Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Protection at a particular protocol layer
Patent
1998-04-13
2000-10-31
Beausoliel, Jr., Robert W.
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Protection at a particular protocol layer
713201, G06F 1100
Patent
active
061417556
ABSTRACT:
A network firewall security apparatus that enables a very high degree of traffic selectability yet avoids the usual performance penalty associated with firewalls. This approach is specific to high-speed circuit switched networks, Asynchronous Transfer Mode (ATM) networks in particular. Security management is achieved through active connection management with authentication, better suited to the cell-based environment of high-speed circuit switched networks and to the mix of circuit switched traffic, where Internet Protocol (IP) datagrams comprise a fraction of the total traffic. The information in the signaling cells is used to determine which flows, rather than which individual cells, are allowed to pass through the firewall. A hierarchical method has been devised, in which the physical location of the interrelated components may be decoupled. Active connection management is applied in determining the approval of a connection based on signaling information and network state information. Once a flow has been validated, the cells associated with that flow are allowed to proceed through the firewall at line-speed with limited intervention and no performance degradation.
REFERENCES:
patent: 4860352 (1989-08-01), Laurance et al.
patent: 5313579 (1994-05-01), Chao
patent: 5550984 (1996-08-01), Gleb
patent: 5606668 (1997-02-01), Shwed
patent: 5623601 (1997-04-01), Vu
patent: 5633933 (1997-05-01), Aziz
patent: 5699513 (1997-12-01), Feigen et al.
patent: 5778174 (1998-07-01), Cain
patent: 5793964 (1998-08-01), Rogers et al.
patent: 5825891 (1998-10-01), Levesque et al.
patent: 5835726 (1998-11-01), Shwed et al.
patent: 5864666 (1999-01-01), Shrader
patent: 5898784 (1999-04-01), Kirby et al.
patent: 5898830 (1999-04-01), Wesinger, Jr. et al.
patent: 5909493 (1999-06-01), Motoyama
patent: 5968176 (1999-10-01), Nessett et al.
patent: 5987611 (1999-11-01), Freund
Dowd Patrick William
Mchenry John Thomas
Beausoliel, Jr. Robert W.
Bloor Stephen M.
Iqbal Nadeem
The United States of America as represented by the Director of t
LandOfFree
Firewall security apparatus for high-speed circuit switched netw does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Firewall security apparatus for high-speed circuit switched netw, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Firewall security apparatus for high-speed circuit switched netw will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2065408