DE60312235D1 - Verfahren und system zur eindringverhinderung und ablenkung - Google Patents
Verfahren und system zur eindringverhinderung und ablenkungInfo
- Publication number
- DE60312235D1 DE60312235D1 DE60312235T DE60312235T DE60312235D1 DE 60312235 D1 DE60312235 D1 DE 60312235D1 DE 60312235 T DE60312235 T DE 60312235T DE 60312235 T DE60312235 T DE 60312235T DE 60312235 D1 DE60312235 D1 DE 60312235D1
- Authority
- DE
- Germany
- Prior art keywords
- test system
- communication entities
- adverse effect
- machines
- traffic
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Lifetime
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L43/00—Arrangements for monitoring or testing data switching networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Computer Security & Cryptography (AREA)
- Signal Processing (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
- Computer And Data Communications (AREA)
- Machines For Manufacturing Corrugated Board In Mechanical Paper-Making Processes (AREA)
- Manufacture, Treatment Of Glass Fibers (AREA)
- Electrical Discharge Machining, Electrochemical Machining, And Combined Machining (AREA)
- Supply And Distribution Of Alternating Current (AREA)
- Small-Scale Networks (AREA)
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
PCT/EP2003/012090 WO2005050414A1 (en) | 2003-10-30 | 2003-10-30 | Method and system for intrusion prevention and deflection, |
Publications (2)
Publication Number | Publication Date |
---|---|
DE60312235D1 true DE60312235D1 (de) | 2007-04-12 |
DE60312235T2 DE60312235T2 (de) | 2007-11-08 |
Family
ID=34610011
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
DE60312235T Expired - Lifetime DE60312235T2 (de) | 2003-10-30 | 2003-10-30 | Verfahren und system zur eindringverhinderung und ablenkung |
Country Status (8)
Country | Link |
---|---|
US (1) | US8356349B2 (de) |
EP (1) | EP1678567B1 (de) |
AT (1) | ATE355553T1 (de) |
AU (1) | AU2003304558A1 (de) |
BR (1) | BR0318587A (de) |
DE (1) | DE60312235T2 (de) |
ES (1) | ES2282739T3 (de) |
WO (1) | WO2005050414A1 (de) |
Families Citing this family (39)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US8839417B1 (en) | 2003-11-17 | 2014-09-16 | Mcafee, Inc. | Device, system and method for defending a computer network |
US7555777B2 (en) * | 2004-01-13 | 2009-06-30 | International Business Machines Corporation | Preventing attacks in a data processing system |
EP1751957A1 (de) * | 2004-05-10 | 2007-02-14 | France Télécom | Unterdrückung von falschem alarm bei alarmen aus eindringungsdetektionssonden eines überwachten informationssystems |
US20060015715A1 (en) * | 2004-07-16 | 2006-01-19 | Eric Anderson | Automatically protecting network service from network attack |
US7562389B1 (en) * | 2004-07-30 | 2009-07-14 | Cisco Technology, Inc. | Method and system for network security |
US7555774B2 (en) * | 2004-08-02 | 2009-06-30 | Cisco Technology, Inc. | Inline intrusion detection using a single physical port |
US7600257B2 (en) * | 2004-10-13 | 2009-10-06 | Sonicwall, Inc. | Method and an apparatus to perform multiple packet payloads analysis |
US7835361B1 (en) | 2004-10-13 | 2010-11-16 | Sonicwall, Inc. | Method and apparatus for identifying data patterns in a file |
US7647430B2 (en) * | 2005-01-19 | 2010-01-12 | Microsoft Corporation | Remote command framework for devices |
US7725938B2 (en) * | 2005-01-20 | 2010-05-25 | Cisco Technology, Inc. | Inline intrusion detection |
US7765183B2 (en) * | 2005-04-23 | 2010-07-27 | Cisco Technology, Inc | Hierarchical tree of deterministic finite automata |
US8863286B1 (en) | 2007-06-05 | 2014-10-14 | Sonicwall, Inc. | Notification for reassembly-free file scanning |
US8949827B2 (en) * | 2007-06-22 | 2015-02-03 | Red Hat, Inc. | Tracking a virtual machine |
US8336108B2 (en) * | 2007-06-22 | 2012-12-18 | Red Hat, Inc. | Method and system for collaboration involving enterprise nodes |
US8127290B2 (en) * | 2007-06-22 | 2012-02-28 | Red Hat, Inc. | Method and system for direct insertion of a virtual machine driver |
US8539570B2 (en) | 2007-06-22 | 2013-09-17 | Red Hat, Inc. | Method for managing a virtual machine |
US9727440B2 (en) | 2007-06-22 | 2017-08-08 | Red Hat, Inc. | Automatic simulation of virtual machine performance |
US9588821B2 (en) | 2007-06-22 | 2017-03-07 | Red Hat, Inc. | Automatic determination of required resource allocation of virtual machines |
US8984504B2 (en) | 2007-06-22 | 2015-03-17 | Red Hat, Inc. | Method and system for determining a host machine by a virtual machine |
