ATE357803T1 - Verfahren und vorrichtung zur untersuchung und sperrung eines datenstroms - Google Patents
Verfahren und vorrichtung zur untersuchung und sperrung eines datenstromsInfo
- Publication number
- ATE357803T1 ATE357803T1 AT04025579T AT04025579T ATE357803T1 AT E357803 T1 ATE357803 T1 AT E357803T1 AT 04025579 T AT04025579 T AT 04025579T AT 04025579 T AT04025579 T AT 04025579T AT E357803 T1 ATE357803 T1 AT E357803T1
- Authority
- AT
- Austria
- Prior art keywords
- access device
- network access
- connection
- packets
- stream
- Prior art date
Links
- 230000000903 blocking effect Effects 0.000 title abstract 2
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0281—Proxies
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/145—Countermeasures against malicious traffic the attack involving the propagation of malware through the network, e.g. viruses, trojans or worms
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Health & Medical Sciences (AREA)
- General Health & Medical Sciences (AREA)
- Virology (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
- Automatic Analysis And Handling Materials Therefor (AREA)
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| US10/697,846 US7310815B2 (en) | 2003-10-29 | 2003-10-29 | Method and apparatus for datastream analysis and blocking |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| ATE357803T1 true ATE357803T1 (de) | 2007-04-15 |
Family
ID=34423402
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| AT04025579T ATE357803T1 (de) | 2003-10-29 | 2004-10-27 | Verfahren und vorrichtung zur untersuchung und sperrung eines datenstroms |
Country Status (5)
| Country | Link |
|---|---|
| US (1) | US7310815B2 (de) |
| EP (1) | EP1528743B1 (de) |
| AT (1) | ATE357803T1 (de) |
| DE (1) | DE602004005396D1 (de) |
| TW (1) | TWI378704B (de) |
Families Citing this family (51)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US6205249B1 (en) | 1998-04-02 | 2001-03-20 | Scott A. Moskowitz | Multiple transform utilization and applications for secure digital watermarking |
| US7664263B2 (en) | 1998-03-24 | 2010-02-16 | Moskowitz Scott A | Method for combining transfer functions with predetermined key creation |
| US7159116B2 (en) | 1999-12-07 | 2007-01-02 | Blue Spike, Inc. | Systems, methods and devices for trusted transactions |
| US7177429B2 (en) | 2000-12-07 | 2007-02-13 | Blue Spike, Inc. | System and methods for permitting open access to data objects and for securing data within the data objects |
| US7346472B1 (en) | 2000-09-07 | 2008-03-18 | Blue Spike, Inc. | Method and device for monitoring and analyzing signals |
| US7664264B2 (en) | 1999-03-24 | 2010-02-16 | Blue Spike, Inc. | Utilizing data reduction in steganographic and cryptographic systems |
| US7475246B1 (en) | 1999-08-04 | 2009-01-06 | Blue Spike, Inc. | Secure personal content server |
| US6961773B2 (en) | 2001-01-19 | 2005-11-01 | Esoft, Inc. | System and method for managing application service providers |
| US7287275B2 (en) | 2002-04-17 | 2007-10-23 | Moskowitz Scott A | Methods, systems and devices for packet watermarking and efficient provisioning of bandwidth |
| US8270423B2 (en) * | 2003-07-29 | 2012-09-18 | Citrix Systems, Inc. | Systems and methods of using packet boundaries for reduction in timeout prevention |
| US7616638B2 (en) | 2003-07-29 | 2009-11-10 | Orbital Data Corporation | Wavefront detection and disambiguation of acknowledgments |
| US8233392B2 (en) * | 2003-07-29 | 2012-07-31 | Citrix Systems, Inc. | Transaction boundary detection for reduction in timeout penalties |
| US7630305B2 (en) | 2003-07-29 | 2009-12-08 | Orbital Data Corporation | TCP selective acknowledgements for communicating delivered and missed data packets |
| US8432800B2 (en) | 2003-07-29 | 2013-04-30 | Citrix Systems, Inc. | Systems and methods for stochastic-based quality of service |
| US8437284B2 (en) | 2003-07-29 | 2013-05-07 | Citrix Systems, Inc. | Systems and methods for additional retransmissions of dropped packets |
| US8238241B2 (en) | 2003-07-29 | 2012-08-07 | Citrix Systems, Inc. | Automatic detection and window virtualization for flow control |
| CA2546841A1 (en) * | 2003-11-24 | 2005-06-02 | Fsc Internet Corp. | Network session re-construction |
| US8863277B2 (en) * | 2004-04-07 | 2014-10-14 | Fortinet, Inc. | Systems and methods for passing network traffic content |
