|
Match
|
Document |
Document Title |
|
|
7519996 |
Security intrusion mitigation system and method
A security intrusion mitigation system and method are presented. In one embodiment a security intrusion mitigation method includes utilizing network spanning tree configuration information to...
|
|
|
7519834 |
Scalable method and apparatus for transforming packets to enable secure communication between two stations
Method and apparatus that enable secure transmission of data in a scalable private network are described. Each station that is to be part of a private network registers with a key table. A group...
|
|
|
7516487 |
System and method for source IP anti-spoofing security
A system and method that provides for using source IP addresses and MAC addresses in a network to provide security against attempts by users of the network to use false source IP addresses in data...
|
|
|
7516488 |
Preventing data from being submitted to a remote system in response to a malicious e-mail
An electronic message manager ( 100 ) examines ( 210 ) incoming electronic messages and determines ( 220 ) whether an incoming electronic message comprises at least one suspect link associated with...
|
|
|
7512980 |
Packet sampling flow-based detection of network intrusions
A flow-based intrusion detection system for detecting intrusions in computer communication networks. Data packets representing communications between hosts in a computer-to-computer communication...
|
|
|
7512979 |
Log file protection system
The present invention provides a log file protection system which makes it difficult for computer log information to be altered or deleted. A log information reception process includes receiving...
|
|
|
7512981 |
Method and system for remotely configuring and monitoring a communication device
Methods and systems for remotely configuring and monitoring a communication device are provided, especially useful in a computer network environment such as the Internet. A communication device or...
|
|
|
7512969 |
System and method for detecting and reporting cable network devices with duplicate media access control addresses
The detection of devices with duplicate media access controller (MAC) addresses in a cable network. A cable network device (CND) having a MAC address is connected by the cable network to a cable...
|
|
|
7512977 |
Intrustion protection system utilizing layers
The inventions relate generally to protection of computing systems by isolating intrusive attacks into layers, those layers containing at least file objects and being accessible to applications,...
|
|
|
7509675 |
Non-invasive monitoring of the effectiveness of electronic security services
Systems for the non-invasive monitoring of the effectiveness of a customer's electronic security services include a test generation engine for generating and launching a denatured attack towards a...
|
|
|
7509677 |
Pattern discovery in a network security system
Patterns can be discovered in security events collected by a network security system. In one embodiment, the present invention includes collecting and storing security events from a variety of...
|
|
|
7509250 |
Hardware key control of debug interface
In one embodiment, a system comprises debug functionality, a debug interface communicatively coupled to the debug functionality, and a hardware key interface. Communication with the debug...
|
|
|
7509678 |
Central console for monitoring configuration status for remote devices
The present invention allows for remotely and securely configuring settings for targeted devices within a network with multiple security-trust boundaries. Configuration information is encoded in...
|
|
|
7509681 |
Interoperability of vulnerability and intrusion detection systems
A system in accordance with an embodiment of the invention includes a vulnerability detection system (VDS) and an intrusion detection system (IDS). The intrusion detection system leverages off of...
|
|
|
7509676 |
System and method for restricting access to an enterprise network
One aspect of the invention is a method for restricting access to an enterprise network that includes determining whether a computer that may be connected to an enterprise network on a temporary...
|
|
|
7506373 |
Method of automatically classifying a set of alarms emitted by sensors for detecting intrusions of an information security system
A method of automatically classifying alerts issued by intrusion detection sensors ( 11 a , 11 b , 11 c ) of an information security system ( 1 ) for producing collated alerts, each alert being...
|
|
|
7506360 |
Tracking communication for determining device states
A system and method for tracking communication for determining device states. Communication between devices is observed and a respective state of at least one device is inferred. The inference is...
|
|
|
7503071 |
Network traffic identification by waveform analysis
A technique is disclosed for identifying network traffic. The traffic data is converted into a wave vector. The wave vector is compared with a wave template. It is then determined whether the wave...
|
|
|
7500266 |
Systems and methods for detecting network intrusions
A device ( 120 ) processes traffic in a network. The device ( 120 ) obtains information corresponding to an activity between a group of source devices and one or more services of destination...
|
|
|
7500265 |
Apparatus and method to identify SPAM emails
A method and apparatus to identity SPAM emails is disclosed. The method sets a misspelling rejection ratio. Upon receipt of an email comprising (X) words, the method determines the number (Y) of...
|
|
|
7496961 |
Methods and apparatus to provide network traffic support and physical security support
Methods and apparatus to provide network traffic support and physical security support are described herein. In an example method, a virtual machine monitor (VMM) in a processor system is...
|
|
|
7496962 |
Intrusion detection strategies for hypertext transport protocol
A hypertext transport protocol (HTTP) inspection engine for an intrusion detection system (IDS) includes an HTTP policy selection component, a request universal resource identifier (URI) discovery...
|
|
|
7493654 |
Virtualized protective communications system
A computer system having at least one CPU has as its only interface with the Internet and other external sources a virtual machine that contains a browser and/or other communications programs, so...
|
|
|
7490356 |
End user risk management
A flexible, efficient and easy-to-use computer security management system effectively evaluates and responds to informational risks on a wide variety of computing platforms and in a rapidly...
