CN1659822B - 数据业务过滤指示器 - Google Patents
数据业务过滤指示器 Download PDFInfo
- Publication number
- CN1659822B CN1659822B CN038136341A CN03813634A CN1659822B CN 1659822 B CN1659822 B CN 1659822B CN 038136341 A CN038136341 A CN 038136341A CN 03813634 A CN03813634 A CN 03813634A CN 1659822 B CN1659822 B CN 1659822B
- Authority
- CN
- China
- Prior art keywords
- rule
- classification
- group
- class
- unsuitable
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/02—Details
- H04L12/22—Arrangements for preventing the taking of data from a data transmission channel without authorisation
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0227—Filtering policies
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/55—Detecting local intrusion or implementing counter-measures
- G06F21/554—Detecting local intrusion or implementing counter-measures involving event detection and direct action
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1416—Event detection, e.g. attack signature detection
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/50—Network services
- H04L67/75—Indicating network or usage conditions on the user display
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Computing Systems (AREA)
- Software Systems (AREA)
- Theoretical Computer Science (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
- Computer And Data Communications (AREA)
- Small-Scale Networks (AREA)
Abstract
Description
Claims (14)
Applications Claiming Priority (3)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US38808202P | 2002-06-12 | 2002-06-12 | |
US60/388,082 | 2002-06-12 | ||
PCT/US2003/018191 WO2003107590A1 (en) | 2002-06-12 | 2003-06-09 | Data traffic filtering indicator |
Publications (2)
Publication Number | Publication Date |
---|---|
CN1659822A CN1659822A (zh) | 2005-08-24 |
CN1659822B true CN1659822B (zh) | 2011-05-04 |
Family
ID=29736413
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN038136341A Expired - Fee Related CN1659822B (zh) | 2002-06-12 | 2003-06-09 | 数据业务过滤指示器 |
Country Status (11)
Country | Link |
---|---|
US (1) | US7818794B2 (zh) |
EP (1) | EP1550259B1 (zh) |
JP (1) | JP2005530398A (zh) |
KR (1) | KR100986967B1 (zh) |
CN (1) | CN1659822B (zh) |
AU (1) | AU2003248653A1 (zh) |
BR (1) | BR0305037A (zh) |
MX (1) | MXPA04012519A (zh) |
MY (1) | MY143801A (zh) |
TW (1) | TWI244297B (zh) |
WO (1) | WO2003107590A1 (zh) |
Families Citing this family (37)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7051074B1 (en) * | 2000-08-22 | 2006-05-23 | At&T Corp. | Graph algorithm for common neighborhood analysis |
US20100138909A1 (en) * | 2002-09-06 | 2010-06-03 | O2Micro, Inc. | Vpn and firewall integrated system |
US7694021B1 (en) * | 2003-05-28 | 2010-04-06 | Cisco Technology, Inc. | Firewall for gateway network elements between IP based networks |
US8027330B2 (en) * | 2004-06-23 | 2011-09-27 | Qualcomm Incorporated | Efficient classification of network packets |
US20060085528A1 (en) * | 2004-10-01 | 2006-04-20 | Steve Thomas | System and method for monitoring network communications for pestware |
US7996894B1 (en) * | 2005-02-15 | 2011-08-09 | Sonicwall, Inc. | MAC address modification of otherwise locally bridged client devices to provide security |
US8631483B2 (en) * | 2005-06-14 | 2014-01-14 | Texas Instruments Incorporated | Packet processors and packet filter processes, circuits, devices, and systems |
DE102005046935B4 (de) * | 2005-09-30 | 2009-07-23 | Nokia Siemens Networks Gmbh & Co.Kg | Netzwerkzugangsknotenrechner zu einem Kommunikationsnetzwerk, Kommunikationssystem und Verfahren zum Zuweisen einer Schutzvorrichtung |
