DE60312235D1 - Verfahren und system zur eindringverhinderung und ablenkung - Google Patents

Verfahren und system zur eindringverhinderung und ablenkung

Info

Publication number
DE60312235D1
DE60312235D1 DE60312235T DE60312235T DE60312235D1 DE 60312235 D1 DE60312235 D1 DE 60312235D1 DE 60312235 T DE60312235 T DE 60312235T DE 60312235 T DE60312235 T DE 60312235T DE 60312235 D1 DE60312235 D1 DE 60312235D1
Authority
DE
Germany
Prior art keywords
test system
communication entities
adverse effect
machines
traffic
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Lifetime
Application number
DE60312235T
Other languages
English (en)
Other versions
DE60312235T2 (de
Inventor
Stefano Brusotti
Zabetta Francesco Coda
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Telecom Italia SpA
Original Assignee
Telecom Italia SpA
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Telecom Italia SpA filed Critical Telecom Italia SpA
Application granted granted Critical
Publication of DE60312235D1 publication Critical patent/DE60312235D1/de
Publication of DE60312235T2 publication Critical patent/DE60312235T2/de
Anticipated expiration legal-status Critical
Expired - Lifetime legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1408Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L43/00Arrangements for monitoring or testing data switching networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Computer Security & Cryptography (AREA)
  • Signal Processing (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Computer And Data Communications (AREA)
  • Machines For Manufacturing Corrugated Board In Mechanical Paper-Making Processes (AREA)
  • Manufacture, Treatment Of Glass Fibers (AREA)
  • Electrical Discharge Machining, Electrochemical Machining, And Combined Machining (AREA)
  • Supply And Distribution Of Alternating Current (AREA)
  • Small-Scale Networks (AREA)
DE60312235T 2003-10-30 2003-10-30 Verfahren und system zur eindringverhinderung und ablenkung Expired - Lifetime DE60312235T2 (de)

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/EP2003/012090 WO2005050414A1 (en) 2003-10-30 2003-10-30 Method and system for intrusion prevention and deflection,

Publications (2)

Publication Number Publication Date
DE60312235D1 true DE60312235D1 (de) 2007-04-12
DE60312235T2 DE60312235T2 (de) 2007-11-08

Family

ID=34610011

Family Applications (1)

Application Number Title Priority Date Filing Date
DE60312235T Expired - Lifetime DE60312235T2 (de) 2003-10-30 2003-10-30 Verfahren und system zur eindringverhinderung und ablenkung

Country Status (8)

Country Link
US (1) US8356349B2 (de)
EP (1) EP1678567B1 (de)
AT (1) ATE355553T1 (de)
AU (1) AU2003304558A1 (de)
BR (1) BR0318587A (de)
DE (1) DE60312235T2 (de)
ES (1) ES2282739T3 (de)
WO (1) WO2005050414A1 (de)

