|
Match
|
Document |
Document Title |
|
|
7260846 |
Intrusion detection system
An intrusion detection system (IDS). An IDS which has been configured in accordance with the present invention can include a traffic sniffer for extracting network packets from passing network...
|
|
|
7257838 |
Information processing system and information processing method capable of communicating with impermissible protocol
An information processing apparatus comprises: a protocol pass-preventing device provided between a data transmission side and a data reception side, for causing only a predetermined protocol to...
|
|
|
7254832 |
Firewall control for secure private networks with public VoIP access
A private network firewall 225 is treated as if it were a media gateway network entity. Doing so allows a media gateway controller 205 to exchange messages with the firewall 225 for purposes...
|
|
|
7254833 |
Electronic security system and scheme for a communications network
An electronic security scheme and security system for a communications network facilitates the preventing of unauthorized access to an internal resource of an entity's internal computer system. A...
|
|
|
7254834 |
Fault tolerant firewall sandwiches
Firewall sandwich configurations having improved levels of system availability as well as an application-space implementation of a firewall load balancer (FLB) which provides greater operational...
|
|
|
7249378 |
Firewall providing enhanced network security and user transparency
The present invention provides a firewall that achieves maximum network security and maximum user convenience. The firewall employs “envoys” that exhibit the security robustness of prior-art...
|
|
|
7246376 |
Method and apparatus for security management in a networked environment
In a networked environment, where multiple Internet Service Providers and multi-vendor equipment are involved in e-Business services and applications offering, the risk of overloading the Internet...
|
|
|
7240366 |
End-to-end authentication of session initiation protocol messages using certificates
End-to-end authentication capability based on public-key certificates is combined with the Session Initiation Protocol (SIP) to allow a SIP node that receives a SIP request message to authenticate...
|
|
|
7237258 |
System, method and computer program product for a firewall summary interface
A system, method and computer program product are provided for summarizing firewall activity. Initially, a plurality of types of events associated with a firewall of a local computer is organized....
|
|
|
7237260 |
Method for dynamic selection for secure and firewall friendly communication protocols between multiple distributed modules
Distributed modules in a network dynamically select communication protocols to communicate in a secure or firewall-protected network. Applications register with a lookup service. The lookup service...
|
|
|
7237259 |
Fault reducing firewall system
Disclosed are two mechanisms for preventing access failures attributable to dynamic port assignment of firewall-blocked ports. The mechanism involves an enhanced firewall that opens blocked ports...
|
|
|
7237267 |
Policy-based network security management
A policy-based network security management system is disclosed. In one embodiment, the system comprises a security management controller comprising one or more processors; a computer-readable...
|
|
|
7237263 |
Remote management of properties, such as properties for establishing a virtual private network
A facility in a single manager computer system for managing properties for a plurality of managed computer systems is described. The facility reiteratively receives new managed properties for an...
|
|
|
7228564 |
Method for configuring a network intrusion detection system
Disclosed is a method for configuring an intrusion detection system in a network which comprises determining a location in the network for a deployed intrusion detection sensor of the intrusion...
|
|
|
7225332 |
Methods and apparatus to perform cryptographic operations on received data
Cryptographic operations are performed on data packets received by an electronic system. To improve system performance, incoming packets are associated with a security association and offloaded to...
|
|
|
7225255 |
Method and system for controlling access to network resources using resource groups
A method and device for configuring a firewall in a computer system employing a rule for controlling access between a source resource and a destination resource only if said source and destination...
|
|
|
7219225 |
Network arrangement for communication
A method for secure communication between a first end terminal located in a first secure network and a second end terminal located in a second secure network, said first and second networks being...
|
|
|
7216361 |
Adaptive multi-tier authentication system
An adaptive multi-tier authentication system provides secondary tiers of authentication which are used only when the user attempts a connection from a new environment. The invention accepts user...
|
|
|
7213263 |
System and method for secure network mobility
A system and method are provided for use in maintaining secure communications between a home network and a mobile client when the client roams outside of the home network to a new location. One...
|
|
|
7207061 |
State machine for accessing a stealth firewall
A stealth firewall. The stealth firewall can include a first network interface to an external network; a second network interface to an internal network; a packet filter for restricting access to...
|
|
|
7206932 |
Firewall-tolerant voice-over-internet-protocol (VoIP) emulating SSL or HTTP sessions embedding voice data in cookies
A voice-over-Internet-Protocol (VoIP) client codes audio data as printable ASCII characters, then embeds the ASCII audio data inside a cookie that is sent over the Internet within an HTTP GET...
|
|
|
7207062 |
Method and apparatus for protecting web sites from distributed denial-of-service attacks
An Internet Service Provider (ISP), in consideration of being remunerated in some manner by a site, determines whether packets destined to that site conform to a profile provided to the ISP by that...
|
|
|
7203963 |
Method and apparatus for adaptively classifying network traffic
A method of adaptively classifying information using a binary tree comprises establishing a binary tree including a set of binary sequences each representing one or more network addresses. Once...
|
|
|
7197660 |
High availability network security systems
A system and method for a network security system are provided. The method includes providing a master device and a backup device within a cluster of network security devices, providing the backup...
|
|
|
7197766 |
Security with authentication proxy
An arrangement to accomplish authentication of end-users ( 1 ) and end-points ( 1 ) in a packet based network, which includes components that support all or parts of different versions of the H.323...
