Multiplex communications – Diagnostic testing – Determination of communication parameters
Reexamination Certificate
2011-08-09
2011-08-09
Chou, Albert T (Department: 2471)
Multiplex communications
Diagnostic testing
Determination of communication parameters
C713S152000, C726S023000
Reexamination Certificate
active
07995496
ABSTRACT:
A computer-based method for collecting and storing types and quantities of traffic passing through an internet protocol (IP) network is described. The method includes extracting, from a database, a single instance of each unique packet header associated with a plurality of IP-to-IP packets, the IP-to-IP packets having been transmitted across the computer network over a predefined period of time, determining a highest probability service port for each IP-to-IP packet combination using the extracted packet headers, accumulating all IP-to-IP-on-Port packet combinations into a single record, the single record including a first packet time, a last packet time, and a total number of bytes transferred, storing the records for all IP-to-IP-on-Port conversations in the database, accumulating the packets based on IP-to-IP-on-protocol if the packets were part of a protocol where port numbers do not exist, and storing the accumulated packets where port numbers do not exist in the database.
REFERENCES:
patent: 5278901 (1994-01-01), Shieh et al.
patent: 5311593 (1994-05-01), Carmi
patent: 5787253 (1998-07-01), McCreery et al.
patent: 6279113 (2001-08-01), Vaidya
patent: 6470297 (2002-10-01), Ford
patent: 6499107 (2002-12-01), Gleichauf et al.
patent: 6816973 (2004-11-01), Gleichauf et al.
patent: 6873797 (2005-03-01), Chang et al.
patent: 6910003 (2005-06-01), Arnold et al.
patent: 7053765 (2006-05-01), Clark
patent: 7127739 (2006-10-01), Syvanne
patent: 7165100 (2007-01-01), Cranor et al.
patent: 7174566 (2007-02-01), Yadav
patent: 7180856 (2007-02-01), Breslau et al.
patent: 7185368 (2007-02-01), Copeland, III
patent: 7360246 (2008-04-01), Etoh et al.
patent: 2002/0144156 (2002-10-01), Copeland, III
patent: 2005/0210533 (2005-09-01), Copeland et al.
patent: 2010/0083377 (2010-04-01), Rowney et al.
Technology Profile Fact Sheet: Network Anomaly Detection Algorithm; http://www.nsa.gov/techtrans/techt00029.cfm; 2 pages, Aug. 20, 2008.
Tanase, M.; One of These Things is not Like the Others: The State of Anomaly Detection; http://www. securityfocus.com/print/infocus/1600; Jul. 1, 2002; 5 pages.
Anomaly Detection for Computer Security; http://www.cs.unm/edu/˜terran/research/anomaly—detection—for—computer—security; 2 pages, Aug. 20, 2008.
An Efficient Anomaly Detection Algorithm for Vector-Based Intrusion Detection Systems; http://www.springerlink.com/content/bmx1c58ndqp46hd8/; Sep. 6, 2005; 2 pages.
Cisco Learning Blog; http://blog.sazza.de/?cat=21; Apr. 23, 2008; 4 pages.
Packet Sniffer; http://en.wikipedia.org/wiki/Packet—sniffer; Aug. 19, 2008; 3 pages.
Pcap; http://en.wikipedia.org/wiki/Pcap; Aug. 14, 2008; 3 pages.
TCP Connection Establishment Process: The “Three-Way Handshake”; http://www.tcpipguide.com/free/t—TCPCpnnectionEstablishmentProcessTheThreeWayHandsh-3.htm; 2005; 6 pages, Aug. 20, 2008.
IP Protocol Suite; http://www.networksorcery.com/enp/topic/ipsuite.htm (IP, TCP, UDP); 47 pages.
OmniPeek Overview; http://www.wildpackets.com/products/omnipeek/overview/printable; 2008; 3 pages.
Lee, H, et al.; Multicast Routing Debugger (MRD)—A System to Monitor the Status of Multicast Network; http://www.pamconf.org/2002/Multicast—Routing—Debugger.pdf; Mar. 26, 2002; 9 pages.
Multicast; http://en.wikipedia.org/wiki/Multicast; Aug. 18, 2008; 4 pages.
United States Patent and Trademark Office, Office Action for U.S. Appl. No. 12/195,333, May 13, 2010, 20 pages, US.
Aldrich Timothy Mark
Knapp Stephen
Armstrong Teasdale LLP
Chou Albert T
The Boeing Company
LandOfFree
Methods and systems for internet protocol (IP) traffic... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Methods and systems for internet protocol (IP) traffic..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Methods and systems for internet protocol (IP) traffic... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2658237