|
Match
|
Document |
Document Title |
|
|
7620988 |
Protocol identification by heuristic content analysis
A system and method are disclosed for providing network traffic identification. In one embodiment, the method comprises receiving pattern matching data; comparing the pattern matching data with a...
|
|
|
7620986 |
Defenses against software attacks in distributed computing environments
The invention provides apparatus and methods for defending against attacks in a distributed computing environment, including (1) distinguishing attack traffic patterns from legitimate traffic...
|
|
|
7620979 |
Supporting mobile internet protocol in a correspondent node firewall
A method, system and device for protecting a network node by an access blocking function, such as a correspondent node firewall, are disclosed. The access blocking function protects either a first...
|
|
|
7620719 |
Method and system for providing secure access to private networks
Improved approaches for providing secure remote access to resources maintained on private networks are disclosed. According to one aspect, predetermined elements, such as applets, can be modified...
|
|
|
7617526 |
Blocking of spam e-mail at a firewall
A method of blocking spam at a firewall involves applying blocking measures for an adaptively determined duration. The blocking measure is then suspended while determining whether the spam has...
|
|
|
7617525 |
System and method for connectionless client-server communications
A system and method for conducting a client-server application (e.g., instant messaging, VOIP telephony) using non-persistent communications. Clients issue periodic heartbeat messages to a...
|
|
|
7614085 |
Method for the automatic setting and updating of a security policy
The invention relates to a method for creating and/or updating a security policy within a computerized system protected by at least one security package, comprising: (a) Providing at least one...
|
|
|
7614015 |
Method and system for representing group policy object topology and relationships
A user interface is disclosed for representing group policy object topology and relationships, while allowing interaction to facilitate group policy management. Forests, sites and domains are...
|
|
|
7613207 |
Securing telephony communications between remote and enterprise endpoints
A system for securing telephony communications between an enterprise telephony endpoint and a remote telephony endpoint includes an isolated packet-based network, an exposed packet-based network,...
|
|
|
7613193 |
Apparatus, method and computer program product to reduce TCP flooding attacks while conserving wireless network bandwidth
A method for operating a firewall includes: in response to the firewall receiving a TCP SYN request packet that is sent towards a first node from a second node, the TCP SYN request packet...
|
|
|
7610621 |
System and method for behavior-based firewall modeling
One embodiment of the present invention creates a model of the traffic through a network firewall and uses that model to dynamically manipulate the network firewall based on human intervention or...
|
|
|
7610477 |
Deploying and receiving software over a network susceptible to malicious communication
Systems and/or methods that enable secure deployment and/or receipt of an operating system and updates for the operating system to a bare computer across a network susceptible to malicious...
|
|
|
7606884 |
SNMP firewall for network identification
Systems and methods are provided for exchanging Small Network Management Protocol (SNMP) messages in a multi-network system between devices across different networks and a network management...
|
|
|
7606854 |
Internal hardware firewalls for microchips
A personal computer, comprising a microchip, the microchip comprising at least four microprocessors, exclusive of any digital signal processors (DSPs); a non-volatile memory component; a power...
|
|
|
7603711 |
Intrusion detection system
An intrusion detection system monitors the rate and characteristics of Internet attacks on a computer network and filters attack alerts based upon various rates and frequencies of the attacks. The...
|
|
|
7603456 |
System and method for securing remote administrative access to a processing device
The subject application is directed to a system and method for securing remote administrative access to a processing device. Incoming data packets, including source data, destination data, and a...
|
|
|
7602784 |
Method and apparatus to permit data transmission to traverse firewalls
Currently data transmission over the Internet between two client computers where both client computers are protected by firewalls is problematic, since firewalls block incoming packets. A method is...
|
|
|
7599939 |
System and method for storing raw log data
A system and method is disclosed for collecting, storing and reporting raw log data from log-producing devices such as firewalls and routers. The log-producing devices may be both local and...
|
|
|
7599353 |
Ethernet switch, and apparatus and method for expanding port
An Ethernet switch having a function of expanding a port, apparatus and method for expanding a port are provided. A receiver receives a frame including predetermined port identification...
|
|
|
7596807 |
Method and system for reducing scope of self-propagating attack code in network
Technique for protecting a communications network, such a computer network, from attack such as self-propagating code violations of security policies, in which the network is divided into...
|
|
|
7596806 |
VPN and firewall integrated system
The present invention provides an integrated VPN/firewall system that uses bath hardware (firmware) and software to optimize the efficiency of both VPN and firewall functions. The hardware portions...
|
|
|
7594267 |
Stateful distributed event processing and adaptive security
The invention provides method and apparatus for maintaining a networked computer system including first and second nodes and an event processing server, the method comprising the first and second...
|
|
|
7594263 |
Operating a communication network through use of blocking measures for responding to communication traffic anomalies
A communication network is operated by detecting an anomaly in the communication traffic at a plurality of nodes in a communication network. A first blocking measure A is independently applied at...
|
|
|
7594259 |
Method and system for enabling firewall traversal
A method and system for enabling firewall traversal of media communications from a client device. The firewall infers authentication or validation of the client device based upon communications...
|
|
|
7591009 |
Policy rule management support method and policy rule management support apparatus
When a system configuration is changed, a policy rule that should be modified as a result of the configuration change is modified without fail. A policy management apparatus 1 comprises a...
