Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Protection at a particular protocol layer
Reexamination Certificate
1997-12-15
2001-10-30
Beausoliel, Jr., Robert W. (Department: 2785)
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Protection at a particular protocol layer
C713S152000, C709S224000, C714S004110, C714S043000
Reexamination Certificate
active
06311274
ABSTRACT:
FIELD OF THE INVENTION
The present invention pertains to alert handling on a network.
BACKGROUND OF THE INVENTION
Alert handling is an important function of network management wherein, inter alia, the condition of a resource is monitored and an action is taken based upon the nature of (or changes in) the condition. An example of a resource is a network computer. A network computer comprises a processor, memory and a port adapted to be connected to a network, the port and memory being coupled to the processor. Another type of a resource is a device resource. A device resource is an apparatus that is typically adapted to be connected to a network computer. An example of a device resource is a hard disk drive. Another example of a device resource is a microprocessor-controlled thermocouple that is used to control an industrial process.
An alert handling system should be capable of carrying out the following functions: specifying an alert condition (i.e., the condition that triggers an alert action); monitoring the alert condition; sending an alert message when the alert condition is met; and performing an appropriate alert action in response to the alert message.
In certain instances, alert information can be sensitive. For example, revealing under what conditions an alert action is triggered creates a target for an adverse party seeking to manipulate resources that can be affected by the alert handling system. For example, an alert condition specifies that when the network traffic destined for a given subnetwork exceeds a certain threshold, the subnetwork is to be shut down. Revealing this condition could enable an adverse party to shut the subnetwork down at will by flooding the subnetwork with spurious message traffic above the threshold. Also, an adverse party could identify an unintended property of an alert condition or alert action and disadvantageously manipulate resources affected by the alert handling system.
Likewise, an adverse party could masquerade as an alert originator, sending a false alert occurrence message that causes an alert action to be performed spuriously. An unauthorized party could alter the conditions under which an alert action is triggered, possibly disrupting network operations or impairing alert handling. An unauthorized party could also disadvantageously alter the alert action that is triggered when an alert condition is met.
An alert system should provide assurance that the purported source of an alert message is the true source, i.e., that the message is authentic, to prevent an unauthorized party from masquerading as a party authorized to use or manipulate the alert handling system. An alert system should also provide assurance that the contents of any alert message have not been subjected to unauthorized modification. Further, an alert system should protect the confidentiality of sensitive information in alert messages to prevent its unauthorized disclosure.
SUMMARY OF THE INVENTION
According to an embodiment of the present invention, a system and method are provided for alert handling on a network. An alert setup message that includes an alert data structure is received. It is determined if the alert data structure is authentic. If the alert data structure is authentic, then the alert data structure is processed.
REFERENCES:
patent: 5440688 (1995-08-01), Nishida
patent: 5621892 (1997-04-01), Cook
patent: 5757914 (1998-05-01), McManis
patent: 5781535 (1998-07-01), Russ et al.
patent: 5872912 (1999-02-01), Brownmiller et al.
patent: 5931947 (1999-08-01), Burns et al.
Beausoliel, Jr. Robert W.
Intel Corporation
Kenyon & Kenyon
Weir James G
LandOfFree
Network alert handling system and method does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Network alert handling system and method, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Network alert handling system and method will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2600083