|
|
|
7197769 |
Methods and systems for screening input strings intended for use by Web servers
Methods and systems of screening input strings that are intended for use by a Web server are described. In the described embodiment, an attack pattern is determined that can be used to attack a Web...
|
|
|
7194004 |
Method for managing network access
A method for providing security in a computing network. A device connects to a network and authenticates itself with a server. Next, the server adds the IP address of the device to a list of...
|
|
|
7191448 |
Web based imaging page redirector system for accessing a redirector reference that directs a browser to a redirector software
A client configurable web based imaging page redirector method, system and program product, comprising the steps of: storing a redirector reference to redirector software; obtaining content to be...
|
|
|
7188366 |
Distributed denial of service attack defense method and device
When DDoS attack packets are transmitted from the attacker to the victim's server, the attack packets are detected in the edge router of the LAN accommodating the server. These packets are then...
|
|
|
7185361 |
System, method and computer program product for authenticating users using a lightweight directory access protocol (LDAP) directory server
A system, method and computer program product for providing authentication to a firewall using a lightweight directory access protocol (LDAP) directory server is disclosed. The firewall can be...
|
|
|
7171682 |
Security system for output device
A constructed system includes multiple clients, a server like a print portal, and multiple printers connecting with a network. A client transmits a printing requirement, which specifies a content...
|
|
|
7171681 |
System and method for providing expandable proxy firewall services
A mechanism that enables flexible expansion of proxy firewall services is disclosed. In accordance with the present invention, the firewall system can be configured to include a dispatch host...
|
|
|
7162738 |
E-mail firewall with stored key encryption/decryption
An e-mail firewall ( 105 ) applies policies to e-mail messages ( 204 ) between a first site and a plurality of second sites in accordance with a plurality of administrator selectable policies ( 216...
|
|
|
7159237 |
Method and system for dynamic network intrusion monitoring, detection and response
A probe attached to a customer's network collects status data and other audit information from monitored components of the network, looking for footprints or evidence of unauthorized intrusions or...
|
|
|
7155487 |
Method, system and article of manufacture for data distribution over a network
A data distribution network includes a distribution-coordinating server and a plurality of client nodes. Each of the client nodes is configured to pull or push data from other clients or servers....
|
|
|
7150040 |
Authenticated firewall tunneling framework
A method and apparatus for managing network access to internal hosts protected by a firewall is provided. A user on an external host logs in into a firewall. Once the user has been authenticated to...
|
|
|
7146638 |
Firewall protocol providing additional information
A method and computer program product that allow a firewall program to control whether an application program is granted access to a wide area network (WAN), such as the Internet. The method allows...
|
|
|
7146639 |
Method and apparatus for managing a firewall
A method and apparatus are disclosed for managing a firewall. The disclosed firewall manager facilitates the generation of a security policy for a particular network environment, and automatically...
|
|
|
7143188 |
Method and apparatus for network address translation integration with internet protocol security
Method and apparatus for enhanced security for communication over a network, and more particularly to Network Address Translation (NAT) integration Internet Protocol Security (IPSec), is described....
|
|
|
7143444 |
Application-layer anomaly and misuse detection
A method includes passing a request for data received by a first server process executing in a first server to a detection process that includes packing a subset of the data into an analysis format...
|
|
|
7142672 |
Method and system for transmitting sensitive information over a network
A method ( 300 ) and system for transmitting sensitive information from a client computer to a service provider operating in the INTERNET. The sensitive information (for example a credit card...
|
|
|
7143137 |
Method and apparatus for security protocol and address translation integration
Method and apparatus for Internet Protocol Security (IPSec) and Network Address Translation (NAT) integration is described. A client obtains a public address from a gateway for IPSec communication....
|
|
|
7143439 |
Efficient evaluation of rules
A method and apparatus uses a proprietary algorithm for organizing network security policy rules in a way that minimizes the number of rules considered when determining the set of rules applicable...
|
|
|
7143442 |
System and method of detecting events
Apparatus for classifying network traffic events in accordance with one or more conditions includes a categorizer for categorizing a plurality of network traffic events, an analyzer for analyzing...
|
|
|
7143438 |
Methods and apparatus for a computer network firewall with multiple domain support
The invention provides improved computer network firewalls which include one or more features for increased processing efficiency. A firewall in accordance with the invention can support multiple...
|
|
|
7131140 |
Method for protecting a firewall load balancer from a denial of service attack
A method for protecting firewall load balancers from a denial of service attack is provided. Packets are received by the firewall load balancer. Each packet has a source and a destination. The...
|
|
|
7127741 |
Method and system for e-mail message transmission
An e-mail firewall applies policies to e-mail messages transmitted between a first site and a plurality of second sites. The e-mail firewall includes a plurality of mail transfer relay modules for...
|
|
|
7120930 |
Method and apparatus for control of security protocol negotiation
Method and apparatus for enhanced security for communication over a network, and more particularly to control of security protocol negotiation to enable multiple clients to establish a virtual...
|
|
|
7120927 |
System and method for e-mail alias registration
An e-mail alias registration system is provided. According to one embodiment, users may register an e-mail address and a password at an alias relay server ( 102 ). Then, when a third party attempts...
|
|
|
7120934 |
System, method and apparatus for detecting, identifying and responding to fraudulent requests on a network
Embodiments of the invention are directed to a detection system, method and apparatus that identifies and eradicates fraudulent requests on a network. Embodiments of the detection system comprise...
|