to address unique purposes by a business objective that recites this requirement. Some examples of dedicated servers include: Microsoft Certificate Server
- ⁇ use certificate templates to enforce credential checks on users during certificate enrollment, automatically generate certificate subject name, and add a predefined list of certificate extensions to the issued certificate, which reduces the amount of information a requestor has to provide.
- Microsoft Directory Synchronization Server synchronizes information from NetWare bindery or NDS to Active Directory. Search Assistant
- Microsoft Exchange 2000 ServerTM relies heavily on Windows 2000 in three main areas: the directory, transport and name resolution. For additional information on integrating Microsoft Exchange 2000 and Windows 2000 see the Microsoft Exchange Server Web site. Networks 418
- VPN technology allows companies to connect branch offices or other sites over a public network (such as the Internet), while maintaining secure communications.
- SAN storage is externalized; it can be easily accessed through alternate data paths, (clusters) eliminating single points of failure
- SAN Storage Area Network
- ⁇ Fault Tolerance - Redundant drive enclosure power supplies, blowers, controllers, cache battery backup, distributed hot spare disks and a multi ⁇ level V-RAED architecture ensures fault tolerance against system outages and data loss.
- AD Active Directory
- IM Instant Messaging, offering secure IM services within a company or business to business
- the present invention provides this functionality or interfaces with a typical third party component, such as the Microsoft Exchange 2000 ServerTM, which offers capabilities such as the following: Exchange 2000 ServerTM 420
- Cisco Security Agent offers capabilities such as the following: Cisco Security Agent provides threat protection for server and desktop computing systems, also known as endpoints. It identifies and prevents malicious behavior, thereby eliminating known and unknown (“Day Zero") security risks and helping to reduce operational costs.
- the Cisco Security Agent aggregates and extends multiple endpoint security functions by providing host intrusion prevention, distributed firewall capabilities, malicious mobile code protection, operating system integrity assurance, and audit log consolidation, all within a single product. And because Cisco Security Agent analyzes behavior rather than relying on signature matching, it provides robust protection with reduced operational costs. Virus Protection 452
- Trend Micro offers capabilities such as the following: InterScanrTM Messaging Security Suite
- Trend MicroTM InterScanrTM Messaging Security Suite is an extensible, policy-based messaging security platform for the gateway that addresses mixed-threat attacks by delivering coordinated policies for antivirus, anti-spam, and content filtering.
- InterScanrTM Messaging Security Suite helps IT managers minimize time- consuming installation and configuration for multiple messaging security systems. Its extensible platform approach to messaging security reduces total cost of ownership and provides enhanced protection from the multiple, aggressive tactics employed by mixed-threat attacks to infiltrate network defenses.
- InterScanrTM Messaging Security Suite When deployed with Trend MicroTM Control ManagerTM, InterScanrTM Messaging Security Suite provides enterprise-wide visibility of the messaging security platform, allowing centralized reporting and configuration, pattern file and scan engine updates, and management of Trend MicroTM Outbreak Prevention Services — all accessible via remote administration Spam Prevention (456)
- Trend MicroTM Spam Prevention is a high-performance anti-spam application designed to protect the enterprise from spam at the gateway. It is integrated with the award-winning Trend MicroTM InterScanrTM Messaging Security Suite, which provides comprehensive messaging security - antivirus, content filtering, and anti- spam — in one easy-to-manage platform. Spam Prevention is designed to defeat spam using patent-pending heuristics rules technology — a technology that offers more adaptable and "future-proof protection against the ever-changing tactics of spammers. Policy-based configuration options allow administrators to assign variable catch rate sensitivities based on spam category and user groups, along with flexible Filter Actions for appropriate message disposition options. Spam Prevention can delete, quarantine, tag and more based on spam likelihood level.
- Spam Prevention can also route suspicious "graymail" messages to mail server-side folders for end user review and create "approved sender” lists both at the gateway and the mail server, to help administrators improve the accuracy and effectiveness of spam filtering over time and to provide more customized filtering for each user.
- ScanMail for Microsoft Exchange
- ScanMailTM for MicrosoftTM Exchange provides real-time detection and removal of viruses from email and attachments, before they reach the desktop. It is easy to deploy and configure via either a Web or Windows-based management console. Coupled with the ScanMailTM eManagerTM plug-in, it provides comprehensive content filtering to help block non-business email and filter inappropriate content in emails and attachments. ScanMailTM is fully integrated with the latest Microsoft APIs and supports Microsoft Exchange 5.5, Microsoft Exchange 2000, and NOW Exchange 2003 servers. ServerProtect for Microsoft Windows/Novell NetWare
- ServerProtectTM provides comprehensive antivirus scanning for servers, detecting and removing viruses from files and compressed files in real time — before they reach the end user. Administrators can use a Windows-based console for centralized management of virus outbreaks, virus scanning, virus pattern file updates, notifications, and remote installation. ServerProtectTM supports MicrosoftTM WindowsTM Server 2003, Microsoft Windows 2000, Microsoft Windows NTTM 4, and NovellTM NetWareTM servers. OfficeScan Corporate Edition
- Trend MicroTM OfficeScanTM Corporate Edition is an integrated client/server security system designed to protect against the daily threats of file-based and network viruses as well as secure access from intruders, Spyware, and other threats.
- Security policy is enforced with Cisco network access devices that support Network Admissions Control (NAC), or through Network Virus Wall. Its powerful Web-based management console gives administrators transparent access to every desktop and mobile client on the network for coordinated, automatic deployment of security policies and software updates.
- RSA Security and Microsoft® will make it possible for customers to positively identify users before granting them access to valuable corporate resources accessed through Windows® desktops and networks — while simultaneously delivering a simplified and consistent user login experience.
- RSA SecurlD for Microsoft® Windows® software helps to provide greater security than weak, static passwords. By combining something the user knows (i.e., a secret PESf) with something the user possesses (i.e., a unique RSA SecurlD token that generates a one-time password every 60 seconds), Microsoft® Windows® customers gain an effective way to secure user access to valuable company resources.
- a secret PESf i.e., a secret PESf
- a unique RSA SecurlD token that generates a one-time password every 60 seconds
- Cisco PIX Firewall 442 helps to provide the global auditing capabilities that can help companies meet these challenging requirements and avoid the hefty fines and potential legal costs that can result from non-compliance.
- Cisco PIX Firewall offers capabilities such as the following:
- Cisco PIX Security Appliance plays a vital role in the Cisco strategy to use integrated security to build a S elf -Defending Network. From compact "plug-and-play" appliances for small and home offices to modular carrier-class gigabit appliances for enterprise and service-provider environments, Cisco PIX Security Appliances provide robust, enterprise-class integrated network security services to create a strong multilayered defense for fast- changing network environments.
- Security and networking services include virtual LAN (802. Iq tag) support; Open Shortest Path First dynamic routing; Network Address Translation; Port Address Translation; content filtering (Java/ ActiveX); URL filtering; authentication, authorization, and accounting (RADIUS/TACACS+) integration; support for leading X.509 public key infrastructure systems; and Dynamic Host Configuration Protocol client, server, relay, and Point-to-Point Protocol over Ethernet support.
- Cisco PIX Security Appliances support various remote access VPN clients including Cisco software VPN clients (available on many platforms including Microsoft Windows, Linux, Solaris, and Mac OS X), Cisco hardware VPN clients (such as the Cisco PIX 501 and PIX 506E security appliances, VPN 3002 hardware client, and Cisco 800 or 1700 series routers), as well as Point-to-Point Tunneling Protocol and Layer 2 Tunneling Protocol clients in Microsoft Windows operating systems.
- Cisco PIX Security Appliances encrypt data using 56-bit Data Encryption Standard (DES), 168-bit Triple DES (3DES), or up to 256-bit Advanced Encryption Standard (AES) encryption.
- DES Data Encryption Standard
- 3DES 168-bit Triple DES
- AES Advanced Encryption Standard
- Many Cisco PIX Security Appliance models support modular upgrades and have integrated hardware VPN acceleration capabilities, delivering highly scalable, high-performance VPN services.
- Cisco PIX Security Appliances also provide advanced security services for multimedia and voice standards, including H.323 Version 4, Session Initiation Protocol, Cisco Skinny Client Control Protocol, Real Time Streaming Protocol, and Media Gateway Control Protocol, allowing businesses to securely take advantage of the many benefits that converged data, voice, and video networks deliver.
- VPN Concentrators 450 are also provide advanced security services for multimedia and voice standards, including H.323 Version 4, Session Initiation Protocol, Cisco Skinny Client Control Protocol, Real Time Streaming Protocol, and Media Gateway Control Protocol, allowing businesses to securely take advantage of the many benefits that converged data, voice, and video networks deliver.
- Cisco VPN Concentrators offers capabilities such as the following:
- Cisco VPN 3000 Series Concentrators are purpose-built, remote access virtual private network (VPN) platforms that incorporate high availability, high performance, and scalability with the most advanced encryption and authentication techniques available today.
- Supported connectivity mechanisms include IP security (IPSec), Point-to-Point Tunneling Protocol (PPTP), Layer 2 Tunneling Protocol (L2TP) over IPSec, and Cisco WebVPN (clientless secure sockets layer [SSL] browser-based connectivity).
- IP security IP security
- PPTP Point-to-Point Tunneling Protocol
- L2TP Layer 2 Tunneling Protocol
- SSL secure sockets layer
- this scalable platform offers field-swappable and customer-upgradeable components. These components, called Scalable Encryption Processing (SEP) modules, enable users to easily add capacity and throughput.
- SEP Scalable Encryption Processing
- the Cisco VPN Client software is provided with all versions of the Cisco VPN 3000 Series, and it includes unlimited distribution licensing. WebVPN is also provided with no additional licensing fees and enables access to critical enterprise applications including Web pages, file shares, e-mail, and Transmission Control Protocol (TCP)-based applications such as Telnet and Secure Shell Protocol (SSH). Granular access control and logging is available for WebVPN users.
- TCP Transmission Control Protocol
- SSH Secure Shell Protocol
- Cisco Wireless LAN offers capabilities such as the following:
- the CiscoWorks WLSE is a centralized, systems-level architecture for managing the entire Cisco Aironet wireless LAN (WLAN) infrastructure.
- the advanced radio frequency (RF) and device management features of the CiscoWorks WLSE simplify the everyday operation of WLANs, ensure smooth deployment, enhance security, and maximize network availability, while reducing deployment and operating expense.
- the CiscoWorks WLSE enables administrators to detect, locate, and mitigate rogue access points and RF interference.
- the assisted site survey feature automates the previously manual, expensive, and time consuming process of determining optimal access point settings including transmit power and channel selection.
- the CiscoWorks WLSE automatically configures access points and bridges, assures the consistent application of security policies, and proactively monitors faults and performance.
- the CiscoWorks WLSE is a core component of the Cisco Structured Wireless-Aware Network. Benefits, which add to the weight of this IT component include ⁇
- ⁇ enhances security by detecting, locating and mitigating rogue access points, by ensuring consistent application of security policies, and by monitoring 802. IX performance;
- Cisco Network Intrusion Detection offers capabilities such as the following:
- the Cisco Intrusion Detection System (IDS) 4200 Sensors are members of the market-leading Cisco IDS Series of products that provide Pervasive Protection throughout the network. They are purpose-built, high-performance network security "appliances" that protect against unauthorized, malicious activity traversing the network, such as attacks by hackers. Cisco IDS sensors analyze traffic in real time, enabling users to quickly respond to security breaches.
- C-CRT The Cisco Countermeasures Research Team
- C-CRT uses a combination of highly innovative and sophisticated detection techniques, including stateful pattern recognition, protocol parsing, heuristic detection, and anomaly detection that provide comprehensive protection from a variety of both known and unknown cyber threats.
- the Cisco T.A.M.E Threat Analysis Micro-Engine
- the Cisco IDS Active Response System delivers unparalleled protection by controlling other systems, such as routers, firewalls, and switches, to terminate unauthorized sessions.
- the installation and management of these turnkey appliances is easy using a wide array of management systems, including a Web user interface, a command-line interface (CLI), or Cisco's highly scalable CiscoWorks VPN/Security Management systems (VMS).
- CLI command-line interface
- VMS Cisco's highly scalable CiscoWorks VPN/Security Management systems
- the Cisco IDS 4200 Series of appliance sensors includes four products: the Cisco IDS 4215, IDS 4235, IDS 4250 and the IDS 4250-XL.
- the entire Cisco IDS appliance portfolio delivers a broad range of systems that allow easy integration into many different environments, including enterprise and service provider environments.
- Each appliance sensor addresses the bandwidth requirements at one of a variety of performance marks, from 80 Mbps to gigabit. Additionally, a variety of interface options are supported, including the provision of multiple sniffing interfaces and copper/fiber interface options.
- Cisco IDS Sensor Software for Cisco IDS Sensors delivers the latest in innovative intrusion detection system (IDS) features, including Active Update signature distribution mechanisms, customizable signature language, extensions to the Active Response capabilities, and secure administration.
- IDS intrusion detection system
- Cisco IDS Sensor Software for Cisco IDS Sensors is a component of the industry-leading Cisco Intrusion Detection System, which provides customers with unmatched intrusion protection technology through the Cisco Active Defense System.
- the integrated hardware and software delivers best-of-breed protection for both perimeter and internal resources.
- the CiscoWorks Management Center for IDS Sensors is management software for the configuration of network IDS, switch IDS sensors and IDS network modules for routers. This tool is a featured component of the VPN/Security Management system (VMS).
- VMS VPN/Security Management system
- the software allows you manage multiple sensors concurrently by creating sensor groups and thereby saving time for the administrator.
- the software also provides an easy to use Web interface and wizards to reduce the learning time.
- the Management Center for EDS Sensors also delivers the capability to create new signatures so that administrators can more accurately detect threats, and the capability to edit signatures to reduce false positives.
- the Cisco V3PN product offers capabilities such as the following.
- V3PN Voice and video enabled VPN
- IPSec Voice and video enabled VPN
- AWED AWED architecture
- Integrating these two network systems delivers cost-effective, flexible wide-area connectivity, while providing a network infrastructure that enables the latest converged network applications like E? Telephony and Video.
- VPNs Virtual Private Networks
- V3PN voice and video- enabled VPNs
- V3PN systems integrate cost-effective, secure connectivity provided by site-to-site VPNs with the Cisco AVVEO architecture for delivering converged voice, video, and data over EP networks.
- V3PNs deliver cost-effective, flexible wide-area connectivity, while providing a network infrastructure that supports the latest converged network applications like EP telephony and video.
- V3PN provides a VPN infrastructure capable of transporting converged voice, video, and data traffic across a secure IPSec network.
- Cisco VPN platforms accommodate the diverse network topologies and traffic types characteristic of multiservice IPSec VPNs, and thereby ensure the VPN infrastructure does not break multiservice applications deployed now or in the future;
- end-to-end network architecture Cisco provides products for all aspects of multiservice VPNs, from Cisco VPN routers with Cisco IOS® software to Cisco CallManager and IP Phones. Furthermore, Cisco provides an overarching deployment model for these products through the Cisco AVVID architecture for converged networking and the SAFE Blueprint for VPNs. These deployment models ensure a secure, interoperable, reliable network system with end-to-end product support;
- Cisco network security systems provide more than encryption of multiservice traffic across the VPN; they also ensure interoperation with Cisco PIX Firewalls for perimeter security and Cisco Intrusion Detection System for network attack protection; and
- Service providers deliver the bandwidth over which VPNs operate. Through the Cisco Powered Network program, enterprises can select service providers who deliver the low-latency network fabric critical to high quality voice and video across the VPN, or select fully managed V3PN services.
- Cisco IP Communications a comprehensive system of powerful, enterprise- class systems including IP telephony, unified communications, IP video and audio conferencing, and customer contact — helps organizations realize business gains by improving operational efficiencies, increasing organizational productivity, and enhancing customer satisfaction.
- Cisco CallManager an integral component of the Cisco IP Communications system — is the software-based call-processing component of the Cisco enterprise IP telephony system; it is enabled by Cisco AVVID (Architecture for Voice, Video and Integrated Data).
- Cisco CallManager software extends enterprise telephony features and capabilities to packet telephony network devices such as IP phones, media processing devices, voice-over-IP (VoIP) gateways, and multimedia applications. Additional data, voice, and video services such as unified messaging, multimedia conferencing, collaborative contact centers, and interactive multimedia response systems interact with the IP telephony system through Cisco CallManager open telephony application programming interfaces (APIs). Cisco CallManager is installed on the Cisco Media Convergence Servers (MCSs) and selected third-party servers.
- MCSs Cisco Media Convergence Servers
- Cisco CallManager software is shipped with a suite of integrated voice applications and utilities, including the Cisco CallManager Attendant Console — a software-only manual attendant console; a software-only ad-hoc conferencing application; the Bulk Administration Tool (BAT); the CDR Analysis and Reporting (CAR) tool; the Real Time Monitoring Tool (RTMT); a simple, low-density Cisco CallManager Auto Attendant (CM-AA); the Tool for Auto-Registered Phones Support (TAPS); and the IP Manager Assistant (IPMA) application.
- BAT Bulk Administration Tool
- CAR CDR Analysis and Reporting
- RTMT Real Time Monitoring Tool
- CM-AA simple, low-density Cisco CallManager Auto Attendant
- TAPS Tool for Auto-Registered Phones Support
- IPMA IP Manager Assistant
- Cisco CallManager Version 4.0 provides a scalable, distributable, and highly available enterprise IP telephony call-processing system.
- Multiple Cisco CallManager servers are clustered and managed as a single entity.
- Clustering multiple call- processing servers on an IP network is a unique capability in the industry and highlights the leading architecture provided by Cisco AVVID.
- Cisco CallManager clustering yields scalability of from 1 to 30,000 IP phones per cluster, load balancing, and call-processing service redundancy. By interlinking multiple clusters, system capacity can be increased up to 1 million users in a 100+ site system.
- Clustering aggregates the power of multiple, distributed Cisco CallManagers, enhancing the scalability and accessibility of the servers to phones, gateways, and applications. Triple call-processing server redundancy improves overall system availability.
- CAC Call admission control
- QoS voice quality of service
- PSTN public switched telephone network
- a Web-browsable interface to the configuration database enables remote device and system configuration. HTML-based online help is available for users and administrators.
- the enhancements provided by Version 4.0 offer improved security, interoperability, functionality, supportability, and productivity as well as the new Video Telephony function.
- CallManager 4.0 has many security features that give CallManager users the ability to verify identity of the devices or servers that they communicate, ensure the integrity of data it is receiving, and provide privacy of communications via encryption. Improvements in the CallManager Q.SIG signaling interface expands the range of functions with which Cisco CallManager can connect to other Q.SIG compatible systems. Enhancements to the CallManager APIs (AXL, JTAPI, TSP) provide customers and third party vendors increased ability to develop improved applications that can be integrated with CallManager and IP Phones.
- CallManager 4.0 introduces Video Telephony that includes support for SCCP and H.323 video and gives the same administration and user experience for voice and video. Common system administration and call behavior with existing audio phone calls help truly merge voice and video. New CallManager 4.0 features like Multiple calls per lines, call join, direct transfer, immediate divert, and ad-hoc conference list and drop any member improve the usability of the phones. Unity - Unified Communications 472
- Cisco Unity is a powerful Unified Communications system that provides advanced, convergence-based communication services on a platform that offers the utmost in reliability, scalability, and performance.
- Cisco Unity integrates with the desktop applications — such as Microsoft Outlook and Lotus Notes — that you use everyday to improve communications, boost productivity, and enhance customer service capabilities across your organization.
- Microsoft Outlook Microsoft Outlook
- Lotus Notes you use everyday to improve communications, boost productivity, and enhance customer service capabilities across your organization.
- Cisco Unity you can listen to your e-mail over the telephone, check voice messages from the Internet, and (when integrated with a supported third-party fax server) forward faxes to any local fax machine — increasing organizational productivity while improving customer service and responsiveness.
- Cisco Unity complements the full range of Cisco IP- based voice systems — including Cisco CallManager, Cisco IP Contact Center, and Cisco Personal Assistant.
- Cisco Personal Assistant is a new-world telephony application that operates with Cisco Unity and streamlines communications by helping users manage how and where they want to be reached.
- Cisco Unity is a powerful Unified Communications system that provides advanced, convergence-based communication services on a platform that offers the utmost in reliability, scalability, and performance.
- Cisco Unity integrates with the desktop applications — such as Microsoft Outlook and Lotus Notes — that you use everyday to improve communications, boost productivity, and enhance customer service capabilities across your organization.
- Microsoft Outlook and Lotus Notes
- Cisco Unity you can listen to your e-mail over the telephone, check voice messages from the Internet, and (when integrated with a supported third-party fax server) forward faxes to any local fax machine — increasing organizational productivity while improving customer service and responsiveness Meeting Place - Media conferencing 476
- the Cisco Meeting Place offers capabilities such as the following:
- Cisco MeetingPlace provides a fully integrated rich-media conferencing system, including voice and Web conferencing capabilities. Residing "on-network" - behind the firewall on internal voice and data networks - Cisco MeetingPlace offers unmatched security, reliability, scalability, application integration, and cost- efficiency. Offering significant cost savings over traditional service bureau systems, Cisco MeetingPlace - part of the Cisco IP Communications system - takes advantage of existing corporate IP and circuit-switched public switched telephone network (PSTN) voice and data networks to greatly reduce or eliminate transport tolls and recurring conferencing charges.
- PSTN public switched telephone network
- Cisco® MeetingPlace 8106 systems integrate voice, video, and Web conferencing, and enterprise groupware applications for secure on-network, rich- media conferencing. Cisco MeetingPlace 8106 makes these remote meetings as natural and effective as face-to-face meetings.
- Cisco MeetingPlace offers companies a robust voice- and Web-conferencing platform that they can integrate with their private networks. With carrier-grade hardware and advanced system software, Cisco MeetingPlace 8106 delivers the scalability, reliability, simplified administration, security, and cost- effectiveness that IT organizations require.
- Cisco MeetingPlace 8106 architecture provides for additional growth and scalability. Users can support large deployments with a single system, while global and distributed servers connect through Cisco MeetingPlace 8106 networking capabilities. In addition, high reliability and component redundancies help ensure that Cisco MeetingPlace 8106 is consistently available for critical communications. Administration becomes more streamlined with automated system tools, comprehensive reports, and a high degree of configurability.
- Cisco MeetingPlace 8106 offers a highly secure conferencing system. With application security and segmented Web conferencing, users can ensure that their meetings remain private. As an on-network deployment, Cisco MeetingPlace 8106 works with — not around — corporate network security policies. Industry-leading Innovations
- Cisco MeetingPlace Web conferencing application for sharing presentations, applications, or desktop sharing.
- Cisco MeetingPlace has been successfully deployed and used as both an on-premise system and an outsourced service. Large enterprises use Cisco MeetingPlace to share content for training, sales demonstrations, customer support, and everyday business meetings and communications. Voice Conferencing
- ⁇ speaker ID Identifies who is speaking at any given moment
- participant lists Lists all participants attending the meeting
- ⁇ meeting controls Allows meeting organizer to mute/un-mute, change speaking ability, record, lock, eject, and end meeting; ⁇ find participant: Enables meeting organizer to search for users by calling a sequence of main phone, alternate phone, and pager numbers;
- ⁇ meeting message Users can prerecord messages for other participants to hear before entering the meeting;
- ⁇ multi-language support Personal voice prompt options for English, British English, Japanese, and French-Canadian.
- H application/desktop sharing Users can share any application or their desktop from Windows (browser or T, 120) or UNIX (T.120); a plus features of audio conference meeting console; B recording and playback: Record and play back meeting recording from your desktop via stream or download;
- Organizers can allow any user to take control of. any desktop, application, document, or Website;
- Cisco Me&tingPlace supports encrypted Web pages and Web conferencing traffic via HTTPS and SSL protocols;
- Meeting organizer can specify announced entry and departure, require passwords, lock the meeting, and eject unwanted attendees.
- Configuration System options to set usage, scheduling, access, and meeting preference parameters.
- ⁇ reports Standard configuration, usage, and billing reports. Detailed raw data reports to track meeting and participant details;
- system manager agents Meeting alerts via e-mail to users and system managers;
- ⁇ system status Remote management and monitoring via Simple Network Management Protocol (SNMP) traps. Alarm out-dials to phone or pager; and
- SNMP Simple Network Management Protocol
- TANDBERG videoconferencing enables users to accomplish more without leaving the office. It's as fast as a phone call and just as easy to connect. It offers all the advantages of a face-to-face meeting, but much easier to arrange.
- TANDBERG videoconferencing is allowing people to connect and share information faster and more efficiently than with any other technology. Meetings are more engaging. Conferences are more valuable. Conversations are more enlightening. Its technology that is so natural you will forget you're not actually there.
- the present invention will provides this functionality or interfaces with a typical third party component, such as the Tandberg videoconferencing system, which offers capabilities such as the following:
- ⁇ PBX functions to call to, conference in and forward to H.323 endpoints (H.323 systems cannot initiate these services).
- FIG. 5 shows a basic outline of one possible configuration of a server-less office.
- a user could access the server-less office via the internet 505 or via an internal network 510 where a router 515 would coordinate the access with the firewall 520.
- a router 522 inside the firewall would direct the communication to the proper component, which could include Active DirectoryTM services 525, web servers 530, load balancing servers 535, exchange servers 540, application servers 545, database servers 550 or file servers 555.
- the central server 560 coordinates access to the network storage devices and interacts through switches 565 to coordinate support for real time backup via the backup server 570 through the network storage router 575 to the tape backup devices 580.
- FIG. 6 shows the same basic outline of one possible configuration of a server- less office that is illustrated in FIG. 5, substituting icons of the specified hardware for the generic diagram elements, and using the same element numbering scheme to identify the figure components.
- a user could access the server-less office via the internet 605 or via an internal network 610 where a router 615 would coordinate the access with the firewall 620.
- a router 622 inside the firewall would direct the communication to the proper component, which could include Active DirectoryTM services 625, web servers 630, load balancing servers 635, exchange servers 640, application servers 645, database servers 650 or file servers 655.
- the central server 660 coordinates access to the network storage devices and interacts through switches 665 to coordinate support for real time backup via the backup server 670 through the network storage router 675 to the tape backup devices 680.
- a selection criteria may be 'availability' of a candidate IT component and satisfaction of the criteria may require going out to a vendor/supplier to determine actual availability in terms of time to deliver.
- volume discounts may be available for certain items, such as thin clients, and again such satisfaction of cost criteria may require vendor interaction with the method of the present invention. Both of these functions would require the present invention to interface to a sourcing system rather than directly interfacing with a vendor.
Abstract
Description
Claims
Priority Applications (5)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
GB0625808A GB2431024A (en) | 2004-06-28 | 2005-06-28 | Method for a Server-Less Office Architecture |
JP2007519315A JP2008509454A (en) | 2004-06-28 | 2005-06-28 | How to define a serverless office architecture |
CA002571273A CA2571273A1 (en) | 2004-06-28 | 2005-06-28 | Method for a server-less office architecture |
EP05762783A EP1769303A4 (en) | 2004-06-28 | 2005-06-28 | Method for a server-less office architecture |
IL180191A IL180191A0 (en) | 2004-06-28 | 2006-12-19 | Method for a server-less office architecture |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US58280204P | 2004-06-28 | 2004-06-28 | |
US60/582,802 | 2004-06-28 |
Publications (2)
Publication Number | Publication Date |
---|---|
WO2006004624A2 true WO2006004624A2 (en) | 2006-01-12 |
WO2006004624A3 WO2006004624A3 (en) | 2009-04-30 |
Family
ID=35783282
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/US2005/022652 WO2006004624A2 (en) | 2004-06-28 | 2005-06-28 | Method for a server-less office architecture |
Country Status (8)
Country | Link |
---|---|
US (1) | US20050288961A1 (en) |
EP (1) | EP1769303A4 (en) |
JP (1) | JP2008509454A (en) |
CN (1) | CN101432767A (en) |
CA (1) | CA2571273A1 (en) |
IL (1) | IL180191A0 (en) |
TW (1) | TW200617737A (en) |
WO (1) | WO2006004624A2 (en) |
Families Citing this family (104)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US8006280B1 (en) | 2001-12-12 | 2011-08-23 | Hildebrand Hal S | Security system for generating keys from access rules in a decentralized manner and methods therefor |
US7921450B1 (en) | 2001-12-12 | 2011-04-05 | Klimenty Vainstein | Security system using indirect key generation from access rules and methods therefor |
US10033700B2 (en) | 2001-12-12 | 2018-07-24 | Intellectual Ventures I Llc | Dynamic evaluation of access rights |
US7565683B1 (en) | 2001-12-12 | 2009-07-21 | Weiqing Huang | Method and system for implementing changes to security policies in a distributed security system |
US7260555B2 (en) | 2001-12-12 | 2007-08-21 | Guardian Data Storage, Llc | Method and architecture for providing pervasive security to digital assets |
US7178033B1 (en) | 2001-12-12 | 2007-02-13 | Pss Systems, Inc. | Method and apparatus for securing digital assets |
US7921284B1 (en) | 2001-12-12 | 2011-04-05 | Gary Mark Kinghorn | Method and system for protecting electronic data in enterprise environment |
US10360545B2 (en) | 2001-12-12 | 2019-07-23 | Guardian Data Storage, Llc | Method and apparatus for accessing secured electronic data off-line |
US7783765B2 (en) | 2001-12-12 | 2010-08-24 | Hildebrand Hal S | System and method for providing distributed access control to secured documents |
US8065713B1 (en) | 2001-12-12 | 2011-11-22 | Klimenty Vainstein | System and method for providing multi-location access management to secured items |
US7681034B1 (en) | 2001-12-12 | 2010-03-16 | Chang-Ping Lee | Method and apparatus for securing electronic data |
US7380120B1 (en) | 2001-12-12 | 2008-05-27 | Guardian Data Storage, Llc | Secured data format for access control |
USRE41546E1 (en) | 2001-12-12 | 2010-08-17 | Klimenty Vainstein | Method and system for managing security tiers |
US7921288B1 (en) | 2001-12-12 | 2011-04-05 | Hildebrand Hal S | System and method for providing different levels of key security for controlling access to secured items |
US7930756B1 (en) | 2001-12-12 | 2011-04-19 | Crocker Steven Toye | Multi-level cryptographic transformations for securing digital assets |
US7950066B1 (en) | 2001-12-21 | 2011-05-24 | Guardian Data Storage, Llc | Method and system for restricting use of a clipboard application |
US8176334B2 (en) | 2002-09-30 | 2012-05-08 | Guardian Data Storage, Llc | Document security system that permits external users to gain access to secured files |
US8613102B2 (en) | 2004-03-30 | 2013-12-17 | Intellectual Ventures I Llc | Method and system for providing document retention using cryptography |
US7512810B1 (en) | 2002-09-11 | 2009-03-31 | Guardian Data Storage Llc | Method and system for protecting encrypted files transmitted over a network |
US7836310B1 (en) | 2002-11-01 | 2010-11-16 | Yevgeniy Gutnik | Security system that uses indirect password-based encryption |
US7890990B1 (en) | 2002-12-20 | 2011-02-15 | Klimenty Vainstein | Security system with staging capabilities |
US8707034B1 (en) | 2003-05-30 | 2014-04-22 | Intellectual Ventures I Llc | Method and system for using remote headers to secure electronic files |
US8127366B2 (en) | 2003-09-30 | 2012-02-28 | Guardian Data Storage, Llc | Method and apparatus for transitioning between states of security policies used to secure electronic documents |
US7703140B2 (en) | 2003-09-30 | 2010-04-20 | Guardian Data Storage, Llc | Method and system for securing digital assets using process-driven security policies |
US8782654B2 (en) | 2004-03-13 | 2014-07-15 | Adaptive Computing Enterprises, Inc. | Co-allocating a reservation spanning different compute resources types |
US8238536B1 (en) | 2004-04-06 | 2012-08-07 | West Corporation | Call redirect via centralized bridges |
US20070266388A1 (en) | 2004-06-18 | 2007-11-15 | Cluster Resources, Inc. | System and method for providing advanced reservations in a compute environment |
US7707427B1 (en) | 2004-07-19 | 2010-04-27 | Michael Frederick Kenrich | Multi-level file digests |
US8176490B1 (en) | 2004-08-20 | 2012-05-08 | Adaptive Computing Enterprises, Inc. | System and method of interfacing a workload manager and scheduler with an identity manager |
CA2586763C (en) | 2004-11-08 | 2013-12-17 | Cluster Resources, Inc. | System and method of providing system jobs within a compute environment |
US8863143B2 (en) | 2006-03-16 | 2014-10-14 | Adaptive Computing Enterprises, Inc. | System and method for managing a hybrid compute environment |
US9075657B2 (en) | 2005-04-07 | 2015-07-07 | Adaptive Computing Enterprises, Inc. | On-demand access to compute resources |
US9015324B2 (en) | 2005-03-16 | 2015-04-21 | Adaptive Computing Enterprises, Inc. | System and method of brokering cloud computing resources |
US9231886B2 (en) | 2005-03-16 | 2016-01-05 | Adaptive Computing Enterprises, Inc. | Simple integration of an on-demand compute environment |
WO2006112980A2 (en) | 2005-03-16 | 2006-10-26 | Cluster Resources, Inc. | Reserving resources in an on-demand compute environment from a local compute environment |
US8782120B2 (en) | 2005-04-07 | 2014-07-15 | Adaptive Computing Enterprises, Inc. | Elastic management of compute resources between a web server and an on-demand compute environment |
US7757275B2 (en) * | 2005-06-15 | 2010-07-13 | Microsoft Corporation | One time password integration with Kerberos |
US7805416B1 (en) * | 2005-09-30 | 2010-09-28 | Emc Corporation | File system query and method of use |
US8739143B2 (en) * | 2007-01-31 | 2014-05-27 | Hewlett-Packard Development Company, L.P. | Profiling metrics for computer programs |
US8863285B2 (en) * | 2006-04-27 | 2014-10-14 | The Invention Science Fund I, Llc | Virus immunization using prioritized routing |
US9258327B2 (en) | 2006-04-27 | 2016-02-09 | Invention Science Fund I, Llc | Multi-network virus immunization |
US7934260B2 (en) * | 2006-04-27 | 2011-04-26 | The Invention Science Fund I, Llc | Virus immunization using entity-sponsored bypass network |
US8539581B2 (en) * | 2006-04-27 | 2013-09-17 | The Invention Science Fund I, Llc | Efficient distribution of a malware countermeasure |
US7849508B2 (en) * | 2006-04-27 | 2010-12-07 | The Invention Science Fund I, Llc | Virus immunization using entity-sponsored bypass network |
US8151353B2 (en) | 2006-04-27 | 2012-04-03 | The Invention Science Fund I, Llc | Multi-network virus immunization with trust aspects |
US7917956B2 (en) * | 2006-04-27 | 2011-03-29 | The Invention Science Fund I, Llc | Multi-network virus immunization |
US8191145B2 (en) | 2006-04-27 | 2012-05-29 | The Invention Science Fund I, Llc | Virus immunization using prioritized routing |
US8966630B2 (en) * | 2006-04-27 | 2015-02-24 | The Invention Science Fund I, Llc | Generating and distributing a malware countermeasure |
US8151317B2 (en) * | 2006-07-07 | 2012-04-03 | International Business Machines Corporation | Method and system for policy-based initiation of federation management |
US20080025514A1 (en) * | 2006-07-25 | 2008-01-31 | Coombs Jason S | Systems And Methods For Root Certificate Update |
US20080065446A1 (en) * | 2006-08-25 | 2008-03-13 | Microsoft Corporation | Web collaboration in multiple languages |
US20080095172A1 (en) * | 2006-10-24 | 2008-04-24 | Jain-Li Lai | Systems and methods for setting network configuration and accessing network |
US7983685B2 (en) * | 2006-12-07 | 2011-07-19 | Innovative Wireless Technologies, Inc. | Method and apparatus for management of a global wireless sensor network |
US8250540B2 (en) * | 2007-07-16 | 2012-08-21 | Kaspersky Lab Zao | System and method for administration of mobile application |
US8161540B2 (en) | 2007-07-27 | 2012-04-17 | Redshift Internetworking, Inc. | System and method for unified communications threat management (UCTM) for converged voice, video and multi-media over IP flows |
US8041773B2 (en) | 2007-09-24 | 2011-10-18 | The Research Foundation Of State University Of New York | Automatic clustering for self-organizing grids |
US8730946B2 (en) * | 2007-10-18 | 2014-05-20 | Redshift Internetworking, Inc. | System and method to precisely learn and abstract the positive flow behavior of a unified communication (UC) application and endpoints |
US8176001B2 (en) * | 2007-10-18 | 2012-05-08 | Redshift Internetworking, Inc. | System and method for detecting spam over internet telephony (SPIT) in IP telecommunication systems |
US8688500B1 (en) * | 2008-04-16 | 2014-04-01 | Bank Of America Corporation | Information technology resiliency classification framework |
US7899873B2 (en) | 2008-05-20 | 2011-03-01 | At&T Intellectual Property I, L.P. | System and method of controlling a messaging system |
US20090292550A1 (en) * | 2008-05-23 | 2009-11-26 | Eric Ly | Method for calculating the optimal times for an event |
US8924862B1 (en) | 2008-09-05 | 2014-12-30 | Cisco Technology, Inc. | Optimizing desktop sharing for wireless clients during networked collaboration |
US8131828B2 (en) * | 2008-10-03 | 2012-03-06 | Cisco Technology, Inc. | Selectively joining clients to meeting servers |
US8881266B2 (en) * | 2008-11-13 | 2014-11-04 | Palo Alto Research Center Incorporated | Enterprise password reset |
US20110055367A1 (en) * | 2009-08-28 | 2011-03-03 | Dollar James E | Serial port forwarding over secure shell for secure remote management of networked devices |
US20110055899A1 (en) * | 2009-08-28 | 2011-03-03 | Uplogix, Inc. | Secure remote management of network devices with local processing and secure shell for remote distribution of information |
US8396203B2 (en) | 2009-10-20 | 2013-03-12 | At&T Intellectual Property I, L.P. | Automatic integrated escalation in a unified messaging system |
US10877695B2 (en) | 2009-10-30 | 2020-12-29 | Iii Holdings 2, Llc | Memcached server functionality in a cluster of data processing nodes |
US11720290B2 (en) | 2009-10-30 | 2023-08-08 | Iii Holdings 2, Llc | Memcached server functionality in a cluster of data processing nodes |
CN101827090B (en) * | 2010-03-25 | 2012-10-24 | 浙江中烟工业有限责任公司 | External user login and backup system |
CN101848221B (en) * | 2010-05-20 | 2014-10-29 | 创想空间软件技术(北京)有限公司 | Question answering system of large multimedia conference publishing system |
US8694165B2 (en) * | 2010-06-29 | 2014-04-08 | Cisco Technology, Inc. | System and method for providing environmental controls for a meeting session in a network environment |
US8484415B2 (en) * | 2010-07-19 | 2013-07-09 | Taejin Info Tech Co., Ltd. | Hybrid storage system for a multi-level raid architecture |
US8832794B2 (en) | 2010-10-20 | 2014-09-09 | Jeffry David Aronson | Single-point-of-access cyber system |
US20120102540A1 (en) * | 2010-10-20 | 2012-04-26 | Jeffry Aronson | Single-Point-Of-Access Cyber System |
CN102006246B (en) * | 2010-11-26 | 2012-04-18 | 中国航天科工集团第二研究院七○六所 | Trusted separate gateway |
US20120174212A1 (en) * | 2010-12-29 | 2012-07-05 | Microsoft Corporation | Connected account provider for multiple personal computers |
WO2012106726A1 (en) | 2011-02-04 | 2012-08-09 | Nextplane | Method and system for federation of proxy-based and proxy-free communications systems |
US9716619B2 (en) | 2011-03-31 | 2017-07-25 | NextPlane, Inc. | System and method of processing media traffic for a hub-based system federating disparate unified communications systems |
US9203799B2 (en) | 2011-03-31 | 2015-12-01 | NextPlane, Inc. | Method and system for advanced alias domain routing |
US9077726B2 (en) | 2011-03-31 | 2015-07-07 | NextPlane, Inc. | Hub based clearing house for interoperability of distinct unified communication systems |
US9992334B2 (en) * | 2011-10-13 | 2018-06-05 | Nuance Communications, Inc. | Multi-modal customer care system |
US8990392B1 (en) | 2012-04-11 | 2015-03-24 | NCC Group Inc. | Assessing a computing resource for compliance with a computing resource policy regime specification |
US10135677B1 (en) | 2012-07-06 | 2018-11-20 | Cradlepoint, Inc. | Deployment of network-related features over cloud network |
US10110417B1 (en) | 2012-07-06 | 2018-10-23 | Cradlepoint, Inc. | Private networks overlaid on cloud infrastructure |
US10601653B2 (en) * | 2012-07-06 | 2020-03-24 | Cradlepoint, Inc. | Implicit traffic engineering |
US9705840B2 (en) | 2013-06-03 | 2017-07-11 | NextPlane, Inc. | Automation platform for hub-based system federating disparate unified communications systems |
US9819636B2 (en) * | 2013-06-10 | 2017-11-14 | NextPlane, Inc. | User directory system for a hub-based system federating disparate unified communications systems |
US9661269B2 (en) | 2013-10-03 | 2017-05-23 | Polycom, Inc. | System for enabling communications and conferencing between dissimilar computing devices including mobile computing devices |
US9971838B2 (en) * | 2015-02-20 | 2018-05-15 | International Business Machines Corporation | Mitigating subjectively disturbing content through the use of context-based data gravity wells |
US9823997B2 (en) * | 2015-08-11 | 2017-11-21 | Bank Of America Corporation | Production resiliency testing system |
US10223247B2 (en) * | 2016-07-05 | 2019-03-05 | Red Hat, Inc. | Generating pseudorandom test items for software testing of an application under test (AUT) |
US10191818B2 (en) * | 2016-11-14 | 2019-01-29 | Sap Se | Filtered replication of data in distributed system of data centers |
CN107220809A (en) * | 2017-05-26 | 2017-09-29 | 携程旅游信息技术(上海)有限公司 | The method and system of change tissue based on Active Directory organizational structure |
WO2019031783A1 (en) * | 2017-08-09 | 2019-02-14 | Samsung Electronics Co., Ltd. | System for providing function as a service (faas), and operating method of system |
GB201719080D0 (en) * | 2017-11-17 | 2018-01-03 | Light Blue Optics Ltd | Device authorization systems |
TWI650636B (en) * | 2017-11-23 | 2019-02-11 | 財團法人資訊工業策進會 | Detection system and detection method |
CN108683567B (en) * | 2018-05-30 | 2021-12-07 | 郑州云海信息技术有限公司 | Switch port fault testing method and system based on MCS and server |
US10656980B2 (en) | 2018-06-18 | 2020-05-19 | Wipro Limited | Method and system for processing data in a serverless computing environment |
US11586750B2 (en) * | 2019-03-21 | 2023-02-21 | Blackberry Limited | Managing access to protected data file content |
EP4073728A4 (en) * | 2019-12-10 | 2023-12-20 | Nureva Inc. | System and method to allow anonymous users to contribute multimedia content across multiple digital workspaces |
CN111274297A (en) * | 2020-01-19 | 2020-06-12 | 政采云有限公司 | Method and system for sharing resources without service terminal based on storage library |
CN111355720B (en) * | 2020-02-25 | 2022-08-05 | 深信服科技股份有限公司 | Method, system and equipment for accessing intranet by application and computer storage medium |
US11528242B2 (en) * | 2020-10-23 | 2022-12-13 | Abnormal Security Corporation | Discovering graymail through real-time analysis of incoming email |
Family Cites Families (15)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6023683A (en) * | 1994-08-10 | 2000-02-08 | Fisher Scientific Company | Electronic sourcing system and method |
US6311175B1 (en) * | 1998-03-06 | 2001-10-30 | Perot Systems Corp. | System and method for generating performance models of complex information technology systems |
US6266649B1 (en) * | 1998-09-18 | 2001-07-24 | Amazon.Com, Inc. | Collaborative recommendations using item-to-item similarity mappings |
