scispace - formally typeset
Search or ask a question
Author

Jeffrey Dwork

Bio: Jeffrey Dwork is an academic researcher from Advanced Micro Devices. The author has contributed to research in topics: Network interface & Host (network). The author has an hindex of 14, co-authored 34 publications receiving 681 citations.

Papers
More filters
Patent
30 Oct 1997
TL;DR: In this paper, a wake-up module for detecting a wake up request in a received data packet according to the on-now power management scheme and Magic Packet™ power management schemes is presented.
Abstract: A network interface for a workstation having multiple power supply domains includes a wake up module for detecting a wake up request in a received data packet according to the on-now power management scheme and Magic Packet™ power management schemes. An EEPROM supplies an override bit to ensure that the on-now power management schemes and Magic Packet™ power up management schemes can have co-existent detection mechanisms, independent of whether a required enable bit is set by the operating system. The disclosed arrangement maintains the power management schemes in the event that a power loss disables the enabled bit normally supplied by the host computer operating system.

76 citations

Patent
06 May 2004
TL;DR: In this article, a network interface system includes a bus interface system, a media access control system, and a security system that selectively performs security processing on data incoming from the network based on security associations stored in a memory external to the network interface.
Abstract: One aspect of the invention relates to a network interface system for interfacing a host system with a network. The network interface system includes a bus interface system, a media access control system, and a security system. The security system selectively perform security processing on data incoming from the network based on security associations stored in a memory external to the network interface system, typically a host system memory. The security association for any given frame, when available, is fetched from the external memory after the frame begins to arrive in the network interface system based in part on information contained in the frame. Preferably, the fetch begins before the frame is fully received and the security association is queued whereby security processing can begin without having to wait for the security association to be fetched.

74 citations

Patent
02 Mar 2004
TL;DR: In this article, the authors describe a network interface system for interfacing a host system with a network, which includes a bus interface system, a media access control system, and a security system.
Abstract: The invention relates to a network interface system for interfacing a host system with a network. The network interface system includes a bus interface system, a media access control system, and a security system. The network interface offloads IPsec processing from the host processor. According to the invention, the security system includes two processors for encrypting and authenticating the outgoing data. Outgoing data packets are sent alternately to one or the other processor, whereby transmission processing can be accelerated relative to receive processing.

67 citations

Patent
22 Feb 1996
TL;DR: In this article, the authors propose a system interface adapter for intercoupling a fixed speed bus to a variable latency bus, which includes a receive FIFO buffer memory, a transmit buffer memory and a memory buffer management unit.
Abstract: A node having a system interface adapter for intercoupling a fixed speed bus to a variable latency bus. The system interface adapter includes a receive FIFO buffer memory, a transmit FIFO buffer memory, and a memory buffer management unit. The memory buffer management unit dynamically awards priority between the two FIFOs for access to the variable latency bus in a fashion to minimize overflowing or underflowing the FIFOs while reducing the FIFO sizes. Priority between pending receive data transfers and pending transmit data transfers is resolved, in part, upon a whether a receive operation vis-a-vis the fixed-speed bus is underway.

56 citations

Patent
01 Oct 2003
TL;DR: In this paper, an improved descriptor system is provided in which read pointers indicate to a host and a peripheral the next location to read from a queue of descriptors, and write pointers indicate the next position to be written in a queue.
Abstract: An improved descriptor system is provided in which read pointers indicate to a host and a peripheral the next location to read from a queue of descriptors, and write pointers indicate the next location to be written in a queue. The system also allows an incoming descriptor to point to a plurality of data frames for transfer to the host processor, wherein the peripheral need not read a new descriptor each time a frame is to be transferred to the host.

