Information security – Monitoring or scanning of software or data including attack... – Intrusion detection
Reexamination Certificate
2007-12-11
2007-12-11
Moazzami, Nasser (Department: 2136)
Information security
Monitoring or scanning of software or data including attack...
Intrusion detection
C726S022000, C713S188000, C370S473000, C370S351000, C370S218000
Reexamination Certificate
active
10172803
ABSTRACT:
An intrusion signature describing an attack is stored on a computer. Once a plurality of internet protocol packets is received, the plurality of internet protocol packets collectively containing an information sequence within a series of states, it is rearranged so as to place the information sequence in order. Each state of the series of states is then successively examined so as to correlate the information sequence to the intrusion signature.
REFERENCES:
patent: 5414650 (1995-05-01), Hekhuis
patent: 5557742 (1996-09-01), Smaha et al.
patent: 5621889 (1997-04-01), Lermuzeaux et al.
patent: 5769942 (1998-06-01), Maeda
patent: 5798706 (1998-08-01), Kraemer et al.
patent: 5805801 (1998-09-01), Holloway et al.
patent: 5812763 (1998-09-01), Teng
patent: 5864683 (1999-01-01), Boebert et al.
patent: 5892903 (1999-04-01), Klaus
patent: 5898830 (1999-04-01), Wesinger, Jr. et al.
patent: 5905859 (1999-05-01), Holloway et al.
patent: 5919257 (1999-07-01), Trostle
patent: 5919258 (1999-07-01), Kayashima et al.
patent: 5940591 (1999-08-01), Boyle et al.
patent: 6052788 (2000-04-01), Wesinger, Jr. et al.
patent: 6088804 (2000-07-01), Hill et al.
patent: 6119236 (2000-09-01), Shipley
patent: 6154844 (2000-11-01), Touboul et al.
patent: 6178509 (2001-01-01), Nardone et al.
patent: 6185678 (2001-02-01), Arbaugh et al.
patent: 6185689 (2001-02-01), Todd, Sr. et al.
patent: 6219706 (2001-04-01), Fan et al.
patent: 6243815 (2001-06-01), Antur et al.
patent: 6279113 (2001-08-01), Vaidya
patent: 6301699 (2001-10-01), Hollander et al.
patent: 6910134 (2005-06-01), Maher et al.
patent: 6944673 (2005-09-01), Malan et al.
patent: 6954775 (2005-10-01), Shanklin et al.
patent: 7058974 (2006-06-01), Maher et al.
patent: 2002/0083343 (2002-06-01), Crosbie et al.
patent: 2002/0112185 (2002-08-01), Hodges
patent: 2002/0133586 (2002-09-01), Shanklin et al.
patent: 2002/0143963 (2002-10-01), Converse et al.
patent: 2002/0147925 (2002-10-01), