|
Match
|
Document |
Document Title |
|
|
7058974 |
Method and apparatus for preventing denial of service attacks
A method and apparatus for preventing denial of service type attacks on data networks is described. The method involves scanning the contents of the data packets flowing over the data network using...
|
|
|
7055173 |
Firewall pooling in a network flowswitch
A firewall fault-tolerant network interface system includes a switch circuit configured to detect when a firewall fails in a multi-firewall local network. When a failed firewall is detected, the...
|
|
|
7055171 |
Highly secure computer system architecture for a heterogeneous client environment
A method of securely connecting a plurality of client computers to computer resources in a shared computer system by extending client network domains around computer resources in the shared...
|
|
|
7054930 |
System and method for propagating filters
A method and system for propagating filters to an upstream device. The method includes generating a filter at a first network device and sending information on the filter to a second network device...
|
|
|
7047303 |
Apparatus and method for using a network processor to guard against a “denial-of-service” attack on a server or server cluster
A system comprising a network resource server or a server farm formed by a plurality of computer systems and a network processor which transfers data exchanged with an external network supported by...
|
|
|
7047561 |
Firewall for real-time internet applications
The present invention relates to a firewall for use in association with real-time Internet applications such as Voice over Internet Protocol (VoIP). The firewall applies an application proxy to the...
|
|
|
7047564 |
Reverse firewall packet transmission control system
The invention is designed to eliminate or minimize the liability associated with “packet flooding” attacks originating from within a local area network connected to an external network such as...
|
|
|
7036141 |
Transmission system, a method and an apparatus providing access for IP data packets to a firewall protected network
The invention provides a transmission system, for example, an ATM transmission system, which is adapted for the transmission of IP data packets, and which includes an IP-network, a network...
|
|
|
7028179 |
Apparatus and method for secure, automated response to distributed denial of service attacks
An apparatus and method for secure, automated response to distributed denial of service (DDoS) attacks are described. The method includes notification of a DDoS attack received by an Internet host....
|
|
|
7016700 |
Communication terminal unit capable of receiving a message and method for identifying a message sender in the same
A communication terminal unit capable of identifying a message sender by comparing a source address attached to a received message with an address registered in a memory of the unit in advance,...
|
|
|
7013482 |
Methods for packet filtering including packet invalidation if packet validity determination not timely made
Methods and systems for firewall/data protection that filters data packets in real time and without packet buffering are disclosed. A data packet filtering hub, which may be implemented as part of...
|
|
|
7010702 |
Architecture for virtual private networks
Protocols and architecture for secure virtual private networks. Intraenterprise data communications are supported in a secure manner over the Internet or other public network space with the...
|
|
|
7006508 |
Communication network with a collection gateway and method for providing surveillance services
A communication network ( 10 ) utilized for providing communications between a first party and a second party includes a surveillance server ( 26 ) within a core network ( 10 ) to provide...
|
|
|
6996842 |
Processing internet protocol security traffic
Processing Internet Protocol security (IPsec) traffic includes determining at a first location if a classification parameter is available for the IPsec traffic that indicates a route for the IPsec...
|
|
|
6993588 |
System and methods for securely permitting mobile code to access resources over a network
A system and methods are disclosed that permit mobile code, such as an applet, to create a network connection with a content server on a network, without exposing the client computer that is...
|
|
|
6981143 |
System and method for providing connection orientation based access authentication
The present invention is embodied in a system and method for providing access authentication of users attempting to gain access to a network based on connection orientation parameters to prevent...
|
|
|
6981280 |
Intelligent network scanning system and method
A system, method and computer program product are provided for scanning data. Initially, data is received at a network element. Thereafter, a load on the network element is identified. The data is...
|
|
|
6973581 |
Packet-based internet voting transactions with biometric authentication
Internet voting or other Internet transaction comprises transmitting three information packets via the Internet. At least one information packet includes an identifier that is authenticated, such...
|
|
|
6947404 |
Automatic WAP login
A system for connecting wireless terminals to a WAP gateway and thence to the Internet for providing content to the wireless terminals from Internet web servers includes an AutoLogin proxy and an...
|
|
|
6920504 |
Method and apparatus for controlling flow of data in a communication system
A control system ( 900, 1100 ) and various methods and apparatus for efficient communications of data across various protocol layers are disclosed. Generally, various aspects of the invention...
|
|
|
6917974 |
Method and apparatus for preventing network traffic analysis
A system and method for generating and transmitting false packets along with a true packet to thereby hide or obscure the actual message traffic. A new extension header having a plurality of fields...
|
|
|
6891839 |
Distributing packets among multiple tiers of network appliances
A network is disclosed that includes a first tier of forwarding agents connected to a first tier of network devices. A second tier of forwarding agents is connected to a second tier of network...
|
|
|
6874090 |
Deterministic user authentication service for communication network
A user authentication service for a communication network authenticates local users before granting them access to personalized sets of network resources. Authentication agents on intelligent edge...
|
|
|
6874026 |
Method and apparatus for filtering packets using a dedicated processor
A dedicated data packet filtering processor whose only function is to filter data packets based on a list of source IP addresses stored in high-speed memory of the processor. The processor has a...
|
|
|
6871281 |
Method and system for sending data between computers using a secure pipeline
A method for transmitting data is provided. The method includes receiving, from upstream in the path, a first data packet containing at least data and an associated first transmission protocol...
