Information security – Policy
Reexamination Certificate
2002-07-11
2008-10-21
Moazzami, Nasser (Department: 2136)
Information security
Policy
C726S011000, C726S012000, C726S013000, C726S014000, C713S154000, C713S169000, C709S229000
Reexamination Certificate
active
07441262
ABSTRACT:
Systems, devices, and methods relating to network firewalls and VPN gateways for controlling and securing access to networks. An integrated VPN/firewall system comprises at least one policy engine module, a switch module, a cryptographic engine module, and at least one flow engine module. Each flow engine module receives DTUs from either side of the integrated VPN/firewall system. The DTUs are then compared to entries in a listening table and entries in a flow table. The entries in these tables consist of characteristics of DTUs expected to arrive for specific flows. Entries to both listening tables and flow tables are made by the policy engine with listening table entries generally denoting flows potentially allowed by policy to be established between computers on opposite sides of the system. Flow tables, on the other hand, correspond to flows already allowed to be established between computers on opposite sides of the firewall system.
REFERENCES:
patent: 6219786 (2001-04-01), Cunningham et al.
patent: 6636898 (2003-10-01), Ludovici et al.
patent: 6754832 (2004-06-01), Godwin et al.
patent: 6781990 (2004-08-01), Puri et al.
patent: 6928553 (2005-08-01), Xiong et al.
patent: 6957274 (2005-10-01), Trace et al.
patent: 7028332 (2006-04-01), Jason, Jr.
patent: 2002/0191604 (2002-12-01), Mitchell et al.
patent: 2003/0110274 (2003-06-01), Pazi et al.
patent: 2003/0145227 (2003-07-01), Boden
patent: 2003/0154399 (2003-08-01), Zuk et al.
patent: 2003/0172264 (2003-09-01), Dillon
patent: 2004/0117653 (2004-06-01), Shapira et al.
William Stallings et al., “IP Security”, Mar. 2000, pp. 11-26, Internet Protocol Journal, vol. 3, No. 1.
Kent & Atkinson, Standards Track “Security Architecture for the Internet Protocol” Network Working Group, The Internet Society, Nov. 1998, pp. 1-66.
NetScreen, “High Performance Firewall, VPN, and traffic shaping” http://www.netscreen.com/main.html.
NetScreen “Products” http://www.netscreen.com/products/datasheets.html.
NetScreen “Solutions” http://www.netscreen.com/solutions/index.html.
RapidStream, Inc.—Offering High Performance, ASIC based, VPN, Firewall http://www.rapidstream.com/.
Hui Man Him
Lapp David Philip
Abedin Shanto M
Maclean Cassan
Moazzami Nasser
Seaway Networks Inc.
LandOfFree
Integrated VPN/firewall system does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Integrated VPN/firewall system, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Integrated VPN/firewall system will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4001885