JP5062967B2 - ネットワークアクセス制御方法、およびシステム - Google Patents
ネットワークアクセス制御方法、およびシステム Download PDFInfo
- Publication number
- JP5062967B2 JP5062967B2 JP2005160863A JP2005160863A JP5062967B2 JP 5062967 B2 JP5062967 B2 JP 5062967B2 JP 2005160863 A JP2005160863 A JP 2005160863A JP 2005160863 A JP2005160863 A JP 2005160863A JP 5062967 B2 JP5062967 B2 JP 5062967B2
- Authority
- JP
- Japan
- Prior art keywords
- layer
- terminal
- quarantine
- vlan
- switch
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
- 238000000034 method Methods 0.000 title description 22
- 230000004308 accommodation Effects 0.000 claims description 20
- 238000004891 communication Methods 0.000 claims description 14
- 230000008859 change Effects 0.000 claims description 10
- 230000009471 action Effects 0.000 claims description 2
- 238000007726 management method Methods 0.000 description 16
- 238000012550 audit Methods 0.000 description 7
- 238000010586 diagram Methods 0.000 description 7
- 238000004422 calculation algorithm Methods 0.000 description 6
- 230000005540 biological transmission Effects 0.000 description 4
- 238000005516 engineering process Methods 0.000 description 4
- 238000012544 monitoring process Methods 0.000 description 4
- 230000006870 function Effects 0.000 description 3
- 238000012545 processing Methods 0.000 description 3
- 230000002155 anti-virotic effect Effects 0.000 description 2
- 230000009385 viral infection Effects 0.000 description 2
- 241000700605 Viruses Species 0.000 description 1
- 230000002159 abnormal effect Effects 0.000 description 1
- 230000005856 abnormality Effects 0.000 description 1
- 238000001914 filtration Methods 0.000 description 1
- 238000009434 installation Methods 0.000 description 1
- 238000012423 maintenance Methods 0.000 description 1
- 230000004044 response Effects 0.000 description 1
- 230000007480 spreading Effects 0.000 description 1
- 230000007704 transition Effects 0.000 description 1
- 230000001960 triggered effect Effects 0.000 description 1
- 230000007482 viral spreading Effects 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/105—Multiple levels of security
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L43/00—Arrangements for monitoring or testing data switching networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0227—Filtering policies
- H04L63/0236—Filtering by address, protocol, port number or service, e.g. IP-address or URL
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/145—Countermeasures against malicious traffic the attack involving the propagation of malware through the network, e.g. viruses, trojans or worms
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Small-Scale Networks (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Priority Applications (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| JP2005160863A JP5062967B2 (ja) | 2005-06-01 | 2005-06-01 | ネットワークアクセス制御方法、およびシステム |
| US11/443,355 US7917621B2 (en) | 2005-06-01 | 2006-05-31 | Method and system for network access control |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| JP2005160863A JP5062967B2 (ja) | 2005-06-01 | 2005-06-01 | ネットワークアクセス制御方法、およびシステム |
Publications (3)
| Publication Number | Publication Date |
|---|---|
| JP2006339933A JP2006339933A (ja) | 2006-12-14 |
| JP2006339933A5 JP2006339933A5 (OSRAM) | 2008-06-26 |
| JP5062967B2 true JP5062967B2 (ja) | 2012-10-31 |
Family
ID=37494038
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| JP2005160863A Expired - Fee Related JP5062967B2 (ja) | 2005-06-01 | 2005-06-01 | ネットワークアクセス制御方法、およびシステム |
Country Status (2)
| Country | Link |
|---|---|
| US (1) | US7917621B2 (OSRAM) |
| JP (1) | JP5062967B2 (OSRAM) |
Families Citing this family (29)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP4546382B2 (ja) * | 2005-10-26 | 2010-09-15 | 株式会社日立製作所 | 機器検疫方法、および、機器検疫システム |
| JP4855162B2 (ja) * | 2006-07-14 | 2012-01-18 | 株式会社日立製作所 | パケット転送装置及び通信システム |
| JP4931553B2 (ja) * | 2006-10-31 | 2012-05-16 | 富士通株式会社 | ネットワーク間接続装置 |
| JP4895793B2 (ja) * | 2006-12-19 | 2012-03-14 | 株式会社日立製作所 | ネットワーク監視装置及びネットワーク監視方法 |
| US8250645B2 (en) * | 2008-06-25 | 2012-08-21 | Alcatel Lucent | Malware detection methods and systems for multiple users sharing common access switch |
| JP2008278134A (ja) * | 2007-04-27 | 2008-11-13 | Chuden Cti Co Ltd | ネットワーク制御装置、ネットワーク制御方法及びコンピュータプログラム |
| US8966075B1 (en) * | 2007-07-02 | 2015-02-24 | Pulse Secure, Llc | Accessing a policy server from multiple layer two networks |
| KR100875669B1 (ko) | 2008-05-19 | 2008-12-26 | (주)넷맨 | 인증요청자와 동일한 레벨에 위치한 인증자를 이용한네트워크 접근 제어 방법 및 그 시스템 |
| US8661252B2 (en) * | 2008-06-20 | 2014-02-25 | Microsoft Corporation | Secure network address provisioning |
| JP5443745B2 (ja) | 2008-12-01 | 2014-03-19 | 富士通株式会社 | スイッチ |
| JP2010136014A (ja) * | 2008-12-03 | 2010-06-17 | Hitachi Information & Communication Engineering Ltd | Macアドレス自動認証システム |
| US8918631B1 (en) * | 2009-03-31 | 2014-12-23 | Juniper Networks, Inc. | Methods and apparatus for dynamic automated configuration within a control plane of a switch fabric |
| US8514854B2 (en) * | 2009-06-11 | 2013-08-20 | Brocade Communications Systems, Inc. | Virtual router redundancy for server virtualization |
| US8862705B2 (en) * | 2009-07-30 | 2014-10-14 | Calix, Inc. | Secure DHCP processing for layer two access networks |
| US8341725B2 (en) | 2009-07-30 | 2012-12-25 | Calix, Inc. | Secure DHCP processing for layer two access networks |
| JP5398410B2 (ja) * | 2009-08-10 | 2014-01-29 | アラクサラネットワークス株式会社 | ネットワークシステム,パケット転送装置,パケット転送方法及びコンピュータプログラム |
| JP5088517B2 (ja) * | 2010-09-30 | 2012-12-05 | 日本電気株式会社 | 検疫装置、検疫システム、検疫方法、及びプログラム |
| JP5305045B2 (ja) * | 2011-03-29 | 2013-10-02 | 日本電気株式会社 | スイッチングハブ及び検疫ネットワークシステム |
| US8990891B1 (en) | 2011-04-19 | 2015-03-24 | Pulse Secure, Llc | Provisioning layer two network access for mobile devices |
| US8726338B2 (en) | 2012-02-02 | 2014-05-13 | Juniper Networks, Inc. | Dynamic threat protection in mobile networks |
| US9088438B2 (en) | 2013-01-29 | 2015-07-21 | Cisco Technology, Inc. | Using Ethernet ring protection switching with computer networks |
| JP5671639B2 (ja) * | 2014-04-10 | 2015-02-18 | 日立電線ネットワークス株式会社 | 検疫ネットワークシステム |
| CN105959282A (zh) * | 2016-04-28 | 2016-09-21 | 杭州迪普科技有限公司 | Dhcp攻击的防护方法及装置 |
| US20180212982A1 (en) * | 2017-01-23 | 2018-07-26 | Alaxala Networks Corporation | Network system, network controller, and network control method |
| JP6836460B2 (ja) * | 2017-01-23 | 2021-03-03 | アラクサラネットワークス株式会社 | ネットワークシステム、ネットワーク管理サーバ、ネットワーク制御方法およびプログラム |
| CN107483226B (zh) * | 2017-07-04 | 2022-02-22 | 联想(北京)有限公司 | 一种信息处理方法及电子设备 |
| DE102020114547B4 (de) * | 2020-05-29 | 2023-12-28 | Infineon Technologies Ag | Vorrichtung und verfahren zum abwickeln eines eingehenden kommunikations-datenrahmens |
| US11539731B2 (en) | 2020-10-26 | 2022-12-27 | Netskope, Inc. | Dynamic hyper context-driven microsegmentation |
| US11700282B2 (en) | 2020-10-26 | 2023-07-11 | Netskope, Inc. | Dynamic hyper context-driven microsegmentation |
Family Cites Families (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7379423B1 (en) * | 2003-03-20 | 2008-05-27 | Occam Networks, Inc. | Filtering subscriber traffic to prevent denial-of-service attacks |
| WO2005112390A1 (en) * | 2004-05-12 | 2005-11-24 | Alcatel | Automated containment of network intruder |
| US20050273853A1 (en) * | 2004-05-24 | 2005-12-08 | Toshiba America Research, Inc. | Quarantine networking |
| US20060203815A1 (en) * | 2005-03-10 | 2006-09-14 | Alain Couillard | Compliance verification and OSI layer 2 connection of device using said compliance verification |
| JP2006252256A (ja) * | 2005-03-11 | 2006-09-21 | Nec Soft Ltd | ネットワーク管理システム、方法およびプログラム |
-
2005
- 2005-06-01 JP JP2005160863A patent/JP5062967B2/ja not_active Expired - Fee Related
-
2006
- 2006-05-31 US US11/443,355 patent/US7917621B2/en not_active Expired - Fee Related
Also Published As
| Publication number | Publication date |
|---|---|
| JP2006339933A (ja) | 2006-12-14 |
| US7917621B2 (en) | 2011-03-29 |
| US20060274768A1 (en) | 2006-12-07 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| JP5062967B2 (ja) | ネットワークアクセス制御方法、およびシステム | |
| US8966075B1 (en) | Accessing a policy server from multiple layer two networks | |
| US7792990B2 (en) | Remote client remediation | |
| US7536715B2 (en) | Distributed firewall system and method | |
| US7873038B2 (en) | Packet processing | |
| US8132233B2 (en) | Dynamic network access control method and apparatus | |
| EP1969777B1 (en) | Method for operating several virtual networks | |
| US9215237B2 (en) | Communication system, control device, communication method, and program | |
| US9118716B2 (en) | Computer system, controller and network monitoring method | |
| US8230480B2 (en) | Method and apparatus for network security based on device security status | |
| JP5660202B2 (ja) | コンピュータシステム、コントローラ、及びネットワークアクセスポリシ制御方法 | |
| US7826393B2 (en) | Management computer and computer system for setting port configuration information | |
| US20190250938A1 (en) | Computer system architecture and computer network infrastructure including a plurality of such computer system architectures | |
| JP5143199B2 (ja) | ネットワーク中継装置 | |
| JP2008271339A (ja) | セキュリティゲートウェイシステムとその方法およびプログラム | |
| EP4323898B1 (en) | Computer-implemented methods and systems for establishing and/or controlling network connectivity | |
| KR101529839B1 (ko) | 방화벽 클러스터에서의 인증 공유 | |
| JP5882961B2 (ja) | コントローラ、コンピュータシステム、ネットワーク構成変更方法、及びネットワーク構成変更プログラム | |
| JP6117050B2 (ja) | ネットワーク制御装置 | |
| JP2013134711A (ja) | 医療クラウドシステム | |
| JP3887325B2 (ja) | データ通信網システムおよびデータ通信網接続制御方法 | |
| Achari | Advanced Cybersecurity Tactics | |
| Toivakka | Network segmentation |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| A521 | Written amendment |
Free format text: JAPANESE INTERMEDIATE CODE: A523 Effective date: 20080328 |
|
| A621 | Written request for application examination |
Free format text: JAPANESE INTERMEDIATE CODE: A621 Effective date: 20080328 |
|
| A521 | Written amendment |
Free format text: JAPANESE INTERMEDIATE CODE: A523 Effective date: 20080328 |
|
| A977 | Report on retrieval |
Free format text: JAPANESE INTERMEDIATE CODE: A971007 Effective date: 20100906 |
|
| A131 | Notification of reasons for refusal |
Free format text: JAPANESE INTERMEDIATE CODE: A131 Effective date: 20100914 |
|
| A521 | Written amendment |
Free format text: JAPANESE INTERMEDIATE CODE: A523 Effective date: 20101111 |
|
| A02 | Decision of refusal |
Free format text: JAPANESE INTERMEDIATE CODE: A02 Effective date: 20110125 |
|
| A521 | Written amendment |
Free format text: JAPANESE INTERMEDIATE CODE: A523 Effective date: 20110401 |
|
| A521 | Written amendment |
Free format text: JAPANESE INTERMEDIATE CODE: A523 Effective date: 20110401 |
|
| A911 | Transfer to examiner for re-examination before appeal (zenchi) |
Free format text: JAPANESE INTERMEDIATE CODE: A911 Effective date: 20110421 |
|
| A912 | Re-examination (zenchi) completed and case transferred to appeal board |
Free format text: JAPANESE INTERMEDIATE CODE: A912 Effective date: 20110520 |
|
| A01 | Written decision to grant a patent or to grant a registration (utility model) |
Free format text: JAPANESE INTERMEDIATE CODE: A01 |
|
| A61 | First payment of annual fees (during grant procedure) |
Free format text: JAPANESE INTERMEDIATE CODE: A61 Effective date: 20120807 |
|
| R150 | Certificate of patent or registration of utility model |
Ref document number: 5062967 Country of ref document: JP Free format text: JAPANESE INTERMEDIATE CODE: R150 Free format text: JAPANESE INTERMEDIATE CODE: R150 |
|
| FPAY | Renewal fee payment (event date is renewal date of database) |
Free format text: PAYMENT UNTIL: 20150817 Year of fee payment: 3 |
|
| R250 | Receipt of annual fees |
Free format text: JAPANESE INTERMEDIATE CODE: R250 |
|
| LAPS | Cancellation because of no payment of annual fees |