Families Citing this family (39)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8839417B1 (en) 2003-11-17 2014-09-16 Mcafee, Inc. Device, system and method for defending a computer network
US7555777B2 (en) * 2004-01-13 2009-06-30 International Business Machines Corporation Preventing attacks in a data processing system
EP1751957A1 (de) * 2004-05-10 2007-02-14 France Télécom Unterdrückung von falschem alarm bei alarmen aus eindringungsdetektionssonden eines überwachten informationssystems
US20060015715A1 (en) * 2004-07-16 2006-01-19 Eric Anderson Automatically protecting network service from network attack
US7562389B1 (en) * 2004-07-30 2009-07-14 Cisco Technology, Inc. Method and system for network security
US7555774B2 (en) * 2004-08-02 2009-06-30 Cisco Technology, Inc. Inline intrusion detection using a single physical port
US7600257B2 (en) * 2004-10-13 2009-10-06 Sonicwall, Inc. Method and an apparatus to perform multiple packet payloads analysis
US7835361B1 (en) 2004-10-13 2010-11-16 Sonicwall, Inc. Method and apparatus for identifying data patterns in a file
US7647430B2 (en) * 2005-01-19 2010-01-12 Microsoft Corporation Remote command framework for devices
US7725938B2 (en) * 2005-01-20 2010-05-25 Cisco Technology, Inc. Inline intrusion detection
US7765183B2 (en) * 2005-04-23 2010-07-27 Cisco Technology, Inc Hierarchical tree of deterministic finite automata
US8863286B1 (en) 2007-06-05 2014-10-14 Sonicwall, Inc. Notification for reassembly-free file scanning
US8949827B2 (en) * 2007-06-22 2015-02-03 Red Hat, Inc. Tracking a virtual machine
US8336108B2 (en) * 2007-06-22 2012-12-18 Red Hat, Inc. Method and system for collaboration involving enterprise nodes
US8127290B2 (en) * 2007-06-22 2012-02-28 Red Hat, Inc. Method and system for direct insertion of a virtual machine driver
US8539570B2 (en) 2007-06-22 2013-09-17 Red Hat, Inc. Method for managing a virtual machine
US9727440B2 (en) 2007-06-22 2017-08-08 Red Hat, Inc. Automatic simulation of virtual machine performance
US9588821B2 (en) 2007-06-22 2017-03-07 Red Hat, Inc. Automatic determination of required resource allocation of virtual machines
US8984504B2 (en) 2007-06-22 2015-03-17 Red Hat, Inc. Method and system for determining a host machine by a virtual machine
US9678803B2 (en) 2007-06-22 2017-06-13 Red Hat, Inc. Migration of network entities to a cloud infrastructure
US9354960B2 (en) 2010-12-27 2016-05-31 Red Hat, Inc. Assigning virtual machines to business application service groups based on ranking of the virtual machines
US8429748B2 (en) * 2007-06-22 2013-04-23 Red Hat, Inc. Network traffic analysis using a dynamically updating ontological network description
US8191141B2 (en) 2007-06-22 2012-05-29 Red Hat, Inc. Method and system for cloaked observation and remediation of software attacks
US9569330B2 (en) 2007-06-22 2017-02-14 Red Hat, Inc. Performing dependency analysis on nodes of a business application service group
US7991723B1 (en) 2007-07-16 2011-08-02 Sonicwall, Inc. Data pattern analysis using optimized deterministic finite automaton
US8074278B2 (en) * 2007-09-14 2011-12-06 Fisher-Rosemount Systems, Inc. Apparatus and methods for intrusion protection in safety instrumented process control systems
US8325753B1 (en) * 2008-06-10 2012-12-04 Meru Networks Selective suppression of 802.11 ACK frames
US8813221B1 (en) 2008-09-25 2014-08-19 Sonicwall, Inc. Reassembly-free deep packet inspection on multi-core hardware
US9871807B2 (en) * 2009-06-12 2018-01-16 Microsoft Technology Licensing, Llc Generic protocol decoder for generic application-level protocol signatures
US9769149B1 (en) 2009-07-02 2017-09-19 Sonicwall Inc. Proxy-less secure sockets layer (SSL) data inspection
US8151341B1 (en) 2011-05-23 2012-04-03 Kaspersky Lab Zao System and method for reducing false positives during detection of network attacks
US9794275B1 (en) * 2013-06-28 2017-10-17 Symantec Corporation Lightweight replicas for securing cloud-based services
US9009782B2 (en) * 2013-08-19 2015-04-14 Freescale Semiconductor, Inc. Steering traffic among multiple network services using a centralized dispatcher
US9342415B2 (en) 2014-07-14 2016-05-17 International Business Machines Corporation Run-to-completion thread model for software bypass fail open for an inline intrusion protection system
US10419452B2 (en) 2015-07-28 2019-09-17 Sap Se Contextual monitoring and tracking of SSH sessions
US10015178B2 (en) 2015-07-28 2018-07-03 Sap Se Real-time contextual monitoring intrusion detection and prevention
US9641544B1 (en) 2015-09-18 2017-05-02 Palo Alto Networks, Inc. Automated insider threat prevention
US10855656B2 (en) 2017-09-15 2020-12-01 Palo Alto Networks, Inc. Fine-grained firewall policy enforcement using session app ID and endpoint process ID correlation
US10931637B2 (en) 2017-09-15 2021-02-23 Palo Alto Networks, Inc. Outbound/inbound lateral traffic punting based on process risk

