IL189530D0 - Method and apparatus for deep packet inspection for network intrusion detection - Google Patents

Method and apparatus for deep packet inspection for network intrusion detection

Info

Publication number
IL189530D0
IL189530D0 IL189530A IL18953008A IL189530D0 IL 189530 D0 IL189530 D0 IL 189530D0 IL 189530 A IL189530 A IL 189530A IL 18953008 A IL18953008 A IL 18953008A IL 189530 D0 IL189530 D0 IL 189530D0
Authority
IL
Israel
Prior art keywords
apparatus
method
intrusion detection
packet inspection
deep packet
Prior art date
Application number
IL189530A
Original Assignee
Marvell Software Solutions Isr
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority to US89009407P priority Critical
Application filed by Marvell Software Solutions Isr filed Critical Marvell Software Solutions Isr
Publication of IL189530D0 publication Critical patent/IL189530D0/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L47/00Traffic regulation in packet switching networks
    • H04L47/10Flow control or congestion control
    • H04L47/12Congestion avoidance or recovery
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1408Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/20Network architectures or network communication protocols for network security for managing network security; network security policies in general
IL189530A 2007-02-15 2008-02-14 Method and apparatus for deep packet inspection for network intrusion detection IL189530D0 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
US89009407P true 2007-02-15 2007-02-15

Publications (1)

Publication Number Publication Date
IL189530D0 true IL189530D0 (en) 2009-02-11

Family

ID=39707774

Family Applications (1)

Application Number Title Priority Date Filing Date
IL189530A IL189530D0 (en) 2007-02-15 2008-02-14 Method and apparatus for deep packet inspection for network intrusion detection

Country Status (2)

Country Link
US (2) US8448234B2 (en)
IL (1) IL189530D0 (en)