US8477759B2 (en) * | 2005-09-30 | 2013-07-02 | Qualcomm Incorporated | Filtering of malformed data packets in wireless communication |
US7652991B2 (en) * | 2005-12-16 | 2010-01-26 | Alcatel Lucent | Network with distributed authentication control |
US8024804B2 (en) * | 2006-03-08 | 2011-09-20 | Imperva, Inc. | Correlation engine for detecting network attacks and detection method |
US8190868B2 (en) | 2006-08-07 | 2012-05-29 | Webroot Inc. | Malware management through kernel detection |
US7954143B2 (en) * | 2006-11-13 | 2011-05-31 | At&T Intellectual Property I, Lp | Methods, network services, and computer program products for dynamically assigning users to firewall policy groups |
US8370932B2 (en) * | 2008-09-23 | 2013-02-05 | Webroot Inc. | Method and apparatus for detecting malware in network traffic |
US20100138893A1 (en) * | 2008-12-02 | 2010-06-03 | Inventec Corporation | Processing method for accelerating packet filtering |
US11489857B2 (en) | 2009-04-21 | 2022-11-01 | Webroot Inc. | System and method for developing a risk profile for an internet resource |
KR101010248B1 (ko) | 2009-07-02 | 2011-01-21 | 충남대학교산학협력단 | 패킷검사장치의 부하조절방법 및 장치 |
CN102082780B (zh) * | 2009-11-30 | 2014-03-05 | 国际商业机器公司 | 安全验证的方法和装置 |
US9137205B2 (en) | 2012-10-22 | 2015-09-15 | Centripetal Networks, Inc. | Methods and systems for protecting a secured network |
US9565213B2 (en) | 2012-10-22 | 2017-02-07 | Centripetal Networks, Inc. | Methods and systems for protecting a secured network |
US9203806B2 (en) | 2013-01-11 | 2015-12-01 | Centripetal Networks, Inc. | Rule swapping in a packet network |
US9124552B2 (en) | 2013-03-12 | 2015-09-01 | Centripetal Networks, Inc. | Filtering network data transfers |
US9094445B2 (en) * | 2013-03-15 | 2015-07-28 | Centripetal Networks, Inc. | Protecting networks from cyber attacks and overloading |
US9356937B2 (en) * | 2013-11-13 | 2016-05-31 | International Business Machines Corporation | Disambiguating conflicting content filter rules |
US9264370B1 (en) | 2015-02-10 | 2016-02-16 | Centripetal Networks, Inc. | Correlating packets in communications networks |
US9866576B2 (en) | 2015-04-17 | 2018-01-09 | Centripetal Networks, Inc. | Rule-based network-threat detection |
JP6613653B2 (ja) * | 2015-06-24 | 2019-12-04 | 株式会社リコー | 中継装置、通信制御方法、及び通信制御システム |
US9917856B2 (en) | 2015-12-23 | 2018-03-13 | Centripetal Networks, Inc. | Rule-based network-threat detection for encrypted communications |
US11729144B2 (en) | 2016-01-04 | 2023-08-15 | Centripetal Networks, Llc | Efficient packet capture for cyber threat analysis |
US10503899B2 (en) | 2017-07-10 | 2019-12-10 | Centripetal Networks, Inc. | Cyberanalysis workflow acceleration |
US11233777B2 (en) | 2017-07-24 | 2022-01-25 | Centripetal Networks, Inc. | Efficient SSL/TLS proxy |
US10284526B2 (en) | 2017-07-24 | 2019-05-07 | Centripetal Networks, Inc. | Efficient SSL/TLS proxy |
US11863528B1 (en) * | 2018-06-07 | 2024-01-02 | Amazon Technologies, Inc. | Glue layer that abstracts dynamic endpoints to static endpoints |
US10333898B1 (en) | 2018-07-09 | 2019-06-25 | Centripetal Networks, Inc. | Methods and systems for efficient network protection |
US11553618B2 (en) * | 2020-08-26 | 2023-01-10 | PassiveLogic, Inc. | Methods and systems of building automation state load and user preference via network systems activity |
US11362996B2 (en) | 2020-10-27 | 2022-06-14 | Centripetal Networks, Inc. | Methods and systems for efficient adaptive logging of cyber threat incidents |
US11159546B1 (en) | 2021-04-20 | 2021-10-26 | Centripetal Networks, Inc. | Methods and systems for efficient threat context-aware packet filtering for network protection |
