|
Match
|
Document |
Document Title |
|
|
7624436 |
Multi-pattern packet content inspection mechanisms employing tagged values
Methods and apparatus for performing content inspection using multi-pattern packet content inspection mechanisms employing tagged values. Pattern data structures are employed to facilitate...
|
|
|
7624263 |
Security association table lookup architecture and method of operation
A security association architecture system of the present invention facilitates network data transfer by providing an internal portion of a security association database that can be quickly...
|
|
|
7620737 |
Methods, apparatus, and program products for abstract applications/components in a ubiquitous computing environment
Methods, apparatus and program products for using historical contextual data in a ubiquitous computing environment. The historical contextual data can be dispersed among components in an...
|
|
|
7617531 |
Inferencing data types of message components
A security gateway receives messages and extracts components thereof, typically in the form of field name-value pairs. The security gateway determines a data type of the values for individual field...
|
|
|
7613207 |
Securing telephony communications between remote and enterprise endpoints
A system for securing telephony communications between an enterprise telephony endpoint and a remote telephony endpoint includes an isolated packet-based network, an exposed packet-based network,...
|
|
|
7613179 |
Technique for tracing source addresses of packets
A technique for tracing source addresses of packets is provided. In one particular exemplary embodiment, the technique may be realized by/as a method for tracing source addresses of packets. The...
|
|
|
7609625 |
Systems and methods for detecting and preventing flooding attacks in a network environment
A method for processing network traffic data includes receiving a packet, and determining whether the packet is a previously dropped packet that is being retransmitted. A method for processing...
|
|
|
7607168 |
Network interface decryption and classification technique
Encrypted data packets are received by a network interface card. The network interface card, upon determining that the received data packets are encrypted, directs the encrypted data packets to...
|
|
|
7603456 |
System and method for securing remote administrative access to a processing device
The subject application is directed to a system and method for securing remote administrative access to a processing device. Incoming data packets, including source data, destination data, and a...
|
|
|
7602780 |
Scalably detecting and blocking signatures at high speeds
A method and apparatus is described for identifying content in a packet. The method may obtain data sample from the packet where the data sample is in a predetermined window at an initial offset...
|
|
|
7600115 |
Control key capable of storing multiple and variable data packet classification results
Methods, systems, and an apparatus for generating and dispatching a flexible control key to be appended with the data packets while being dispatched across a plurality of software modules running...
|
|
|
7599289 |
Electronic communication control
An electronic communication control device suitable for embedding into a network interface card or a line card of a switch or router. The electronic communication control device is capable of...
|
|
|
7596806 |
VPN and firewall integrated system
The present invention provides an integrated VPN/firewall system that uses bath hardware (firmware) and software to optimize the efficiency of both VPN and firewall functions. The hardware portions...
|
|
|
7596614 |
Network including snooping
A computer network including:
at least one switch connecting at least one edge device to the remainder of the network, said at least one switch including: snooping apparatus using DHCP to...
|
|
|
7594262 |
System and method for secure group communications
A system and method for secure group communications is provided. One embodiment provides a method for implementing a virtual private group network. The method includes creating a virtual private...
|
|
|
7594260 |
Network surveillance using long-term and short-term statistical profiles to determine suspicious network activity
A method of network surveillance includes receiving network packets handled by a network entity and building at least one long-term and a least one short-term statistical profile from a measure of...
|
|
|
7591011 |
Assigning higher priority to transactions based on subscription level
A computing system is configured to receive incoming packets at a first priority designated for use when receiving packets that are not associated with specific subscription levels. Incoming...
|
|
|
7591010 |
Method and system for separating rules of a security policy from detection criteria
A method and system that enables a security policy to separate developer-provided detection criteria from an administrator-provided custom policy is provided. The security system allows a developer...
|
|
|
7591009 |
Policy rule management support method and policy rule management support apparatus
When a system configuration is changed, a policy rule that should be modified as a result of the configuration change is modified without fail. A policy management apparatus 1 comprises a...
|
|
|
7584506 |
Method and apparatus for controlling packet transmission and generating packet billing data on wired and wireless network
Inventive embodiments relate to a method and apparatus for packet transmission control and packet charge data generation on wired/wireless network, especially, the apparatus can control the packet...
|
|
|
7584505 |
Inspected secure communication protocol
A technique for establishing inspected secure communication includes establishing a first secure connection between a client device and a client-side device and a second secure connection between...
|
|
|
7584352 |
Protection against denial of service attacks
An information processing system for protecting against denial of service attacks comprises an interface ( 310 ) to receive and send packets, wherein the packets comprise at least one...
|
|
|
7581249 |
Distributed intrusion response system
A system and method to respond to intrusions detected on a network system including attached functions and a network infrastructure. The system includes means for receiving from an intrusion...
|
|
|
7581093 |
Hitless manual cryptographic key refresh in secure packet networks
In a hitless manual cryptographic key refresh scheme, a state machine may be independently maintained at each network node. The state machine may include a first state, a second state, and a third...
|
|
|
7577739 |
Employee internet management device
A system for monitoring and maintaining an acceptable use policy for network communications monitors, stores and searches for the presence of preselected regular expressions, either by subject...
|
|
|
7574740 |
Method and system for intrusion detection in a computer network
An intrusion detection system for detecting intrusion events in a computer network and assessing the vulnerability of the network components to the detected events. The intrusion detection system...
|
|
|
7574736 |
System and method for efficiently transferring media across firewalls
Enabling media (audio/video) scenarios across firewalls typically requires opening up multiple UDP ports in an external firewall. This is so because RTP (Real Time Protocol, RFC 1889), which is the...
|
|
|
7574735 |
Method and network element for providing secure access to a packet data network
The present invention relates to a method and network element for providing secure access to a packet data network, wherein a first source information is derived from a message received from a...
|
|
|
7574604 |
Network device registration
An embodiment of the present invention includes a technique to register a client to a server for communication. A remote commander transmits an identification code to the server and the client. The...
|
|
|
7571319 |
Validating inbound messages
A system and method for verifying messages. The method may include the steps of receiving an inbound message and characterizing the inbound message by analyzing a latent cryptographic identifier in...
|
|
|
7568093 |
System and method for service tagging for enhanced packet processing in a network environment
An apparatus for charging in a network environment is provided that includes an access gateway encapsulation/decapsulation element operable to establish one or more packet data protocol (PDP) links...
|
|
|
7565701 |
Controller and resource management system and method with improved security for independently controlling and managing a computer system
A controller and resource management system and method with improved security for independently controlling and managing a computer system is provided. Control, management and security protection...
|
|
|
7562393 |
Mobility access gateway
A gateway for mobile access includes a foreign agent that receives user profile data and session state data from a home authentication, authorization and accounting (AAA) system of a mobile node,...
|
|
|
7558264 |
Packet classification in a storage system
A storage switch in accordance with an embodiment of the invention is a highly scalable switch that allows the creation of a SAN that is easy to deploy and that can be centrally managed. Moreover,...
|
|
|
7555773 |
Methods and apparatus to provide a platform-level network security framework
Methods and apparatus to provide a platform-level network security framework are described herein. In an example method, a packet associated with a processor system is identified. A platform-level...
|
|
|
7555123 |
Processing an MPEG elementary stream in a conditional access overlay environment
Processing an MPEG elementary stream contained in multiple PID streams in a conditional access overlay environment. A multi-program transport stream contains numerous video and audio elementary...
|
|
|
7546629 |
System and methodology for security policy arbitration
A system providing methods for a device to apply a security policy required for connection to a network is described. In response to receipt of a request from a device for connection to a...
|
|
|
7543054 |
Minimalist data collection for high-speed network data monitoring based on protocol trees
According to one embodiment, a network architecture includes a plurality of application monitoring modules for monitoring network traffic data that store the data in meta-flow tuples with...
|
|
|
7539726 |
Message testing
A system and method are disclosed for routing a message through a plurality of test methods. The method includes: receiving a message; applying a first test method to the message; updating a state...
|
|
|
7536719 |
Method and apparatus for preventing a denial of service attack during key negotiation
The invention provides a method for preventing a denial-of-service attack on a responder during a security protocol key negotiation. The responder receives key negotiation requests designating a...
|
|
|
7536718 |
Method and system for controlling software loads on a third-party mobile station
A system and method for allowing a licensee having mobile station hardware to support its own set of carriers and software demands of these carriers, the software including licensor software, the...
|
|
|
7536717 |
Fast searching of list for IP filtering
A method for filtering data packets through computers on the Internet that allows a computer to determine whether an incoming numbered list is present in a numbered list data set. The present...
|
|
|
7536715 |
Distributed firewall system and method
A system and method for restricting packet transfer to a computer across a network, wherein the computer includes a network interface device coupled to the network and wherein the network interface...
|
|
|
7536476 |
Method for performing tree based ACL lookups
A method for performing a lookup of a packet against an access control list. In one example, the method includes receiving an access control list, partioning said list into two or more...
|
|
|
7535909 |
Method and apparatus to process packets in a network
A method and apparatus is described to process packets in a network. The method may comprise receiving the packet and determining a length K of the packet. If the length of the packet is less than...
|
|
|
7533409 |
Methods and systems for firewalling virtual private networks
Methods, apparatus, and systems are provided for processing packets between a first and a second network. When a packet is received from the first network, information for routing the first packet...
|
|
|
7530112 |
Method and apparatus for providing network security using role-based access control
A method and apparatus for providing network security using role-based access control is disclosed. A network device implementing such a method can include, for example, an access control list....
|
|
|
7530102 |
Methods, systems and devices for packet watermarking and efficient provisioning of bandwidth
Disclosed herein are methods and systems for transmitting streams of data. The present invention also relates to generating packet watermarks and packet watermark keys. The present invention also...
|
|
|
7526808 |
Method and system for actively defending a wireless LAN against attacks
A wireless network security system including a system data store capable of storing network default and configuration data, a wireless transmitter and a system processor. The system processor...
|
|
|
7526792 |
Integration of policy compliance enforcement and device authentication
Methods and apparatuses for integration of authentication and policy compliance enforcement. An enforcement agent may reside on a device. If an access assignment is provided to the device in...
|