|
|
|
6868450 |
System and method for a process attribute based computer network filter
A system and method for a process attribute based computer network filter assigns a process attribute to a process executing on a computing device and assigns a network attribute to a network...
|
|
|
6862684 |
Method and apparatus for securely providing billable multicast data
The present invention comprises a method and apparatus for securely providing billable multicast data. The invention describes a solution that provides an architecture for enabling different types...
|
|
|
6854063 |
Method and apparatus for optimizing firewall processing
A firewall system and method which optimizes the performance of the firewall process by reducing overhead associated with ACL verification and firewall application-level authorization. The firewall...
|
|
|
6851050 |
Providing secure network access for short-range wireless computing devices
The present invention provides methods, systems, and computer program instructions for providing location-independent packet routing and secure access in a wireless networking environment (such as...
|
|
|
6832256 |
Firewalls that filter based upon protocol commands
Data transfer is controlled between a first network and a second network of computers by a firewall-proxy combination. Active interpretation of protocol commands exchanged between the first network...
|
|
|
6826694 |
High resolution access control
A system and method for high resolution access control for packetized information. A packet is received at a firewall. A rule corresponding to header information in the packet prescribes referring...
|
|
|
6826684 |
Sliding scale adaptive self-synchronized dynamic address translation
A bastion host is provided for a local area network (LAN). The bastion host processes packets to be transferred from the LAN to a wide area network (WAN). The bastion host intercepts packets...
|
|
|
6823461 |
Method and system for securely transferring context updates towards a mobile node in a wireless network
A method and system for transferring contexts from a previous access router (PR) to a new access router (NR) that is subsequently associated with a Mobile Node (MN). For example, transferred...
|
|
|
6816973 |
Method and system for adaptive network security using intelligent packet analysis
A method and system for adaptive network security using intelligent packet analysis are provided. The method comprises monitoring network data traffic. The network data traffic is analyzed to...
|
|
|
6795917 |
Method for packet authentication in the presence of network address translations and protocol conversions
For achieving packet authentication according to an applicable security policy between a sending node ( 903 ) and a receiving node ( 902 ) in a network, the following steps are taken: the...
|
|
|
6795918 |
Service level computer security
Novel apparatus and methods for filtering data packets by providing non-user configurable authorization data. The invention provides an efficient, quick, secure, and simple to implement technique...
|
|
|
6792111 |
Cryptation system for packet switching networks based on digital chaotic models
A cryptation system for information transmitted through packet switching networks masks the digital information data by combining it at the transmitting station with digital data of a certain...
|
|
|
6789196 |
Communication controlling method, communication controlling system and communication controlling apparatus
A communication controlling system which permits plural broadcast programs from plural broadcast program providers to be viewed easily and inexpensively. For a case wherein plural broadcast signals...
|
|
|
6782474 |
Network connectable device and method for its installation and configuration
A network device ( 100, 300 ) is connected to a network ( 102 ) having also a management station ( 107 ) connected thereto. The method for configuring the network device comprises the steps of ...
|
|
|
6772348 |
Method and system for retrieving security information for secured transmission of network communication streams
A system and method for retrieving security data, such as Security Associations (“SAs”) of the IPSec protocols, required for secured transmission of network packets uses a caching mechanism to...
|
|
|
6735702 |
Method and system for diagnosing network intrusion
A method and system are disclosed for analyzing traffic on a network by monitoring network traffic and, when a particular network condition (for example, a network attack) is detected, gathering...
|
|
|
6725378 |
Network protection for denial of service attacks
An active monitor detects and classifies messages transmitted on a network. In one form, the monitor includes a routine for classifying TCP packet source addresses as being of an acceptable,...
|
|
|
6704866 |
Compression and encryption protocol for controlling data flow in a network
Process for controlling frames transporting data from a transmitting Terminal (DTE 1 ) to at least a receiving Terminal (DTE 2 ) through a plurality of consecutive nodes including a start access...
|
|
|
6678283 |
System and method for distributing packet processing in an internetworking device
An internetworking device having a set of network interface cards, where each network interface card is able to address and send data to any of the other network interface cards. According to one...
|
|
|
6625147 |
Communications network control system
A communications network control system includes a packet judging circuit 412 for judging whether a variable-length packet inputted via a network 12 is a control packet CPKT self-addressed and...
|
|
|
6606710 |
Adaptive re-ordering of data packet filter rules
A packet data filter which stores ordered rules and sequentially applies the rules to received data packets to determine the disposition of the data packet. The packet filter maintains a match...
|
|
|
6574666 |
System and method for dynamic retrieval loading and deletion of packet rules in a network firewall
A system and method for loading a filtering rule at a firewall. A firewall receives a packet and determines if a rule that pertains to the packet is loaded at the firewall. If a pertinent rule is...
|
|
|
6571338 |
Maintaining packet security in a computer network
The present invention provides a method and apparatus for determining the trust worthiness of executable packets, e.g., internet applets, being transmitted within a computer network. The computer...
|
|
|
6496935 |
System, device and method for rapid packet filtering and processing
A system, a device and a method for accelerating packet filtration by supplementing a firewall with a pre-filtering module. The pre-filtering module performs a limited set of actions with regard to...
|
|
|
6477648 |
Trusted workstation in a networked client/server computing system
A trusted workstation includes a network interface card (NIC) with trusted computing base (TCB) extensions that provide for securely booting the workstation and performing subsequent receive and...
|