EP1190342A2 (en) * | 1999-05-24 | 2002-03-27 | Aprisma Management Technologies, Inc. | Service level management |
US6615253B1 (en) * | 1999-08-31 | 2003-09-02 | Accenture Llp | Efficient server side data retrieval for execution of client side applications |
US7627483B2 (en) * | 2000-02-01 | 2009-12-01 | Donate.Net, Inc. | Online donation management system |
US20020013735A1 (en) * | 2000-03-31 | 2002-01-31 | Arti Arora | Electronic matching engine for matching desired characteristics with item attributes |
US20010051913A1 (en) * | 2000-06-07 | 2001-12-13 | Avinash Vashistha | Method and system for outsourcing information technology projects and services |
US20020046074A1 (en) * | 2000-06-29 | 2002-04-18 | Timothy Barton | Career management system, method and computer program product |
US20020123983A1 (en) * | 2000-10-20 | 2002-09-05 | Riley Karen E. | Method for implementing service desk capability |
US6847854B2 (en) * | 2001-08-10 | 2005-01-25 | Rockwell Automation Technologies, Inc. | System and method for dynamic multi-objective optimization of machine selection, integration and utilization |
US8615399B2 (en) * | 2003-02-21 | 2013-12-24 | Sap Ag | Tool for evaluation of business services |
WO2004102340A2 (en) * | 2003-05-07 | 2004-11-25 | Shaw Pittman Llp | System and method for analyzing an operation of an organization |
US20040225554A1 (en) * | 2003-05-08 | 2004-11-11 | International Business Machines Corporation | Business method for information technology services for legacy applications of a client |
US20050283822A1 (en) * | 2004-06-09 | 2005-12-22 | International Business Machines Corporation | System and method for policy-enabling electronic utilities |
-
2005
- 2005-06-28 WO PCT/US2005/022652 patent/WO2006004624A2/en active Application Filing
- 2005-06-28 EP EP05762783A patent/EP1769303A4/en not_active Ceased
- 2005-06-28 CN CNA2005800254736A patent/CN101432767A/en active Pending
- 2005-06-28 US US11/167,606 patent/US20050288961A1/en not_active Abandoned
- 2005-06-28 TW TW094121588A patent/TW200617737A/en unknown
- 2005-06-28 CA CA002571273A patent/CA2571273A1/en not_active Abandoned
- 2005-06-28 JP JP2007519315A patent/JP2008509454A/en active Pending
-
2006
- 2006-12-19 IL IL180191A patent/IL180191A0/en not_active IP Right Cessation
Non-Patent Citations (2)
Title |
---|
None |
See also references of EP1769303A4 |
Also Published As
Publication number | Publication date |
---|---|
JP2008509454A (en) | 2008-03-27 |
CA2571273A1 (en) | 2006-01-12 |
EP1769303A2 (en) | 2007-04-04 |
IL180191A0 (en) | 2007-07-04 |
TW200617737A (en) | 2006-06-01 |
WO2006004624A3 (en) | 2009-04-30 |
CN101432767A (en) | 2009-05-13 |
US20050288961A1 (en) | 2005-12-29 |
EP1769303A4 (en) | 2009-11-25 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US20050288961A1 (en) | Method for a server-less office architecture | |
CN110011866B (en) | Providing device as a service | |
US7921289B2 (en) | Secure compartmented mode knowledge management portal | |
US9461892B2 (en) | System and method for serving and managing independent access devices | |
US20040003247A1 (en) | Non-centralized secure communication services | |
US20030046587A1 (en) | Secure remote access using enterprise peer networks | |
US20030046586A1 (en) | Secure remote access to data between peers | |
US20070112578A1 (en) | Infrastructure Architecture for Secure Network Management with Peer to Peer Functionality | |
EP1626553A2 (en) | System and method for controlling network access | |
WO2003021464A2 (en) | Secure remote access between peers | |
US20090271852A1 (en) | System and Method for Distributing Enduring Credentials in an Untrusted Network Environment | |
CISM et al. | IM instant messaging security | |
Cisco | Cisco Systems Users Magazine | |
Cisco | Cisco Systems Users Magazine | |
Cisco | Cisco Systems Users Magazine | |
Cisco | Cisco Systems Users Magazine | |
Beltran et al. | Identity management for Web business communications | |
Guilmette et al. | Microsoft 365 Administration Inside Out | |
Babb | Factors influencing use of virtual private networks over traditional wide area networks by decision-making technology managers | |
Perroud et al. | Infrastructure Patterns | |
Puca et al. | Microsoft Office 365 Administration Inside Out | |
CN114710335A (en) | User authentication method, firewall and AD (AD) domain control server | |
Weihua | Research on E-government information service mechanism based on unified communication technology | |
Headquarters | Cisco Unified Communications System for IP Telephony Release 8.0 (2) | |
Piltzecker | How to cheat at administering Office Communications Server 2007 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
AK | Designated states |
Kind code of ref document: A2 Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BW BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE EG ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KM KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NA NG NI NO NZ OM PG PH PL PT RO RU SC SD SE SG SK SL SM SY TJ TM TN TR TT TZ UA UG US UZ VC VN YU ZA ZM ZW |
|
AL | Designated countries for regional patents |
Kind code of ref document: A2 Designated state(s): BW GH GM KE LS MW MZ NA SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IS IT LT LU MC NL PL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG |
|
WWE | Wipo information: entry into national phase |
Ref document number: 2571273 Country of ref document: CA Ref document number: 180191 Country of ref document: IL |
|
WWE | Wipo information: entry into national phase |
Ref document number: 2005762783 Country of ref document: EP Ref document number: 0625808.1 Country of ref document: GB Ref document number: 0625808 Country of ref document: GB |
|
WWE | Wipo information: entry into national phase |
Ref document number: 2007519315 Country of ref document: JP |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
WWW | Wipo information: withdrawn in national office |
Country of ref document: DE |
|
WWE | Wipo information: entry into national phase |
Ref document number: 200580025473.6 Country of ref document: CN |
|
WWP | Wipo information: published in national office |
Ref document number: 2005762783 Country of ref document: EP |