Citations (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1308745A (zh) * | 1998-05-08 | 2001-08-15 | 摩托罗拉公司 | 保护网络避免数据分组过载的方法 |
Family Cites Families (46)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
FR2575351B1 (fr) * | 1984-12-21 | 1988-05-13 | Thomson Csf | Procede adaptatif de codage et de decodage d'une suite d'images par transformation, et dispositifs pour la mise en oeuvre de ce procede |
US6581092B1 (en) * | 1999-09-29 | 2003-06-17 | Ricoh Co., Ltd. | Method and system for remote diagnostic, control and information collection based on various communication modes for sending messages to users |
US5898830A (en) * | 1996-10-17 | 1999-04-27 | Network Engineering Software | Firewall providing enhanced network security and user transparency |
KR19980022833A (ko) * | 1996-09-24 | 1998-07-06 | 최승렬 | 정보 유출을 추적하기 위한 장치 및 방법 |
US6119236A (en) * | 1996-10-07 | 2000-09-12 | Shipley; Peter M. | Intelligent network security device and method |
US5809252A (en) * | 1996-12-13 | 1998-09-15 | Intel Corporation | Cable modem interface unit for capturing and processing incoming packets from a cable modem |
US6243815B1 (en) * | 1997-04-25 | 2001-06-05 | Anand K. Antur | Method and apparatus for reconfiguring and managing firewalls and security devices |
US6438666B2 (en) * | 1997-09-26 | 2002-08-20 | Hughes Electronics Corporation | Method and apparatus for controlling access to confidential data by analyzing property inherent in data |
US6185624B1 (en) * | 1998-02-04 | 2001-02-06 | 3Com Corporation | Method and system for cable modem management of a data-over-cable system |
US6389532B1 (en) * | 1998-04-20 | 2002-05-14 | Sun Microsystems, Inc. | Method and apparatus for using digital signatures to filter packets in a network |
US6282546B1 (en) * | 1998-06-30 | 2001-08-28 | Cisco Technology, Inc. | System and method for real-time insertion of data into a multi-dimensional database for network intrusion detection and vulnerability assessment |
US6269447B1 (en) * | 1998-07-21 | 2001-07-31 | Raytheon Company | Information security analysis system |
US6317837B1 (en) * | 1998-09-01 | 2001-11-13 | Applianceware, Llc | Internal network node with dedicated firewall |
US6219786B1 (en) * | 1998-09-09 | 2001-04-17 | Surfcontrol, Inc. | Method and system for monitoring and controlling network access |
US6321338B1 (en) * | 1998-11-09 | 2001-11-20 | Sri International | Network surveillance |
US6405318B1 (en) * | 1999-03-12 | 2002-06-11 | Psionic Software, Inc. | Intrusion detection system |
US6510509B1 (en) * | 1999-03-29 | 2003-01-21 | Pmc-Sierra Us, Inc. | Method and apparatus for high-speed network rule processing |
US6643780B1 (en) * | 1999-05-07 | 2003-11-04 | Ericsson Inc. | Modems that block data transfers during safe mode of operation and related methods |
WO2001006726A2 (en) * | 1999-07-15 | 2001-01-25 | Sun Microsystems, Inc. | Secure network switch |
US6990591B1 (en) * | 1999-11-18 | 2006-01-24 | Secureworks, Inc. | Method and system for remotely configuring and monitoring a communication device |
US6321267B1 (en) * | 1999-11-23 | 2001-11-20 | Escom Corporation | Method and apparatus for filtering junk email |
KR100334128B1 (ko) * | 2000-03-24 | 2002-04-26 | 전창오 | 보안 정책 시스템 |
US6798777B1 (en) * | 2000-04-17 | 2004-09-28 | Juniper Networks, Inc. | Filtering and route lookup in a switching device |
US7574740B1 (en) * | 2000-04-28 | 2009-08-11 | International Business Machines Corporation | Method and system for intrusion detection in a computer network |
