Multiplex communications – Data flow congestion prevention or control – Control of data admission to the network
Reexamination Certificate
2006-03-01
2010-10-05
Moe, Aung S (Department: 2474)
Multiplex communications
Data flow congestion prevention or control
Control of data admission to the network
C726S013000, C726S023000, C713S154000, C709S224000
Reexamination Certificate
active
07808897
ABSTRACT:
Intrusion Prevention Systems (“IPSs”) are used to detect and/or prevent intrusion events from infiltrating a computer network. However, in large computer networks the IPSs cannot conduct their analysis on network data traffic quickly enough in the network core to meet the demand placed on them by the computer networks, thereby causing delays in the transmission of network data traffic from a source to a destination. To prevent this delay, the IPSs can be configured to intelligently communicate with a high-capacity network switch. The IPSs conduct the initial inspection of the network data traffic flows to determine if an intrusion event is present. However, after the initial inspection, the IPS can inform the switch of what actions to take for future traffic flows including determining which future traffic flows are inspected by the IPSs and which future traffic flows are allowed to be blocked or transmitted to their destination by the switch.
REFERENCES:
patent: 6603765 (2003-08-01), Wilford et al.
patent: 7007299 (2006-02-01), Ioele et al.
patent: 7143442 (2006-11-01), Scarfe et al.
patent: 7308715 (2007-12-01), Gupta et al.
patent: 7356585 (2008-04-01), Brook et al.
patent: 7441262 (2008-10-01), Hui et al.
patent: 7577737 (2009-08-01), Fawcus
patent: 2002/0035683 (2002-03-01), Kaashoek et al.
patent: 2003/0041266 (2003-02-01), Ke et al.
patent: 2003/0188189 (2003-10-01), Desai et al.
patent: 2004/0030927 (2004-02-01), Zuk
patent: 2004/0250158 (2004-12-01), Le Pennec et al.
patent: 2004/0268147 (2004-12-01), Wiederin et al.
patent: 2005/0022022 (2005-01-01), Mendonca et al.
patent: 2006/0037075 (2006-02-01), Frattura et al.
patent: 2006/0053491 (2006-03-01), Khuti et al.
patent: 2006/0095968 (2006-05-01), Portolani et al.
patent: 2007/0002736 (2007-01-01), Gade et al.
patent: 2007/0192862 (2007-08-01), Vermeulen et al.
patent: WO 00/10278 (2000-02-01), None
patent: WO 02/101516 (2002-12-01), None
“NetRanger User's Guide,” Version 2.1.1, 1998, Cisco Systems, Inc., 336 pages. (See pp. 1-9, Shunning paragraph).
Jou et al., “Architecture Design of a Scalable Intrusion Detection System for the Emerging Network Infrastructure,” DARPA Order No. E296, Apr. 1997, pp. 42 pages. (See pp. 5 and 14-18, paragraphs 2.2.1.1-2.2.1.2 and 4.1.1-4.1.2.2).
“Realsecure™ Network Sensor User Guide,” Version 5.0, 2000, Internet Security Systems, Inc., 42 pages. (See pp. 21-23, chapter 3).
Sugawara, “A Cooperative LAN Diagnostic and Observation Expert System,” Ninth Annual International Phoenix Conference on Computers and Communications, Mar. 1990, 8 pages. (see pp. 667-669, sections 1-2).
Safford et al., “The TAMU Security Package: A Ongoing Response to Internet Intruders in an Academic Environment,” Proceedings of the Fourth Usenix Security Symposium, Oct. 1993, 29 pages. (see pp. 102-106, section 4).
Sullivan et al., “Protecting Virtual Networks with a Distributed Cooperative Multi-Layer Security Architecture,” WSEAS Transactions on Computers, Jan. 2006, vol. 5, No. 1, 8 pages. (See paragraphs 3.1, 3.4, 4.2).
Graham Robert David
Mehta Neel
International Business Machines - Corporation
King & Spalding LLP
Mered Habte
Moe Aung S
LandOfFree
Fast network security utilizing intrusion prevention systems does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Fast network security utilizing intrusion prevention systems, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Fast network security utilizing intrusion prevention systems will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4200750