|
|
|
7587761 |
Adaptive defense against various network attacks
An apparatus for optimizing a filter based on detected attacks on a data network includes an estimation means and an optimization means. The estimation means operates when a detector detects an...
|
|
|
7587758 |
Systems and methods for distributing data packets over a communication network
System 10 distributes information data packets 10 D from multiple send endpoint ports 11 S in send endpoint unit 12 S, to multiple receive endpoint ports 11 R in receive endpoint unit 12 R....
|
|
|
7587757 |
Surveillance implementation in managed VOP networks
A procedure for accomplishing surveillance within a managed VoP network when end-user encryption/decryption and NAT are in place. The procedure comprises first analyzing the network from call...
|
|
|
7581249 |
Distributed intrusion response system
A system and method to respond to intrusions detected on a network system including attached functions and a network infrastructure. The system includes means for receiving from an intrusion...
|
|
|
7581247 |
Network address translation gateway for networks using non-translatable port addresses
A network address translation gateway provides normal network translation for IP datagrams traveling from a local area network using local IP addresses to an external network, but suspends source...
|
|
|
7577847 |
Location and user identification for online gaming
The present invention provides methods and devices for determining the location, identity and age of a user who desires to initiate a gaming session from an uncontrolled environment such as a home,...
|
|
|
7574740 |
Method and system for intrusion detection in a computer network
An intrusion detection system for detecting intrusion events in a computer network and assessing the vulnerability of the network components to the detected events. The intrusion detection system...
|
|
|
7574735 |
Method and network element for providing secure access to a packet data network
The present invention relates to a method and network element for providing secure access to a packet data network, wherein a first source information is derived from a message received from a...
|
|
|
7571470 |
One arm data center topology with layer 4 and layer 7 services
A one-arm data center topology routes traffic between internal sub-nets and between a sub-net and an outside network through a common chain of services. The data center topology employs layer 4 ...
|
|
|
7571464 |
Secure bidirectional cross-system communications framework
A local computer system and a remote computer system are connected by a network. When the local computer system needs to initiate communication with the remote computer system or vice versa, a...
|
|
|
7568022 |
Automated display of an information technology system configuration
An Information Technology (IT) system display method and computer program product. A description is provided of a configuration of devices, network segments, and vertical connectors relating to an...
|
|
|
7562389 |
Method and system for network security
In accordance with one embodiment of the present invention, a method includes receiving a packet at a physical interface of a network security gateway. The packet is tagged with a first VLAN...
|
|
|
7562211 |
Inspecting encrypted communications with end-to-end integrity
Encrypted communications between peers are inspected by a proxy server, for bugs, viruses, malicious software and the like, while the proxy server is prevented from modifying the encrypted...
|
|
|
7558842 |
Large file transfer in a design collaboration environment
Systems and methods for use in a B2B communication or integration environment, operating using a web browser to access systems protected by an enterprise network firewall, to transfer files in a...
|
|
|
7555772 |
Wireless firewall with tear down messaging
Methods of screening incoming packets are provided. A first firewall detects a tunnel formation. A second firewall maintains a list of open firewall sessions. Each tunnel has one or more associated...
|
|
|
7555123 |
Processing an MPEG elementary stream in a conditional access overlay environment
Processing an MPEG elementary stream contained in multiple PID streams in a conditional access overlay environment. A multi-program transport stream contains numerous video and audio elementary...
|
|
|
7552471 |
Providing security for external access to a protected computer network
A system and method are disclosed for providing controlled access via an external network to a resource residing on an internal network. An external request addressed to a first computer system...
|
|
|
7551615 |
Method for packet encapsulation and redirection of data packets
A method to redirect data packets by a network controller to a network node. A network interface routes a data packet from the network node. Another network interface redirects the data packet from...
|
|
|
7546635 |
Stateful firewall protection for control plane traffic within a network device
A network device receives control plane packets and data plane packets from a network. The network device includes a forwarding component that forwards the data plane packets in accordance with...
|
|
|
7546629 |
System and methodology for security policy arbitration
A system providing methods for a device to apply a security policy required for connection to a network is described. In response to receipt of a request from a device for connection to a...
|
|
|
7546353 |
Managed peer-to-peer applications, systems and methods for distributed data access and storage
Applications, systems and methods for efficiently accessing data and controlling storage devices among multiple computers connected by a network. Upon receiving a request for access to data...
|
|
|
7543331 |
Framework for providing a configurable firewall for computing systems
A configurable firewall for computing systems is disclosed. The configurable firewall provides a firewall control block that can be used as a mechanism to implement and control access privileges...
|
|
|
7543330 |
Method and apparatus for governing the transfer of physiological and emotional user data
Methods, apparatus and articles of manufacture are provided for governing the transfer of data characterizing a user's behavior, physiological parameters and/or psychological parameters. One...
|
|
|
7536716 |
Labeling gateway for compartmented multi-operator network elements over a heterogeneous network
The present invention provides adequate service virtualization and compartmentalization in Network Management Systems for heterogeneous Network Elements to provide interoperability. It introduces a...
|
|
|
7536715 |
Distributed firewall system and method
A system and method for restricting packet transfer to a computer across a network, wherein the computer includes a network interface device coupled to the network and wherein the network interface...
|