Information security – Access control or authentication – Network
Reexamination Certificate
2007-04-30
2010-12-07
Song, Hosuk (Department: 2435)
Information security
Access control or authentication
Network
C726S022000, C726S023000, C726S024000
Reexamination Certificate
active
07849502
ABSTRACT:
A data processing apparatus can perform HTTP traffic monitoring and filtering of HTTP requests from clients and responses from servers. Example apparatus comprises a processor, a first network interface to a protected network, a second network interface to an external network, and a traffic monitor having an address-domain name database, a firewall rules manager, and a DNS snooper. The traffic monitor accesses a blacklist and can perform receiving, from a client computer, a request to access a resource in the external network; blocking the request to the resource when a user agent of the client is in the blacklist as malicious software or when a file extension in a response to the request is in the blacklist; requesting, from a web reputation service, and receiving a reputation score indicating a reputation of the resource; blocking sending the request to the resource when the reputation is below a specified threshold.
REFERENCES:
patent: 6012090 (2000-01-01), Chung et al.
patent: 6115745 (2000-09-01), Berstis et al.
patent: 6411952 (2002-06-01), Bharat et al.
patent: 6886013 (2005-04-01), Beranek
patent: 7272853 (2007-09-01), Goodman et al.
patent: 7467206 (2008-12-01), Moore et al.
patent: 7586871 (2009-09-01), Hamilton et al.
patent: 7624110 (2009-11-01), Alagna et al.
patent: 2003/0014528 (2003-01-01), Crutcher et al.
patent: 2003/0172167 (2003-09-01), Judge et al.
patent: 2004/0122926 (2004-06-01), Moore et al.
patent: 2004/0153512 (2004-08-01), Friend
patent: 2005/0015626 (2005-01-01), Chasin
patent: 2005/0204002 (2005-09-01), Friend
patent: 2006/0010215 (2006-01-01), Clegg et al.
patent: 2006/0059238 (2006-03-01), Slater et al.
patent: 2006/0069697 (2006-03-01), Shraim et al.
patent: 2006/0206573 (2006-09-01), Horvitz et al.
patent: 2006/0212925 (2006-09-01), Shull et al.
patent: 2006/0218143 (2006-09-01), Nijork
patent: 2006/0253583 (2006-11-01), Dixon et al.
patent: 2007/0078936 (2007-04-01), Quinlan et al.
patent: 2007/0100795 (2007-05-01), Davies
patent: 2008/0114709 (2008-05-01), Dixon et al.
patent: 2009/0070872 (2009-03-01), Cowings et al.
U.S. Appl. No. 11/804,017, filed May 15, 2007, Final Office Action, mailed Jun. 11, 2010.
Bloch Eric
Elischer Julian R.
Golm Brandon L.
Krentel Mark
Mohan Shalabh
Hickman Palermo & Truong & Becker LLP
Ironport Systems, Inc.
Song Hosuk
LandOfFree
Apparatus for monitoring network traffic does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Apparatus for monitoring network traffic, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Apparatus for monitoring network traffic will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4222522