Information security – Monitoring or scanning of software or data including attack... – Intrusion detection
Reexamination Certificate
2007-12-11
2011-10-11
Revak, Christopher (Department: 2431)
Information security
Monitoring or scanning of software or data including attack...
Intrusion detection
C709S224000
Reexamination Certificate
active
08037532
ABSTRACT:
A program, method and system for embedding a programmable packet filter into an application to protect the application against malicious network packets are disclosed. Traditional packet filtering techniques to protect against malicious packets designed to exploit defects in applications, based on external packet filtering devices create a bottleneck in network traffic and present a large overhead cost. In addition, when security vulnerabilities in applications are discovered, traditional application updating methods lack a fast enough turn-around time to protect the application and users data from attack. These problems can be overcome by embedding a programmable packet filter into the application itself. The application can use the filter to discard malicious network packets. Furthermore, the filter can be updated via configuration files downloaded from the application vendor to update the application's embedded programmable packet filter without having to update the entire program code of the application.
REFERENCES:
patent: 6088804 (2000-07-01), Hill et al.
patent: 6119236 (2000-09-01), Shipley
patent: 6304975 (2001-10-01), Shipley
patent: 6519703 (2003-02-01), Joyce
patent: 6735702 (2004-05-01), Yavatkar et al.
patent: 7159237 (2007-01-01), Schneier et al.
patent: 7222366 (2007-05-01), Bruton et al.
patent: 7565549 (2009-07-01), Satterlee et al.
patent: 7640591 (2009-12-01), Tripathi et al.
patent: 7739736 (2010-06-01), Tripathi et al.
patent: 7809131 (2010-10-01), Njemanze et al.
patent: 7895649 (2011-02-01), Brook et al.
patent: 2004/0059943 (2004-03-01), Marquet et al.
patent: 2004/0143751 (2004-07-01), Peikari
patent: 2005/0108434 (2005-05-01), Witchey
patent: 2006/0206936 (2006-09-01), Liang et al.
patent: 2006/0253902 (2006-11-01), Rabadan et al.
patent: 2006/0256716 (2006-11-01), Caci
patent: 2006/0288411 (2006-12-01), Garg et al.
patent: 2007/0056038 (2007-03-01), Lok
patent: 2009/0241190 (2009-09-01), Todd et al.
Susilo, W. et al., “Personal Firewall for Pocket Pc 2003: Design & Implementation,” 19th Int. Conf. on Adv. Inf. Networking and Appl., Part vol. 2 pp. 661-666, Mar. 2005.
Huang, Q. et al., “An Embedded Firewall Based on Network Processor,” 2nd International Conference on Embedded Software and Systems, p. 7, Dec. 2005.
Ihde, M. et al., “Barbarians in the Gate: An Experimental Validation of Nic Based Distributed Firewall Performance and Flood Tolerance,” Int. Conf. on DSN, p. 6, Jun. 2006.
Guo et al., “An Embedded Firewall System Design Based on Ptolemy II,” Journal of System Simulation, vol. 16 No. 6 pp. 1361-1363, Jun. 2004.
Cabrasawan Feb
Cantor & Colburn LLP
International Business Machines - Corporation
Revak Christopher
LandOfFree
Application protection from malicious network traffic does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Application protection from malicious network traffic, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Application protection from malicious network traffic will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4271209