US9678803B2 (en) | 2007-06-22 | 2017-06-13 | Red Hat, Inc. | Migration of network entities to a cloud infrastructure |
US9354960B2 (en) | 2010-12-27 | 2016-05-31 | Red Hat, Inc. | Assigning virtual machines to business application service groups based on ranking of the virtual machines |
US8429748B2 (en) * | 2007-06-22 | 2013-04-23 | Red Hat, Inc. | Network traffic analysis using a dynamically updating ontological network description |
US8191141B2 (en) | 2007-06-22 | 2012-05-29 | Red Hat, Inc. | Method and system for cloaked observation and remediation of software attacks |
US9569330B2 (en) | 2007-06-22 | 2017-02-14 | Red Hat, Inc. | Performing dependency analysis on nodes of a business application service group |
US7991723B1 (en) | 2007-07-16 | 2011-08-02 | Sonicwall, Inc. | Data pattern analysis using optimized deterministic finite automaton |
US8074278B2 (en) * | 2007-09-14 | 2011-12-06 | Fisher-Rosemount Systems, Inc. | Apparatus and methods for intrusion protection in safety instrumented process control systems |
US8325753B1 (en) * | 2008-06-10 | 2012-12-04 | Meru Networks | Selective suppression of 802.11 ACK frames |
US8813221B1 (en) | 2008-09-25 | 2014-08-19 | Sonicwall, Inc. | Reassembly-free deep packet inspection on multi-core hardware |
US9871807B2 (en) * | 2009-06-12 | 2018-01-16 | Microsoft Technology Licensing, Llc | Generic protocol decoder for generic application-level protocol signatures |
US9769149B1 (en) | 2009-07-02 | 2017-09-19 | Sonicwall Inc. | Proxy-less secure sockets layer (SSL) data inspection |
US8151341B1 (en) | 2011-05-23 | 2012-04-03 | Kaspersky Lab Zao | System and method for reducing false positives during detection of network attacks |
US9794275B1 (en) * | 2013-06-28 | 2017-10-17 | Symantec Corporation | Lightweight replicas for securing cloud-based services |
US9009782B2 (en) * | 2013-08-19 | 2015-04-14 | Freescale Semiconductor, Inc. | Steering traffic among multiple network services using a centralized dispatcher |
US9342415B2 (en) | 2014-07-14 | 2016-05-17 | International Business Machines Corporation | Run-to-completion thread model for software bypass fail open for an inline intrusion protection system |
US10419452B2 (en) | 2015-07-28 | 2019-09-17 | Sap Se | Contextual monitoring and tracking of SSH sessions |
US10015178B2 (en) | 2015-07-28 | 2018-07-03 | Sap Se | Real-time contextual monitoring intrusion detection and prevention |
US9641544B1 (en) | 2015-09-18 | 2017-05-02 | Palo Alto Networks, Inc. | Automated insider threat prevention |
US10855656B2 (en) | 2017-09-15 | 2020-12-01 | Palo Alto Networks, Inc. | Fine-grained firewall policy enforcement using session app ID and endpoint process ID correlation |
US10931637B2 (en) | 2017-09-15 | 2021-02-23 | Palo Alto Networks, Inc. | Outbound/inbound lateral traffic punting based on process risk |
Family Cites Families (18)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US5557742A (en) * | 1994-03-07 | 1996-09-17 | Haystack Labs, Inc. | Method and system for detecting intrusion into and misuse of a data processing system |
US5802320A (en) * | 1995-05-18 | 1998-09-01 | Sun Microsystems, Inc. | System for packet filtering of data packets at a computer network interface |
US6279113B1 (en) * | 1998-03-16 | 2001-08-21 | Internet Tools, Inc. | Dynamic signature inspection-based network intrusion detection |
US6408391B1 (en) * | 1998-05-06 | 2002-06-18 | Prc Inc. | Dynamic system defense for information warfare |
US20020069356A1 (en) * | 2000-06-12 | 2002-06-06 | Kwang Tae Kim | Integrated security gateway apparatus |
US20060212572A1 (en) * | 2000-10-17 | 2006-09-21 | Yehuda Afek | Protecting against malicious traffic |
US7770223B2 (en) * | 2001-04-12 | 2010-08-03 | Computer Associates Think, Inc. | Method and apparatus for security management via vicarious network devices |
US7640434B2 (en) * | 2001-05-31 | 2009-12-29 | Trend Micro, Inc. | Identification of undesirable content in responses sent in reply to a user request for content |
US6513122B1 (en) * | 2001-06-29 | 2003-01-28 | Networks Associates Technology, Inc. | Secure gateway for analyzing textual content to identify a harmful impact on computer systems with known vulnerabilities |
WO2003010922A1 (en) * | 2001-07-24 | 2003-02-06 | Worldcom, Inc. | Network security architecture |
JP2003037859A (ja) | 2001-07-26 | 2003-02-07 | Matsushita Electric Ind Co Ltd | 情報通知方法、情報端末装置、情報検知装置および情報通知システム |