Families Citing this family (98)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6226680B1 (en) * 1997-10-14 2001-05-01 Alacritech, Inc. Intelligent network interface system method for protocol processing
FR2907294A1 (en) * 2006-10-16 2008-04-18 France Telecom Method for routing a sip message in case of unavailable intermediate nodes
IL189530D0 (en) 2007-02-15 2009-02-11 Marvell Software Solutions Isr Method and apparatus for deep packet inspection for network intrusion detection
US8284662B2 (en) 2007-03-06 2012-10-09 Ericsson Ab Flexible, cost-effective solution for peer-to-peer, gaming, and application traffic detection and treatment
US7861260B2 (en) 2007-04-17 2010-12-28 Almondnet, Inc. Targeted television advertisements based on online behavior
US8416773B2 (en) * 2007-07-11 2013-04-09 Hewlett-Packard Development Company, L.P. Packet monitoring
US7733805B2 (en) * 2007-07-25 2010-06-08 Brocade Communications Systems, Inc. Method and apparatus for determining bandwidth-consuming frame flows in a network
US8000244B1 (en) * 2007-08-03 2011-08-16 Hewlett-Packard Development Company, L.P. Shared rate limiters using floating buckets
TWI362868B (en) * 2007-10-05 2012-04-21 Realtek Semiconductor Corp
US8566164B2 (en) * 2007-12-31 2013-10-22 Intent IQ, LLC Targeted online advertisements based on viewing or interacting with television advertisements
US20090235355A1 (en) * 2008-03-17 2009-09-17 Inventec Corporation Network intrusion protection system
JP4962394B2 (en) * 2008-04-21 2012-06-27 富士通株式会社 Packet transfer control device and packet transfer control method
US8819823B1 (en) * 2008-06-02 2014-08-26 Symantec Corporation Method and apparatus for notifying a recipient of a threat within previously communicated data
CN102160452B (en) 2008-06-05 2015-02-04 凯敏公司 Method and system for providing mobility management in network
US8813168B2 (en) 2008-06-05 2014-08-19 Tekelec, Inc. Methods, systems, and computer readable media for providing nested policy configuration in a communications network
US8234255B1 (en) * 2008-08-20 2012-07-31 Juniper Networks, Inc. Reducing data transfer for matching patterns
WO2010025776A1 (en) * 2008-09-08 2010-03-11 Nokia Siemens Networks Oy Method and device for classifying traffic flows in a packet-based wireless communication system
US20100128665A1 (en) * 2008-11-21 2010-05-27 Alcatel-Lucent Usa Inc. Method for providing signaling between a core network and a radio access network
US9152483B2 (en) 2009-01-16 2015-10-06 F5 Networks, Inc. Network devices with multiple fully isolated and independently resettable direct memory access channels and methods thereof
US8880696B1 (en) 2009-01-16 2014-11-04 F5 Networks, Inc. Methods for sharing bandwidth across a packetized bus and systems thereof
US8112491B1 (en) 2009-01-16 2012-02-07 F5 Networks, Inc. Methods and systems for providing direct DMA
US8266673B2 (en) * 2009-03-12 2012-09-11 At&T Mobility Ii Llc Policy-based privacy protection in converged communication networks
US9390133B2 (en) * 2009-03-25 2016-07-12 The Quantum Group, Inc. Method and system for regulating entry of data into a protected system
KR101010248B1 (en) * 2009-07-02 2011-01-21 충남대학교산학협력단 Method and Device to Control the Load of a Packet Inspection Device
US8429268B2 (en) * 2009-07-24 2013-04-23 Camiant, Inc. Mechanism for detecting and reporting traffic/service to a PCRF
CN101964728B (en) * 2009-07-24 2012-06-13 中兴通讯股份有限公司 Method and system for registering DPI equipment
JP5536891B2 (en) * 2009-09-01 2014-07-02 エヌイーシー ヨーロッパ リミテッドNec Europe Ltd. Network monitoring method and network including monitoring function
US20110072515A1 (en) * 2009-09-22 2011-03-24 Electronics And Telecommunications Research Institute Method and apparatus for collaboratively protecting against distributed denial of service attack
JP4911211B2 (en) * 2009-09-30 2012-04-04 沖電気工業株式会社 Server, network device, client and network system composed of these
WO2011056101A1 (en) * 2009-11-04 2011-05-12 Saab Ab Centralized supervision of network traffic
US9313047B2 (en) 2009-11-06 2016-04-12 F5 Networks, Inc. Handling high throughput and low latency network data packets in a traffic management device
EP2328315A1 (en) * 2009-11-30 2011-06-01 BAE Systems PLC Processing network traffic
AU2010322819B2 (en) * 2009-11-30 2014-11-27 Bae Systems Plc Processing network traffic
US8640188B2 (en) * 2010-01-04 2014-01-28 Tekelec, Inc. Methods, systems, and computer readable media for providing group policy configuration in a communications network using a fake user
US8301786B2 (en) * 2010-02-10 2012-10-30 Cisco Technology, Inc. Application session control using packet inspection
US9166803B2 (en) * 2010-02-12 2015-10-20 Tekelec, Inc. Methods, systems, and computer readable media for service detection over an RX interface
WO2011109821A2 (en) 2010-03-05 2011-09-09 Tekelec Methods, systems, and computer readable media for enhanced service detection and policy rule determination
US9603058B2 (en) * 2010-03-15 2017-03-21 Tekelec, Inc. Methods, systems, and computer readable media for triggering a service node to initiate a session with a policy and charging rules function
US9319318B2 (en) 2010-03-15 2016-04-19 Tekelec, Inc. Methods, systems, and computer readable media for performing PCRF-based user information pass through
US8848715B2 (en) 2010-03-16 2014-09-30 Marvell Israel (M.I.S.L) Ltd. Combined hardware/software forwarding mechanism and method
CN103154884B (en) * 2010-10-27 2016-08-10 惠普发展公司,有限责任合伙企业 Mode detection
CN101984598B (en) 2010-11-04 2012-11-07 成都市华为赛门铁克科技有限公司 Message forwarding method and deep packet inspection (DPI) device
US20120150887A1 (en) * 2010-12-08 2012-06-14 Clark Christopher F Pattern matching
TWI411263B (en) * 2010-12-09 2013-10-01 Softnext Technologies Corp Network monitoring method and its system
US10122735B1 (en) * 2011-01-17 2018-11-06 Marvell Israel (M.I.S.L) Ltd. Switch having dynamic bypass per flow
US10135831B2 (en) 2011-01-28 2018-11-20 F5 Networks, Inc. System and method for combining an access control system with a traffic management system
US8724467B2 (en) 2011-02-04 2014-05-13 Cisco Technology, Inc. System and method for managing congestion in a network environment
US8630247B2 (en) 2011-02-15 2014-01-14 Cisco Technology, Inc. System and method for managing tracking area identity lists in a mobile network environment
US20120287784A1 (en) * 2011-05-10 2012-11-15 Cisco Technology, Inc. System and method for integrated quality of service in a wireless network environment
US8151341B1 (en) * 2011-05-23 2012-04-03 Kaspersky Lab Zao System and method for reducing false positives during detection of network attacks