|
|
|
7490352 |
Systems and methods for verifying trust of executable files
Systems and methods for validating integrity of an executable file are described. In one aspect, the systems and methods determine that an executable file is being introduced into a path of...
|
|
|
7490354 |
Virus detection in a network
A method that in an embodiment counts the number of times that a file or registry entry is added, changed, or deleted at clients in a network. If the count exceeds a threshold, then a warning is...
|
|
|
7490244 |
Blocking e-mail propagation of suspected malicious computer code
Methods, apparatuses, and computer-readable media for preventing the spread of malicious computer code. An embodiment of the inventive method comprises the steps of: identifying ( 110 ) a computer...
|
|
|
7487149 |
Method and apparatus for providing query-level security in a database system
One embodiment of the present invention provides a system that facilitates using query signatures to provide security for a database system. During operation, the database system receives a query....
|
|
|
7487542 |
Intrusion detection using a network processor and a parallel pattern detection engine
An intrusion detection system (IDS) comprises a network processor (NP) coupled to a memory unit for storing programs and data. The NP is also coupled to one or more parallel pattern detection...
|
|
|
7487546 |
Hosts file protection system and method
Modification of the hosts file is detected, implementation of the modified hosts file is stalled, the modification to the hosts file is analyzed to determine if the modification is malicious, and...
|
|
|
7484105 |
Flash update using a trusted platform module
An update utility requests a signature verification of the utility's signature along with a request to unlock the flash memory stored in the utility. A trusted platform module (“TPM”) performs...
|
|
|
7483972 |
Network security monitoring system
A security monitoring system processes event messages related to computer network security in real time, evaluating inter-event constraints so as to identify combinations of events that are partial...
|
|
|
7478429 |
Network overload detection and mitigation system and method
A system and method is disclosed for detecting and/or mitigating an overload condition from one or more first computers, such as a distributed denial of service (DDoS) attack, viral attack, or the...
|
|
|
7478250 |
System and method for real-time detection of computer system files intrusion
A method and system for detecting real-time system file intrusions in a user computer that is coupled to an administrator computer and includes an operating system and system files. At a boot time...
|
|
|
7478430 |
Secure user action request indicator
A mobile communications device is adapted to use applications resident on a remote network server. The display of the mobile device is divided into static and dynamic display zones. Inquiries...
|
|
|
7475428 |
Secure detection network system
A secure detection network system includes plurality of remote nodes, each remote node comprising a set of detector interfaces configured to couple to a set of detectors disposed to detect the...
|
|
|
7475426 |
Flow-based detection of network intrusions
A flow-based intrusion detection system for detecting intrusions in computer communication networks. Data packets representing communications between hosts in a computer-to-computer communication...
|
|
|
7475405 |
Method and system for detecting unusual events and application thereof in computer intrusion detection
An automated decision engine is utilized to screen incoming alarms using a knowledge-base of decision rules. The decision rules are updated with the assistance of a data mining engine that analyzes...
|
|
|
7475425 |
Internet site authentication service
The authenticity of a website is tested with software that runs on a personal computing device and a service that is provided via the Internet. The software on the personal computing device is in...
|
|
|
7472165 |
Support program for web application server and server
By using a support program for a web application server according to the present invention, it is possible to completely control an order of executing processes of a processing flow including a...
|
|
|
7472417 |
System for detection and indication of a secure status of appliances
A system and method detect and display a security status of appliances, in particular automation appliances and/or systems. The appliances have a detector mechanism for identification of a security...
|
|
|
7472421 |
Computer model of security risks
The security risk associated with a computer system may be quantified by identifying a computer system, identifying a risk associated with the computer system, the risk relating to an event that...
|
|
|
7472416 |
Preventing network reset denial of service attacks using embedded authentication information
Approaches for preventing TCP RST attacks intended to cause denial of service in packet-switched networks are disclosed. In one approach, upon receiving a TCP RST packet, an endpoint node...
|
|
|
7472420 |
Method and system for detection of previously unknown malware components
A system, method, and computer program product for identifying malware components on a computer, including detecting an attempt to create or modify an executable file or an attempt to write to a...
|
|
|
7469418 |
Deterring network incursion
A system, method, and computer-readable medium for deterring network incursion by formulating appropriate responses to attacks. Once an attack is detected, the system may respond in such a manner...
|
|
|
7467400 |
Integrated security system having network enabled access control and interface devices
An integrated security system operating over a network includes a network security controller coupled to the network having a relational database including portal objects and related resources...
|
|
|
7467408 |
Method and apparatus for capturing and filtering datagrams for network security monitoring
A method and system for security monitoring in a computer network has a packet sink with filtering and data analysis capabilities. The packet sink is a default destination for data packets having...
|
|
|
7467410 |
System and method for preventing network misuse
A system and method for preventing misuse conditions on a data network are described. Embodiments of the system and method evaluate potential network misuse signatures by analyzing variables such...
|
|
|
7464398 |
Queuing methods for mitigation of packet spoofing
Systems and methods of mitigating attacks, such as Denial of Service (DoS) attacks, in a communications network are presented. Source addresses of packets received at network devices are monitored...
|
|
|
7464404 |
Method of responding to a truncated secure session attack
A method of progressive response for invoking and suspending blocking measures that defend against network anomalies such as malicious network traffic so that false positives and false negatives...
|