Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Particular node for directing data and applying cryptography
Reexamination Certificate
2004-10-08
2009-02-10
Jung, David Y (Department: 2134)
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Particular node for directing data and applying cryptography
C713S153000, C713S150000
Reexamination Certificate
active
07490235
ABSTRACT:
A method, apparatus, system, and signal-bearing medium that, in an embodiment, filter packets received from a network based on rules. The filtering discards a subset of the packets based on the rules and keeps a remaining subset of the packets. The remaining subset is copied to a destination. The rules are created offline in a lower priority process from the filtering and copying by detecting whether symptoms exist in a sample of the remaining subset. In an embodiment, the order that the symptoms are detected is changed based on the frequency of the existence of the symptoms in the sample. In various embodiments, the symptoms may include receiving a threshold number of ping packets within a time period, receiving a threshold number of broadcast packets within a time period, receiving a packet with an invalid source address, receiving a packet with an invalid header flag, and receiving a threshold number of the packets within a time period that contain a sequence flag. In this way, firewall throughput performance is increased.
REFERENCES:
patent: 2003/0182580 (2003-09-01), Lee
patent: 03094418 (2003-11-01), None
patent: WO 03/094418 (2003-11-01), None
Packet Filtering Based on Source Router Marking and Hop-Count Ali, K.; Zulkernine, M.; Hassanein, H.; Local Computer Networks, 2007. LCN 2007. 32nd IEEE Conference on Oct. 15-18, 2007 pp. 1061-1068.
Optimal filtering for denial of service mitigation Stephan, B.; Decision and Control, 2002, Proceedings of the 41st IEEE Conference on vol. 2, Dec. 10-13, 2002 pp. 1428-1433 vol. 2.
Fast packet classification for two-dimensional conflict-free filters Warkhede, P.; Suri, S.; Varghese, G.; INFOCOM 2001. Twentieth Annual Joint Conference of the IEEE Computer and Communications Societies. Proceedings. IEEE vol. 3, Apr. 22-26, 2001 pp. 1434-1443 vol. 3.
John Pescatore et al., Intrusion Detection Should Be a Function, Not a Product, http://www-csonline.com/analyst/report1660.html, Aug. 19, 2003, pp. 1-5.
Khosmood Foaad
Petrovic Ognjen
Savoy Jeremy Matthew
Woods Duncan Allen
Gamon Owen J.
International Business Machines - Corporation
Jung David Y
LandOfFree
Offline analysis of packets does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Offline analysis of packets, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Offline analysis of packets will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4140731