WO2001088731A1 (en) | 2000-05-12 | 2001-11-22 | Niksun, Inc. | Security camera for a network |
US7328349B2 (en) * | 2001-12-14 | 2008-02-05 | Bbn Technologies Corp. | Hash-based systems and methods for detecting, preventing, and tracing network worms and viruses |
US7031267B2 (en) * | 2000-12-21 | 2006-04-18 | 802 Systems Llc | PLD-based packet filtering methods with PLD configuration data update of filtering rules |
US7013482B1 (en) * | 2000-07-07 | 2006-03-14 | 802 Systems Llc | Methods for packet filtering including packet invalidation if packet validity determination not timely made |
AU2001275737A1 (en) * | 2000-08-11 | 2002-02-25 | British Telecommunications Public Limited Company | System and method of detecting events |
JP2002063084A (ja) * | 2000-08-21 | 2002-02-28 | Toshiba Corp | パケット転送装置、パケット転送方法、及びそのプログラムが格納された記憶媒体 |
JP2002124996A (ja) | 2000-10-13 | 2002-04-26 | Yoshimi Baba | 高速パケット取得エンジン・セキュリティ |
WO2002045380A2 (en) | 2000-11-30 | 2002-06-06 | Lancope, Inc. | Flow-based detection of network intrusions |
US20020080784A1 (en) * | 2000-12-21 | 2002-06-27 | 802 Systems, Inc. | Methods and systems using PLD-based network communication protocols |
US7296070B2 (en) * | 2000-12-22 | 2007-11-13 | Tier-3 Pty. Ltd. | Integrated monitoring system |
US20020133586A1 (en) * | 2001-01-16 | 2002-09-19 | Carter Shanklin | Method and device for monitoring data traffic and preventing unauthorized access to a network |
US20030051026A1 (en) * | 2001-01-19 | 2003-03-13 | Carter Ernst B. | Network surveillance and security system |
US7168093B2 (en) * | 2001-01-25 | 2007-01-23 | Solutionary, Inc. | Method and apparatus for verifying the integrity and security of computer networks and implementation of counter measures |
US7010807B1 (en) * | 2001-04-13 | 2006-03-07 | Sonicwall, Inc. | System and method for network virus protection |
US20020178365A1 (en) * | 2001-05-24 | 2002-11-28 | Shingo Yamaguchi | Method and system for controlling access to network resources based on connection security |
US8200818B2 (en) * | 2001-07-06 | 2012-06-12 | Check Point Software Technologies, Inc. | System providing internet access management with router-based policy enforcement |
US7222359B2 (en) * | 2001-07-27 | 2007-05-22 | Check Point Software Technologies, Inc. | System methodology for automatic local network discovery and firewall reconfiguration for mobile computing devices |
US20030084349A1 (en) * | 2001-10-12 | 2003-05-01 | Oliver Friedrichs | Early warning system for network attacks |
US20030106067A1 (en) * | 2001-11-30 | 2003-06-05 | Hoskins Steve J. | Integrated internet protocol (IP) gateway services in an RF cable network |
US7340770B2 (en) * | 2002-05-15 | 2008-03-04 | Check Point Software Technologies, Inc. | System and methodology for providing community-based security policies |
US8495180B2 (en) * | 2002-12-11 | 2013-07-23 | Broadcom Corporation | Server architecture supporting a personal media exchange network |
US7697550B2 (en) * | 2005-06-30 | 2010-04-13 | Netgear, Inc. | Peripheral device with visual indicators |
-
2003
- 2003-05-29 TW TW092114577A patent/TWI244297B/zh not_active IP Right Cessation
- 2003-06-09 CN CN038136341A patent/CN1659822B/zh not_active Expired - Fee Related
- 2003-06-09 KR KR1020047020190A patent/KR100986967B1/ko active IP Right Grant
- 2003-06-09 US US10/517,574 patent/US7818794B2/en not_active Expired - Fee Related
- 2003-06-09 MX MXPA04012519A patent/MXPA04012519A/es active IP Right Grant
- 2003-06-09 EP EP03760252.1A patent/EP1550259B1/en not_active Expired - Lifetime
