Information security – Monitoring or scanning of software or data including attack... – Intrusion detection
Reexamination Certificate
2004-09-30
2008-11-11
Smithers, Matthew B (Department: 2137)
Information security
Monitoring or scanning of software or data including attack...
Intrusion detection
C726S014000, C379S088020, C370S395520
Reexamination Certificate
active
07451486
ABSTRACT:
A method for detecting intrusions that employ messages of two or more protocols is disclosed. Such intrusions might occur in Voice over Internet Protocol (VoIP) systems, as well as in systems in which two or more protocols support some service other than VoIP. In the illustrative embodiment of the present invention, a stateful intrusion-detection system is capable of employing rules that have cross-protocol pre-conditions. The illustrative embodiment can use such rules to recognize a variety of VoIP-based intrusion attempts, such as call hijacking, BYE attacks, etc. In addition, the illustrative embodiment is capable of using such rules to recognize other kinds of intrusion attempts in which two or more protocols support a service other than VoIP. The illustrative embodiment also comprises a stateful firewall that is capable of employing rules with cross-protocol pre-conditions.
REFERENCES:
patent: 6279113 (2001-08-01), Vaidya
patent: 6370648 (2002-04-01), Diep
patent: 6609205 (2003-08-01), Bernhard et al.
patent: 6711127 (2004-03-01), Gorman et al.
patent: 2001/0050914 (2001-12-01), Akahane et al.
patent: 2004/0165709 (2004-08-01), Pence et al.
patent: 2005/0083912 (2005-04-01), Afshar et al.
patent: 2005/0286466 (2005-12-01), Tagg et al.
patent: 2006/0075498 (2006-04-01), Yeom
patent: 2007/0130350 (2007-06-01), Alperovitch et al.
patent: 03/067810 (2003-08-01), None
Pogar Joel, “Data Security in a Converged Network”, 2003, Siemens Information and Communication Network, pp. 1-7.
Vuong et al., “A Survey of VOIP Intrusion and Intrusion Detection Systems”, 2004, IEEE, pp. 317-322.
M. Isaka “Countermeasure against Troubles in IP Telephone which does not annoy a user, Telecommunication”, Lick Telecom Corporation, vol. 21, No. 5, pp. 37-41, Apr. 25, 2004.
VoIP (SIP) Security, [online], Jan. 5, 2004, Internet <URL: http://www.forvalcreative.com/jpn/support/fw-1/V5.0/sdsummary—cpsa200310.html>.
Examiner's Office Action dated Oct. 31, 2007.
Bagchi Saurabh
Garg Sachin
Singh Navjot
Tsai Timothy Kohchih
Wu Yu-Sung
Avaya Inc.
DeMont & Breyer LLC
Smithers Matthew B
LandOfFree
Stateful and cross-protocol intrusion detection for voice... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Stateful and cross-protocol intrusion detection for voice..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Stateful and cross-protocol intrusion detection for voice... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4023420