US7331061B1 (en) * | 2001-09-07 | 2008-02-12 | Secureworks, Inc. | Integrated computer security management system and method |
US7150042B2 (en) * | 2001-12-06 | 2006-12-12 | Mcafee, Inc. | Techniques for performing malware scanning of files stored within a file storage device of a computer network |
US9392002B2 (en) * | 2002-01-31 | 2016-07-12 | Nokia Technologies Oy | System and method of providing virus protection at a gateway |
US20030174725A1 (en) * | 2002-03-15 | 2003-09-18 | Broadcom Corporation | IP multicast packet replication process and apparatus therefore |
JP3794491B2 (ja) * | 2002-08-20 | 2006-07-05 | 日本電気株式会社 | 攻撃防御システムおよび攻撃防御方法 |
US7469418B1 (en) * | 2002-10-01 | 2008-12-23 | Mirage Networks, Inc. | Deterring network incursion |
US6898632B2 (en) * | 2003-03-31 | 2005-05-24 | Finisar Corporation | Network security tap for use with intrusion detection system |
-
2003
- 2003-10-30 EP EP03819020A patent/EP1678567B1/de not_active Expired - Lifetime
- 2003-10-30 DE DE60312235T patent/DE60312235T2/de not_active Expired - Lifetime
- 2003-10-30 AT AT03819020T patent/ATE355553T1/de not_active IP Right Cessation
- 2003-10-30 BR BRPI0318587-7A patent/BR0318587A/pt not_active IP Right Cessation
- 2003-10-30 US US10/576,250 patent/US8356349B2/en active Active
- 2003-10-30 AU AU2003304558A patent/AU2003304558A1/en not_active Abandoned
- 2003-10-30 WO PCT/EP2003/012090 patent/WO2005050414A1/en active IP Right Grant
- 2003-10-30 ES ES03819020T patent/ES2282739T3/es not_active Expired - Lifetime
Also Published As
Publication number | Publication date |
---|---|
DE60312235T2 (de) | 2007-11-08 |
US20070058551A1 (en) | 2007-03-15 |
EP1678567A1 (de) | 2006-07-12 |
WO2005050414A1 (en) | 2005-06-02 |
EP1678567B1 (de) | 2007-02-28 |
ES2282739T3 (es) | 2007-10-16 |
BR0318587A (pt) | 2006-10-17 |
US8356349B2 (en) | 2013-01-15 |
AU2003304558A1 (en) | 2005-06-08 |
ATE355553T1 (de) | 2006-03-15 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
DE60312235D1 (de) | Verfahren und system zur eindringverhinderung und ablenkung | |
SE9904008D0 (sv) | Förfarande vid maskin | |
DE60237715D1 (de) | Mobiltelekommunikationseinrichtung, -system und verfahren mit mehreren sicherheitsniveaus | |
ATE353512T1 (de) | Verfahren und system zur blinden modulationserfassung | |
AU2003275359A1 (en) | System and method for risk detection and analysis in a computer network | |
DE602004027411D1 (de) | System und verfahren zum gruppieren mehrerer vlans | |
DE602004021043D1 (de) | Verfahren und system zur erkennung von attacken in drahtlosen datenkommunikationsnetzen | |
ES2123957T3 (es) | Procedimiento para detectar interacciones de servicios de redes inteligentes. | |
DK1297440T3 (da) | Sikkerhedskamera til et netværk | |
DE602005023500D1 (de) | Verteilte rückstreuung | |
EP1889081A4 (de) | Verfahren und vorrichtung zur erkennung und behebung von defekten in einem inline-strom-fähigen ethernetsystem | |
ATE543111T1 (de) | Vorrichtung und verfahren zum erkennen eines objekts in oder an einer verschliessbaren öffnung | |
ATE369668T1 (de) | Verfahren zur betriebsüberwachung eines zellularen funksystems | |
ATE514245T1 (de) | Verfahren und vorrichtung zur bestimmung von verwürfelungscodes für die signalübertragung | |
BR0213272A (pt) | método para processar sub-pacotes partilhados em sistema de comunicação | |
BR0311876A (pt) | Método e equipamento para terminar automaticamente uma chamada | |
ATE484131T1 (de) | Verfahren und vorrichtung zum betreiben eines netzwerks und kommunikationssystem mit einer derartigen vorrichtung | |
BRPI0408329A (pt) | método e sistema para uma transmissão de dados em um sistema de comunicação | |
DE50202656D1 (de) | Verfahren zum Betreiben eines Übertragungssystems und Übertragungssystem in einem Energieversorgungsnetz | |
TWI265709B (en) | Communications apparatus, systems, and methods | |
DE60013841D1 (de) | Integriertes modem sowie schaltung zur leitungsisolierung und verfahren dazu | |
ATE453263T1 (de) | Blockierungserkennung in einem telekommunikationsnetz | |
WO2007050589A3 (en) | Collecting signaling messages associated with prepaid calls | |
ATE222436T1 (de) | Verfahren zum etablieren eines gemeinsamen schlüssels zwischen einer zentrale und einer gruppe von teilnehmern | |
ATE470906T1 (de) | Verfahren und vorrichtung zur überprufung einer überwachungsfunktion eines bussystems und bussystem |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
8364 | No opposition during term of opposition |