- 2003-06-09 WO PCT/US2003/018191 patent/WO2003107590A1/en active Application Filing
- 2003-06-09 BR BR0305037-8A patent/BR0305037A/pt not_active Application Discontinuation
- 2003-06-09 JP JP2004514270A patent/JP2005530398A/ja active Pending
- 2003-06-09 AU AU2003248653A patent/AU2003248653A1/en not_active Abandoned
- 2003-06-11 MY MYPI20032168A patent/MY143801A/en unknown
Patent Citations (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1308745A (zh) * | 1998-05-08 | 2001-08-15 | 摩托罗拉公司 | 保护网络避免数据分组过载的方法 |
Also Published As
Publication number | Publication date |
---|---|
MXPA04012519A (es) | 2005-06-08 |
TW200402980A (en) | 2004-02-16 |
KR20050010896A (ko) | 2005-01-28 |
EP1550259A1 (en) | 2005-07-06 |
EP1550259A4 (en) | 2010-06-02 |
BR0305037A (pt) | 2004-09-08 |
US20050169282A1 (en) | 2005-08-04 |
MY143801A (en) | 2011-07-15 |
TWI244297B (en) | 2005-11-21 |
CN1659822A (zh) | 2005-08-24 |
WO2003107590A1 (en) | 2003-12-24 |
KR100986967B1 (ko) | 2010-10-11 |
US7818794B2 (en) | 2010-10-19 |
JP2005530398A (ja) | 2005-10-06 |
EP1550259B1 (en) | 2017-04-05 |
AU2003248653A1 (en) | 2003-12-31 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN1659822B (zh) | 数据业务过滤指示器 | |
US9253106B2 (en) | Traffic-control-based data transmission method and communication system | |
US8300529B2 (en) | Service-centric communication network monitoring | |
KR101424490B1 (ko) | 지연시간 기반 역 접속 탐지 시스템 및 그 탐지 방법 | |
US7386733B2 (en) | Alert transmission apparatus and method for policy-based intrusion detection and response | |
US7970878B1 (en) | Method and apparatus for limiting domain name server transaction bandwidth | |
US20050204050A1 (en) | Method and system for controlling network access | |
US20130205043A1 (en) | Ethernet-compatible method and system | |
MXPA06013129A (es) | Contencion automatizada de un invasor en redes. | |
JP2008516557A (ja) | ネットワークトラフィックを宛先変更する方法、及びシステム | |
Chirillo | Hack attacks revealed: A complete reference with custom security hacking toolkit | |
JP4502563B2 (ja) | 双方向通信システムのためのユーザインタフェース | |
MXPA02003711A (es) | Un sistema para procesar hombres de dominio y direcciones de internet. | |
US7870285B2 (en) | Mitigating subscriber side attacks in a cable network | |
JP2003512763A (ja) | セキュアなインターネット互換双方向通信システムおよびユーザインタフェース | |
Cisco | Glossary | |
Cisco | Protocol Translator Manual | |
US20060185009A1 (en) | Communication apparatus and communication method | |
GB2540381A (en) | System and method for unidirectional and secure file transfer | |
JP2003046537A (ja) | 集合住宅の通信サービスシステム、ルータ装置、集合住宅の通信サービス提供方法、コンピュータ読取り可能な記録媒体並びにコンピュータプログラム | |
CN115633352A (zh) | 一种终端准入自动控制装置及方法 | |
Yousuf et al. | BOARD OF EXAMINERS | |
Rayes | Advanced Security Management in Metro Ethernet Networks | |
NETWORK | I llll [~!! JlNIIIII | |
KR20050002542A (ko) | Ngn망에서 서비스거부공격 차단 방법 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C14 | Grant of patent or utility model | ||
GR01 | Patent grant | ||
CP02 | Change in the address of a patent holder | ||
CP02 | Change in the address of a patent holder |
Address after: I Si Eli Murli Nor, France Patentee after: THOMSON LICENSING Address before: La France Patentee before: THOMSON LICENSING |
|
TR01 | Transfer of patent right | ||
TR01 | Transfer of patent right |
Effective date of registration: 20190516 Address after: Paris France Patentee after: Interactive digital CE patent holding Co. Address before: I Si Eli Murli Nor, France Patentee before: THOMSON LICENSING |
|
CF01 | Termination of patent right due to non-payment of annual fee | ||
CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20110504 Termination date: 20210609 |