WO2013032473A1 (en) * 2011-08-31 2013-03-07 Hewlett-Packard Development Company, L.P. Tiered deep packet inspection in network devices
US20130085864A1 (en) * 2011-10-03 2013-04-04 Hassan Ahmed Mobile content delivery
US8681794B2 (en) 2011-11-30 2014-03-25 Broadcom Corporation System and method for efficient matching of regular expression patterns across multiple packets
US8724496B2 (en) * 2011-11-30 2014-05-13 Broadcom Corporation System and method for integrating line-rate application recognition in a switch ASIC
KR101243323B1 (en) 2011-12-13 2013-03-13 강릉원주대학교산학협력단 Packet inspection method and apparatus in underwater acoustic sensor network(uw-asn)
US9252916B2 (en) 2012-02-13 2016-02-02 Affirmed Networks, Inc. Mobile video delivery
US9148368B2 (en) 2012-02-14 2015-09-29 International Business Machines Corporation Packet routing with analysis assist for embedded applications sharing a single network interface over multiple virtual networks
US9083644B2 (en) 2012-02-14 2015-07-14 International Business Machines Corporation Packet routing for embedded applications sharing a single network interface over multiple virtual networks
US8640239B2 (en) 2012-02-20 2014-01-28 International Business Machines Corporation Network intrusion detection in a network that includes a distributed virtual switch fabric
RU2488880C1 (en) * 2012-05-11 2013-07-27 Закрытое акционерное общество "Лаборатория Касперского" System and method of adaptive optimisation of inspection of data flow sent in network for availability of threats
US9198209B2 (en) 2012-08-21 2015-11-24 Cisco Technology, Inc. Providing integrated end-to-end architecture that includes quality of service transport for tunneled traffic
US8943587B2 (en) 2012-09-13 2015-01-27 Symantec Corporation Systems and methods for performing selective deep packet inspection
US9577875B2 (en) 2012-10-15 2017-02-21 International Business Machines Corporation Performing value and context aware communications networking
WO2014077614A1 (en) * 2012-11-19 2014-05-22 Samsung Sds Co., Ltd. Anti-malware system, method of processing data in the same, and computing device
US9774517B2 (en) * 2012-11-26 2017-09-26 EMC IP Holding Company LLC Correlative monitoring, analysis, and control of multi-service, multi-network systems
US9319351B1 (en) 2012-11-26 2016-04-19 Marvell Israel (M.I.S.L.) Ltd. Mechanism for wire-speed stateful packet inspection in packet processors
US9270602B1 (en) * 2012-12-31 2016-02-23 F5 Networks, Inc. Transmit rate pacing of large network traffic bursts to reduce jitter, buffer overrun, wasted bandwidth, and retransmissions
US20140198789A1 (en) * 2013-01-11 2014-07-17 Lsi Corporation Low latency in-line data compression for packet transmission systems
IL224482A (en) 2013-01-29 2018-08-30 Verint Systems Ltd System and method for keyword spotting using representative dictionary
US10375155B1 (en) 2013-02-19 2019-08-06 F5 Networks, Inc. System and method for achieving hardware acceleration for asymmetric flow connections
WO2014132136A2 (en) 2013-02-27 2014-09-04 Marvell World Trade Ltd. Efficient longest prefix matching techniques for network devices
US9201897B1 (en) * 2013-03-14 2015-12-01 The Mathworks, Inc. Global data storage combining multiple back-end storage devices
US9485215B2 (en) * 2013-04-11 2016-11-01 International Business Machines Corporation Multiple inspection avoidance (MIA) using a protection scope
US9244903B2 (en) * 2013-04-15 2016-01-26 Vmware, Inc. Efficient data pattern matching
US10318397B2 (en) 2013-04-15 2019-06-11 Vmware, Inc. Efficient data pattern matching
US9864606B2 (en) 2013-09-05 2018-01-09 F5 Networks, Inc. Methods for configurable hardware logic device reloading and devices thereof
EP3063916A1 (en) * 2013-10-29 2016-09-07 Telefonaktiebolaget LM Ericsson (publ) Dynamic compression coverage
CN105637831B (en) * 2013-12-12 2019-04-19 Nec实验室欧洲有限公司 For analyzing the method and system of data flow
EP3085051A1 (en) 2013-12-16 2016-10-26 F5 Networks, Inc Methods for facilitating improved user authentication using persistent data and devices thereof
US9813336B2 (en) * 2013-12-18 2017-11-07 Marvell Israel (M.I.S.L) Ltd. Device and method for increasing packet processing rate in a network device
IL230741D0 (en) * 2014-01-30 2014-08-31 Verint Systems Ltd Systems and methods for keyword spotting using alternating search algorithms
US9648018B2 (en) * 2014-05-02 2017-05-09 Oracle International Corporation Methods, systems, and computer readable media for controlling deep parsing of diameter messages
EP3142289A4 (en) * 2014-05-08 2017-05-17 Panasonic Intellectual Property Corporation of America In-vehicle network system, electronic control unit, and irregularity detection method
US10015143B1 (en) 2014-06-05 2018-07-03 F5 Networks, Inc. Methods for securing one or more license entitlement grants and devices thereof
US20160179063A1 (en) * 2014-12-17 2016-06-23 Microsoft Technology Licensing, Llc Pipeline generation for data stream actuated control
US10397277B2 (en) * 2015-06-14 2019-08-27 Avocado Systems Inc. Dynamic data socket descriptor mirroring mechanism and use for security analytics
US10356068B2 (en) 2015-07-14 2019-07-16 Avocado Systems Inc. Security key generator module for security sensitive applications
CN107925611A (en) * 2015-08-05 2018-04-17 高通股份有限公司 Deep packet for moving CDN inspects instruction
US10354070B2 (en) 2015-08-22 2019-07-16 Avocado Systems Inc. Thread level access control to socket descriptors and end-to-end thread level policies for thread protection
US9781158B1 (en) * 2015-09-30 2017-10-03 EMC IP Holding Company LLC Integrated paronymous network address detection
US9979740B2 (en) * 2015-12-15 2018-05-22 Flying Cloud Technologies, Inc. Data surveillance system
US20170201533A1 (en) * 2016-01-12 2017-07-13 T-Mobile Usa, Inc. Mobile aware intrusion detection system
WO2017138936A1 (en) * 2016-02-10 2017-08-17 Hewlett Packard Enterprise Development Lp Determining pattern match based on circuit match and hash value match
US10084752B2 (en) 2016-02-26 2018-09-25 Microsoft Technology Licensing, Llc Hybrid hardware-software distributed threat analysis
US9819699B1 (en) 2016-10-13 2017-11-14 Fortress Cyber Security, LLC Systems and methods for network security memory reduction via distributed rulesets
US10298606B2 (en) * 2017-01-06 2019-05-21 Juniper Networks, Inc Apparatus, system, and method for accelerating security inspections using inline pattern matching
US9967272B1 (en) * 2017-12-05 2018-05-08 Redberry Systems, Inc. Real-time regular expression search engine
US10333898B1 (en) * 2018-07-09 2019-06-25 Centripetal Networks, Inc. Methods and systems for efficient network protection