Family Cites Families (18)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5557742A (en) * 1994-03-07 1996-09-17 Haystack Labs, Inc. Method and system for detecting intrusion into and misuse of a data processing system
US5802320A (en) * 1995-05-18 1998-09-01 Sun Microsystems, Inc. System for packet filtering of data packets at a computer network interface
US6279113B1 (en) * 1998-03-16 2001-08-21 Internet Tools, Inc. Dynamic signature inspection-based network intrusion detection
US6408391B1 (en) * 1998-05-06 2002-06-18 Prc Inc. Dynamic system defense for information warfare
US20020069356A1 (en) * 2000-06-12 2002-06-06 Kwang Tae Kim Integrated security gateway apparatus
US20060212572A1 (en) * 2000-10-17 2006-09-21 Yehuda Afek Protecting against malicious traffic
US7770223B2 (en) * 2001-04-12 2010-08-03 Computer Associates Think, Inc. Method and apparatus for security management via vicarious network devices
US7640434B2 (en) * 2001-05-31 2009-12-29 Trend Micro, Inc. Identification of undesirable content in responses sent in reply to a user request for content
US6513122B1 (en) * 2001-06-29 2003-01-28 Networks Associates Technology, Inc. Secure gateway for analyzing textual content to identify a harmful impact on computer systems with known vulnerabilities
WO2003010922A1 (en) * 2001-07-24 2003-02-06 Worldcom, Inc. Network security architecture
JP2003037859A (ja) 2001-07-26 2003-02-07 Matsushita Electric Ind Co Ltd 情報通知方法、情報端末装置、情報検知装置および情報通知システム
US7331061B1 (en) * 2001-09-07 2008-02-12 Secureworks, Inc. Integrated computer security management system and method
US7150042B2 (en) * 2001-12-06 2006-12-12 Mcafee, Inc. Techniques for performing malware scanning of files stored within a file storage device of a computer network
US9392002B2 (en) * 2002-01-31 2016-07-12 Nokia Technologies Oy System and method of providing virus protection at a gateway
US20030174725A1 (en) * 2002-03-15 2003-09-18 Broadcom Corporation IP multicast packet replication process and apparatus therefore
JP3794491B2 (ja) * 2002-08-20 2006-07-05 日本電気株式会社 攻撃防御システムおよび攻撃防御方法
US7469418B1 (en) * 2002-10-01 2008-12-23 Mirage Networks, Inc. Deterring network incursion
US6898632B2 (en) * 2003-03-31 2005-05-24 Finisar Corporation Network security tap for use with intrusion detection system

Also Published As

Publication number Publication date
DE60312235T2 (de) 2007-11-08
US20070058551A1 (en) 2007-03-15
EP1678567A1 (de) 2006-07-12
WO2005050414A1 (en) 2005-06-02
EP1678567B1 (de) 2007-02-28
ES2282739T3 (es) 2007-10-16
BR0318587A (pt) 2006-10-17
US8356349B2 (en) 2013-01-15
AU2003304558A1 (en) 2005-06-08
ATE355553T1 (de) 2006-03-15

Similar Documents

Publication Publication Date Title
DE60312235D1 (de) Verfahren und system zur eindringverhinderung und ablenkung
SE9904008D0 (sv) Förfarande vid maskin
DE60237715D1 (de) Mobiltelekommunikationseinrichtung, -system und verfahren mit mehreren sicherheitsniveaus
ATE353512T1 (de) Verfahren und system zur blinden modulationserfassung
AU2003275359A1 (en) System and method for risk detection and analysis in a computer network
DE602004027411D1 (de) System und verfahren zum gruppieren mehrerer vlans
DE602004021043D1 (de) Verfahren und system zur erkennung von attacken in drahtlosen datenkommunikationsnetzen
ES2123957T3 (es) Procedimiento para detectar interacciones de servicios de redes inteligentes.
DK1297440T3 (da) Sikkerhedskamera til et netværk
DE602005023500D1 (de) Verteilte rückstreuung
EP1889081A4 (de) Verfahren und vorrichtung zur erkennung und behebung von defekten in einem inline-strom-fähigen ethernetsystem
ATE543111T1 (de) Vorrichtung und verfahren zum erkennen eines objekts in oder an einer verschliessbaren öffnung
ATE369668T1 (de) Verfahren zur betriebsüberwachung eines zellularen funksystems
ATE514245T1 (de) Verfahren und vorrichtung zur bestimmung von verwürfelungscodes für die signalübertragung
BR0213272A (pt) método para processar sub-pacotes partilhados em sistema de comunicação
BR0311876A (pt) Método e equipamento para terminar automaticamente uma chamada
ATE484131T1 (de) Verfahren und vorrichtung zum betreiben eines netzwerks und kommunikationssystem mit einer derartigen vorrichtung
BRPI0408329A (pt) método e sistema para uma transmissão de dados em um sistema de comunicação
DE50202656D1 (de) Verfahren zum Betreiben eines Übertragungssystems und Übertragungssystem in einem Energieversorgungsnetz
TWI265709B (en) Communications apparatus, systems, and methods
DE60013841D1 (de) Integriertes modem sowie schaltung zur leitungsisolierung und verfahren dazu
ATE453263T1 (de) Blockierungserkennung in einem telekommunikationsnetz
WO2007050589A3 (en) Collecting signaling messages associated with prepaid calls
ATE222436T1 (de) Verfahren zum etablieren eines gemeinsamen schlüssels zwischen einer zentrale und einer gruppe von teilnehmern
ATE470906T1 (de) Verfahren und vorrichtung zur überprufung einer überwachungsfunktion eines bussystems und bussystem

Legal Events

Date Code Title Description
8364 No opposition during term of opposition