| US7562389B1 (en) | 2004-07-30 | 2009-07-14 | Cisco Technology, Inc. | Method and system for network security |
| US7555774B2 (en) * | 2004-08-02 | 2009-06-30 | Cisco Technology, Inc. | Inline intrusion detection using a single physical port |
| US7835361B1 (en) | 2004-10-13 | 2010-11-16 | Sonicwall, Inc. | Method and apparatus for identifying data patterns in a file |
| US7600257B2 (en) | 2004-10-13 | 2009-10-06 | Sonicwall, Inc. | Method and an apparatus to perform multiple packet payloads analysis |
| US7725938B2 (en) * | 2005-01-20 | 2010-05-25 | Cisco Technology, Inc. | Inline intrusion detection |
| US7844700B2 (en) * | 2005-03-31 | 2010-11-30 | Microsoft Corporation | Latency free scanning of malware at a network transit point |
| US20100070982A1 (en) * | 2005-09-09 | 2010-03-18 | Pitts William M | Distributed File System Consistency Mechanism Extension For Accelerating Communications Between Distributed Applications |
| US8468589B2 (en) | 2006-01-13 | 2013-06-18 | Fortinet, Inc. | Computerized system and method for advanced network content processing |
| GB2432933B (en) * | 2006-03-14 | 2008-07-09 | Streamshield Networks Ltd | A method and apparatus for providing network security |
| EP1868321B1 (de) * | 2006-06-12 | 2016-01-20 | Mitsubishi Denki Kabushiki Kaisha | In-line-Inhaltsanalyse eines TCP-Datenstroms |
| US8392603B2 (en) * | 2006-08-14 | 2013-03-05 | International Business Machines Corporation | File transfer |
| US8042184B1 (en) | 2006-10-18 | 2011-10-18 | Kaspersky Lab, Zao | Rapid analysis of data stream for malware presence |
| EP1976195B1 (de) * | 2007-03-30 | 2014-05-07 | Alcatel-Lucent | Verfahren und System zum Lernen von MAC-Adressen |
| US7930750B1 (en) * | 2007-04-20 | 2011-04-19 | Symantec Corporation | Method to trickle and repair resources scanned using anti-virus technologies on a security gateway |
| US8166534B2 (en) * | 2007-05-18 | 2012-04-24 | Microsoft Corporation | Incorporating network connection security levels into firewall rules |
| US8863286B1 (en) | 2007-06-05 | 2014-10-14 | Sonicwall, Inc. | Notification for reassembly-free file scanning |
| US8416773B2 (en) * | 2007-07-11 | 2013-04-09 | Hewlett-Packard Development Company, L.P. | Packet monitoring |
| US7991723B1 (en) | 2007-07-16 | 2011-08-02 | Sonicwall, Inc. | Data pattern analysis using optimized deterministic finite automaton |
| US8813221B1 (en) | 2008-09-25 | 2014-08-19 | Sonicwall, Inc. | Reassembly-free deep packet inspection on multi-core hardware |
| TW201029396A (en) * | 2009-01-21 | 2010-08-01 | Univ Nat Taiwan | Packet processing device and method |
| US9769149B1 (en) | 2009-07-02 | 2017-09-19 | Sonicwall Inc. | Proxy-less secure sockets layer (SSL) data inspection |
| WO2011058261A1 (fr) * | 2009-11-13 | 2011-05-19 | France Telecom | Procede d'analyse d'un contenu transmis par paquets dans un reseau de communication vers un terminal, programme d'ordinateur, equipement reseau et systeme |
| US8782790B1 (en) * | 2010-02-19 | 2014-07-15 | Symantec Corporation | Signature creation for malicious network traffic |
| US8776234B2 (en) * | 2011-04-20 | 2014-07-08 | Kaspersky Lab, Zao | System and method for dynamic generation of anti-virus databases |
| US9608959B2 (en) | 2015-03-23 | 2017-03-28 | Quest Software Inc. | Non RFC-compliant protocol classification based on real use |
| US10187446B2 (en) | 2015-03-23 | 2019-01-22 | Sonicwall Inc. | Firewall multi-level security dynamic host-based sandbox generation for embedded URL links |
| US10834065B1 (en) | 2015-03-31 | 2020-11-10 | F5 Networks, Inc. | Methods for SSL protected NTLM re-authentication and devices thereof |
| US9485231B1 (en) | 2015-05-26 | 2016-11-01 | Dell Software Inc. | Securing internet of things communications across multiple vendors |
| US9888011B2 (en) | 2015-07-31 | 2018-02-06 | Sonicwall Inc. | Social media login and interaction management |
| US10404698B1 (en) | 2016-01-15 | 2019-09-03 | F5 Networks, Inc. | Methods for adaptive organization of web application access points in webtops and devices thereof |
| US11962499B2 (en) * | 2018-10-31 | 2024-04-16 | Vmware, Inc. | Multitenancy for service machines |
| TWI825293B (zh) * | 2020-03-24 | 2023-12-11 | 瑞昱半導體股份有限公司 | 應用在網路裝置中的電路 |
| CN113872936A (zh) * | 2021-08-26 | 2021-12-31 | 上海宝康电子控制工程有限公司 | 一种流模式网络安全检测方法及系统 |
