Distributed intrusion response system

Details Distributed intrusion response system Distributed intrusion response system

2003-11-14

2009-08-25

Brown, Christopher J (Department: 2439)

Information security

Monitoring or scanning of software or data including attack...

C726S023000, C726S011000, C726S012000, C726S013000, C713S189000

Reexamination Certificate

active

07581249

ABSTRACT:
A system and method to respond to intrusions detected on a network system including attached functions and a network infrastructure. The system includes means for receiving from an intrusion detection function information about intrusions, a directory service function for gathering and reporting at least the physical and logical addresses of devices of the network infrastructure associated with the detected intrusions, and a plurality of distributed enforcement devices of the network infrastructure for enforcing policies responsive to the detected intrusions. A policy decision function evaluates the reported detected intrusions and makes a determination whether one or more policy changes are required on the enforcement devices in response to a detected intrusion. A policy manager function configures the distributed enforcement devices with the responsive changed policy or policies. Policy changes rules can vary from no change to complete port blocking on one or more identified enforcement devices associated with the detected intrusion, to redirecting the associated traffic including the intrusion and these policies may be modified or removed over time as warranted by network operation.

REFERENCES:
patent: 4993024 (1991-02-01), Quinquis et al.
patent: 5251205 (1993-10-01), Callon et al.
patent: 5390173 (1995-02-01), Spinney et al.
patent: 5406260 (1995-04-01), Cummings et al.
patent: 5490252 (1996-02-01), Macera et al.
patent: 5608726 (1997-03-01), Virgile
patent: 5991881 (1999-11-01), Conklin et al.
patent: 6088804 (2000-07-01), Hill et al.
patent: 6128665 (2000-10-01), Iturralde
patent: 6147995 (2000-11-01), Dobbins et al.
patent: 6167137 (2000-12-01), Marino et al.
patent: 6321338 (2001-11-01), Porras et al.
patent: 6388992 (2002-05-01), Aubert et al.
patent: 6456624 (2002-09-01), Eccles et al.
patent: 6560236 (2003-05-01), Varghese et al.
patent: 6708212 (2004-03-01), Porras et al.
patent: 6789202 (2004-09-01), Ko et al.
patent: 2001/0049744 (2001-12-01), Hussey et al.
patent: 2002/0018571 (2002-02-01), Anderson et al.
patent: 2002/0087687 (2002-07-01), Zaifman et al.
patent: 2002/0090089 (2002-07-01), Branigan et al.
patent: 2002/0129264 (2002-09-01), Rowland et al.
patent: 2003/0014662 (2003-01-01), Gupta et al.
patent: 2003/0023774 (2003-01-01), Gladstone et al.
patent: 2003/0046583 (2003-03-01), Goldman et al.
patent: 2003/0110393 (2003-06-01), Brock et al.
patent: 2003/0149888 (2003-08-01), Yadav
patent: 2003/0188189 (2003-10-01), Desai et al.
patent: 2004/0003285 (2004-01-01), Whelan et al.
patent: 2004/0025044 (2004-02-01), Day
patent: 2004/0049693 (2004-03-01), Douglas
patent: 2004/0111636 (2004-06-01), Baffes et al.
patent: 2004/0215972 (2004-10-01), Sung et al.
patent: 2004/0255157 (2004-12-01), Ghanea-Hercock
patent: WO 9957625 (1999-11-01), None
patent: WO 03/047158 (2003-06-01), None
Kashiwa, D et al., Active Shaping: A Countermeasure Against DDoS Attacks; European Conference on Universal Multiservice Networks, ECUMN, XP-002998979, Apr. 8, 2002, pp. 171-179.
Chen, E. Y., Aegis: An Active-Network-Powered Defense Mechanism Against DDoS Attacks, Proceeding of IWAN 2001, LNCS 2207, Oct. 2001, pp. 1-15, Springer-Verlag, Berlin DE.

Affiliated with

Also associated with

Rating

Distributed intrusion response system does not yet have a rating. At this time, there are no reviews or comments for this patent.

If you have personal experience with Distributed intrusion response system, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Distributed intrusion response system will most certainly appreciate the feedback.

Rate now

Comments { 0 }

Profile ID: LFUS-PAI-O-4092956