44 citations


Cited by
More filters
Patent
12 Apr 2010
TL;DR: In this article, a first field and a second field are generated to be included in a preamble of the data unit to determine the duration of a data unit and modulated using a modulation scheme specified for a field corresponding to the first field.
Abstract: In a method for generating a data unit conforming to a first communication protocol, a first field and a second field to be included in a preamble of the data unit are generated. The first field includes a first set of one or more information bits that indicate a duration of the data unit and is formatted such that the first field allows a receiver device that conforms to a second communication protocol to determine the duration of the data unit. The second field includes a second set of one or more information bits that indicate to a receiver device that conforms to the first communication protocol that the data unit conforms to the first communication protocol. The first field and the second field are modulated using a modulation scheme specified for a field corresponding to the first field and the second field, respectively, by the second communication protocol.

338 citations

Patent
21 Dec 2012
TL;DR: In this article, the authors provide means for managing automated access to computers, e.g., using SSH user keys and other kinds of trust relationships, such as certificates, Kerberos credentials, and cryptographic keys.
Abstract: Certain embodiments provide means for managing automated access to computers, e.g., using SSH user keys and other kinds of trust relationships. Certain embodiments also provide for managing certificates, Kerberos credentials, and cryptographic keys. Certain embodiments provide for remediating legacy SSH key problems and for automating configuration of SSH keys, as well as for continuous monitoring.

219 citations

Patent
05 Dec 2003
TL;DR: In this article, the authors describe protocols and associated systems for providing secured data transmission over a data network, where data to be encrypted and encryption information may be sent to a security processor via a packet network so that the security processor may extract the encryption information and use it to encrypt the data.
Abstract: Methods and associated systems are disclosed for providing secured data transmission over a data network. Data to be encrypted and encryption information may be sent to a security processor via a packet network so that the security processor may extract the encryption information and use it to encrypt the data. The encryption information may include flow information, security association and/or other cryptographic information, and/or one or more addresses associated with such information. The encryption information may consist of a tag in a header that is appended to packets to be encrypted before the packets are sent to the security processor. The packet and tag header may be encapsulated into an Ethernet packet and routed via an Ethernet connection to the security processor.

184 citations

Patent
13 Oct 1998
TL;DR: In this paper, a method for improving perception of electronic content from a computer network such as the Internet or an intranet is proposed, which dynamically adjusts the amount of original electronic content presented to user based on a determined network latency.
Abstract: A method for improving perception of electronic content from a computer network such as the Internet or an intranet Network latencies and the type of electronic content such as text, graphical images, animation, voice, video and other electronic content interact to influence user perception of the quality of information provided As network latency increases and becomes more variable, users typically become less satisfied The method dynamically adjusts the amount of electronic content presented to user based on a determined network latency The amount of electronic content is also adjusted progressively and underlying transport protocol such as Transmission Control Protocol (“TCP”) and User Datagram Protocol (“UDP”) are adaptively adjusted based on the type of electronic content requested (eg, TCP for text, UDP for graphical images, etc) The method may improve user perception of requested original electronic content by dynamically sending an amount of original electronic content based on a determined network latency Improved user perception of original electronic content may help attract and retain, students, customers, contributors, etc to an organization's electronic content site on a computer network (eg, a home page on the Internet or an intranet)

160 citations

Patent
21 Jun 2012
TL;DR: In this paper, a method of offloading data intensive tasks from a processor, comprises, at processor, preparing a TCP packet comprising a TCP header and a data payload, transmitting the TCP packet to a configurable logic device (CLD); and at the CLD, receiving the TCP packets, generating set of TCP segment packets containing, a copy of the TCP header, an incrementing segment sequence identifier, and a portion of the data payload.
Abstract: A method of offloading data intensive tasks from a processor, comprises, at a processor, preparing a TCP packet comprising a TCP header and a data payload, transmitting the TCP packet to a configurable logic device (CLD); and at the CLD, receiving the TCP packet, generating set of TCP segment packets containing, a copy of the TCP header, an incrementing segment sequence identifier, and a portion of the data payload, and transmitting the set of TCP segment packets on an external network interface.

151 citations