Family Cites Families (26)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6999459B1 (en) 1998-07-10 2006-02-14 Pluris, Inc. System and method for facilitating recovery from communication link failures in a digital data network
US6687732B1 (en) 1998-09-28 2004-02-03 Inktomi Corporation Adaptive traffic bypassing in an intercepting network driver
US7126916B1 (en) 2000-08-24 2006-10-24 Efficient Networks, Inc. System and method for packet bypass in a communication system
US7075936B2 (en) 2000-11-02 2006-07-11 Agere Systems, Inc. Voice packet processor and method of operation thereof
US6876656B2 (en) 2001-06-15 2005-04-05 Broadcom Corporation Switch assisted frame aliasing for storage virtualization
US20050108518A1 (en) * 2003-06-10 2005-05-19 Pandya Ashish A. Runtime adaptable security processor
WO2004003794A1 (en) 2002-06-26 2004-01-08 E-Trees.Japan Inc. Method and device for quickly processing communication protocol by replacing software with hardware
US7742473B2 (en) 2002-11-12 2010-06-22 Mark Adams Accelerator module
JP3832431B2 (en) 2002-12-25 2006-10-11 ソニー株式会社 Image processing device
JP3825416B2 (en) 2003-04-14 2006-09-27 国立大学法人北陸先端科学技術大学院大学 Data synchronization method, data synchronization system, and data synchronization program
US7941827B2 (en) * 2004-02-26 2011-05-10 Packetmotion, Inc. Monitoring network traffic by using a monitor device
US7782902B2 (en) * 2004-07-14 2010-08-24 Audiocodes, Inc. Apparatus and method for mapping overlapping internet protocol addresses in layer two tunneling protocols
US20060174343A1 (en) 2004-11-30 2006-08-03 Sensory Networks, Inc. Apparatus and method for acceleration of security applications through pre-filtering
US20070039051A1 (en) * 2004-11-30 2007-02-15 Sensory Networks, Inc. Apparatus And Method For Acceleration of Security Applications Through Pre-Filtering
US7546471B2 (en) * 2005-01-14 2009-06-09 Microsoft Corporation Method and system for virus detection using pattern matching techniques
CN1969475B (en) * 2005-03-25 2012-07-04 桥扬科技有限公司 Methods and apparatus for cellular broadcasting and communication system
US7480747B2 (en) 2005-06-08 2009-01-20 Intel Corporation Method and apparatus to reduce latency and improve throughput of input/output data in a processor
US7486673B2 (en) * 2005-08-29 2009-02-03 Connect Technologies Corporation Method and system for reassembling packets prior to searching
GB0602314D0 (en) 2006-02-06 2006-03-15 Ericsson Telefon Ab L M Transporting packets
JP4652276B2 (en) 2006-05-17 2011-03-16 富士通株式会社 Communication system and management device and relay device used for the same
FR2907294A1 (en) 2006-10-16 2008-04-18 France Telecom Method for routing a sip message in case of unavailable intermediate nodes
US7680115B2 (en) 2007-01-19 2010-03-16 Harris Corporation Internet protocol based encryptor/decryptor bypass device
US7644187B2 (en) 2007-02-02 2010-01-05 Harris Corporation Internet protocol based encryptor/decryptor two stage bypass device
IL189530D0 (en) 2007-02-15 2009-02-11 Marvell Software Solutions Isr Method and apparatus for deep packet inspection for network intrusion detection
US7570640B2 (en) 2007-04-09 2009-08-04 Hewlett-Packard Development Company, L.P. Locating original port information
US8139515B2 (en) 2007-12-27 2012-03-20 Motorola Mobility, Inc. Device and method of managing data communications of a device in a network via a split tunnel mode connection

