Data processing: measuring – calibrating – or testing – Testing system – Including specific communication means
Reexamination Certificate
2006-07-11
2006-07-11
Tsai, Carol S. W. (Department: 2857)
Data processing: measuring, calibrating, or testing
Testing system
Including specific communication means
C709S230000, C370S230000, C713S152000
Reexamination Certificate
active
07076393
ABSTRACT:
A test method for Internet-Protocol packet networks that verifies the proper functioning of a dynamic pinhole filtering implementation as well as quantifying network vulnerability statistically, as pinholes are opened and closed is described. Specific potential security vulnerabilities that may be addressed through testing include: 1) excessive delay in opening pinholes, resulting in an unintentional denial of service; 2) excessive delay in closing pinholes, creating a closing delay window of vulnerability; 3) measurement of the length of various windows of vulnerability; 4) setting a threshold on a window of vulnerability such that it triggers an alert when a predetermined value is exceeded; 5) determination of incorrectly allocated pinholes, resulting in a denial of service; 6) determining the opening of extraneous pinhole/IP address combinations through a firewall which increase the network vulnerability through unrecognized backdoors; and 7) determining the inability to correlate call state information with dynamically established rules in the firewall.
REFERENCES:
patent: 5465286 (1995-11-01), Clare et al.
patent: 5936962 (1999-08-01), Haddock et al.
patent: 6826616 (2004-11-01), Larson et al.
patent: 6920107 (2005-07-01), Qureshi et al.
patent: 2002/0083187 (2002-06-01), Sim et al.
patent: 2003/0055931 (2003-03-01), De Almeida et al.
patent: 2003/0076780 (2003-04-01), Loge et al.
patent: 2003/0093563 (2003-05-01), Young et al.
patent: 2003/0115321 (2003-06-01), Edmison et al.
patent: 2003/0135639 (2003-07-01), Marejka et al.
patent: 2003/0165136 (2003-09-01), Cornelius et al.
patent: 2004/0039938 (2004-02-01), Katz et al.
patent: 2004/0068668 (2004-04-01), Lor et al.
patent: 2004/0133772 (2004-07-01), Render
patent: 2004/0136379 (2004-07-01), Liao et al.
patent: 2004/0208186 (2004-10-01), Eichen et al.
patent: 2004/0244058 (2004-12-01), Carlucci et al.
patent: 2005/0018618 (2005-01-01), Mualem et al.
patent: 2005/0050377 (2005-03-01), Chan et al.
Harvey Edward P.
Ormazabal Gaston S.
Sylvester James E.
Palmieri, Esq. Joseph R.
Suchtya, Esq. Leonard C.
Tsai Carol S. W.
Verizon Services Corp.
LandOfFree
Methods and apparatus for testing dynamic network firewalls does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Methods and apparatus for testing dynamic network firewalls, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Methods and apparatus for testing dynamic network firewalls will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3559576