Information security – Access control or authentication – Network
Reexamination Certificate
2006-10-24
2006-10-24
Revak, Christopher (Department: 2131)
Information security
Access control or authentication
Network
C726S004000, C709S224000
Reexamination Certificate
active
07127739
ABSTRACT:
A method (400, 610) for handling information about packet data connections arriving at a security gateway element, in order to have in a connection data structure information about packet data connections in accordance with current screening information is presented. In the method, data packet header information about packet data connections in accordance with first screening information is stored (401) in said connection data structure, and updated screening information, said updated screening information forming either by itself or in connection with said first screening information second screening information, is being received (402). After receiving said updated screening information, entries of said connection data structure are compared (403) to said second screening information, resulting in a classification of said entries as entries representing packet data connections in accordance with said second screening information and as entries representing packet data connections in conflict with said second screening information. Corresponding security gateway element, management system, computer program and connection data structures are also presented.
REFERENCES:
patent: 5577209 (1996-11-01), Boyle et al.
patent: 5606668 (1997-02-01), Shwed
patent: 5781550 (1998-07-01), Templin et al.
patent: 5835726 (1998-11-01), Shwed et al.
patent: 5905859 (1999-05-01), Prorock et al.
patent: 5907602 (1999-05-01), Peel et al.
patent: 6044402 (2000-03-01), Davis et al.
patent: 6092194 (2000-07-01), Touboul
patent: 6130924 (2000-10-01), Rosenzweig et al.
patent: 6154844 (2000-11-01), Touboul et al.
patent: 6158010 (2000-12-01), Moriconi et al.
patent: 6167520 (2000-12-01), Touboul
patent: 6480962 (2002-11-01), Touboul
patent: 6510509 (2003-01-01), Chopra et al.
patent: 6606710 (2003-08-01), Krishnan et al.
patent: 6611875 (2003-08-01), Chopra et al.
patent: 6631466 (2003-10-01), Chopra et al.
patent: 6650660 (2003-11-01), Koehler et al.
patent: 6691168 (2004-02-01), Bal et al.
patent: 6804780 (2004-10-01), Touboul
patent: WO 98/07088 (1998-02-01), None
patent: 0 856 974 (1998-08-01), None
patent: 0 909 072 (1999-04-01), None
patent: WO 00/05852 (2000-02-01), None
patent: WO 00/62167 (2000-10-01), None
Bellovin, Steven M., “Network Firewalls”, IEEE Communications Magazine, IEEE Service Center, Piscataway, J.J., U.S. vol. 32, No. 9, Sep. 1, 1994.
Hari, Adiseshu, et al., “Detecting and Resolving Packet Filter Conflicts”, Proceedings IEEE Infocom 2000, Tel Aviv, Israel, Mar. 26-30, 2000., vol. 3 of 3 Conf. 19, ISBN: 0-7803-5881-3.
Revak Christopher
Ronald Craig Fish A Law Corporation
Stonesoft OY
LandOfFree
Handling information about packet data connections in a... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Handling information about packet data connections in a..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Handling information about packet data connections in a... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3630334