Family Cites Families (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US5889943A (en) | 1995-09-26 | 1999-03-30 | Trend Micro Incorporated | Apparatus and method for electronic mail virus detection and elimination |
| US6119236A (en) * | 1996-10-07 | 2000-09-12 | Shipley; Peter M. | Intelligent network security device and method |
| IL120420A (en) * | 1997-03-10 | 1999-12-31 | Security 7 Software Ltd | Method and system for preventing the downloading and execution of executable objects |
| US6178448B1 (en) * | 1997-06-18 | 2001-01-23 | International Business Machines Corporation | Optimal link scheduling for multiple links by obtaining and utilizing link quality information |
| US6088803A (en) * | 1997-12-30 | 2000-07-11 | Intel Corporation | System for virus-checking network data during download to a client device |
| US6219706B1 (en) * | 1998-10-16 | 2001-04-17 | Cisco Technology, Inc. | Access control for networks |
| DE60122033D1 (de) | 2000-02-04 | 2006-09-21 | Aladdin Knowledge Systems Ltd | Schutz von Computernetzen gegen böswillige Inhalte |
| US9392002B2 (en) | 2002-01-31 | 2016-07-12 | Nokia Technologies Oy | System and method of providing virus protection at a gateway |
| US7454499B2 (en) * | 2002-11-07 | 2008-11-18 | Tippingpoint Technologies, Inc. | Active network defense system and method |
-
2003
- 2003-10-29 US US10/697,846 patent/US7310815B2/en not_active Expired - Lifetime
-
2004
- 2004-10-27 AT AT04025579T patent/ATE357803T1/de not_active IP Right Cessation
- 2004-10-27 EP EP04025579A patent/EP1528743B1/de not_active Expired - Lifetime
- 2004-10-27 DE DE602004005396T patent/DE602004005396D1/de not_active Expired - Lifetime
- 2004-10-29 TW TW093133045A patent/TWI378704B/zh not_active IP Right Cessation
Also Published As
| Publication number | Publication date |
|---|---|
| US7310815B2 (en) | 2007-12-18 |
| TWI378704B (en) | 2012-12-01 |
| EP1528743A2 (de) | 2005-05-04 |
| TW200531500A (en) | 2005-09-16 |
| DE602004005396D1 (de) | 2007-05-03 |
| US20050097358A1 (en) | 2005-05-05 |
| EP1528743B1 (de) | 2007-03-21 |
| EP1528743A3 (de) | 2005-07-06 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| ATE357803T1 (de) | Verfahren und vorrichtung zur untersuchung und sperrung eines datenstroms | |
| ATE547881T1 (de) | Vorrichtung und verfahren zur sicherung gegen virus in einem gateway | |
| Deri | Improving passive packet capture: Beyond device polling | |
| US8958318B1 (en) | Event-based capture of packets from a network flow | |
| KR101292873B1 (ko) | 네트워크 인터페이스 카드장치 및 상기 네트워크 인터페이스 카드장치를 이용한 트래픽 처리 방법 | |
| CN100579003C (zh) | 一种采用网流技术防御tcp攻击的方法和系统 | |
| US20130160122A1 (en) | Two-stage intrusion detection system for high-speed packet processing using network processor and method thereof | |
| GB2389736B (en) | A method for forwarding and storing session packets according to preset and/or dynamic rules | |
| DE60210927D1 (de) | Verfahren und Vorrichtung zur zulassung der Datenübertragung über Firewalls | |
| CN104135490A (zh) | 入侵检测系统分析方法和入侵检测系统 | |
| EP2026559A3 (de) | Mit einem POD gekoppeltes Host-Gerät und Verfahren zur Verarbeitung von Rundfunkdaten | |
| ATE336131T1 (de) | Schutz von computernetzen gegen böswillige inhalte | |
| CN103023914A (zh) | 一种防火墙系统及其实现方法 | |
| US8159948B2 (en) | Methods and apparatus for many-to-one connection-rate monitoring | |
| CN106027497A (zh) | 面向SDN的基于OpenFlow-DPM的DDoS溯源与源端过滤方法 | |
| US8769665B2 (en) | IP communication device as firewall between network and computer system | |
| KR100614775B1 (ko) | 네트워크 보호 장치 및 방법 | |
| ATE399410T1 (de) | Filtern von paketen | |
| DE602006018642D1 (de) | Verkehrserzeugung während des zustands einer inaktiven benutzerebene | |
| EP1788779A3 (de) | Kommunikationsvorrichtung und Kommunikationsverfahren zur Detektion von Paketmanipulationen | |
| JP2006164038A (ja) | DoS攻撃あるいはDDoS攻撃に対処する方法、ネットワーク装置、および分析装置 | |
| ATE506767T1 (de) | Verfahren und vorrichtung zur netzwerkverknüpfung über eine mehrfachmeldung mittels eines tdma- steuerungsschlitz-verfahrens | |
| CN103026679B (zh) | 网络设备中检测到的模式的减轻 | |
| JP2006067293A5 (de) | ||
| ATE387051T1 (de) | Verfahren und drahtloser komponent zur vermeidung von tcp paketwiederübertragung während des weiterreichens eines mobilgeräts |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| RER | Ceased as to paragraph 5 lit. 3 law introducing patent treaties |