Also Published As

Publication number Publication date
US20130254421A1 (en) 2013-09-26
US20080201772A1 (en) 2008-08-21
US8448234B2 (en) 2013-05-21
US9973430B2 (en) 2018-05-15

Similar Documents

Publication Publication Date Title
GB2466475B (en) Wellbore apparatus and method
GB2457894B (en) Downhole apparatus and method
TWI372369B (en) Intruder detection system and method
TWI561094B (en) Method and apparatus for monitoring and processing component carriers
EP2326047A4 (en) Method for terminal configuration and management and terminal apparatus
IL208449A (en) Method and device for operating an access network
EP2374079A4 (en) Method and apparatus for obfuscating context information
EP2158461A4 (en) Electric-field-enhancement structure and detection apparatus using same
EP2339784A4 (en) Method and device for measuring network performance parameters
BRPI0808115A2 (en) METHOD and APPARATUS FOR COEXISTENCE
EP2265324A4 (en) Method and apparatus for analyte detecting device
EP2028454A4 (en) An environmental monitoring apparatus and method thereof
GB0807107D0 (en) Method and apparatus for assessing communications
EP2115612A4 (en) Method and apparatus for identifying enclosures and devices
GB0703423D0 (en) Calibration method and apparatus
GB0921200D0 (en) Framework and method for monitoring equipment
GB0818193D0 (en) Apparatus and method
EP2174135A4 (en) Electrochemical analyte detection apparatus and method
EP2331233A4 (en) Apparatus and method thereof
GB0821364D0 (en) Audience measurement apparatus, system and method
GB0717150D0 (en) Apparatus and method
GB0818605D0 (en) Apparatus and method
EP2095102A4 (en) Inspection apparatus and method
EP1915671A4 (en) Apparatus and method for facilitating network security
PL2208301T3 (en) Method and apparatus for pcdp discard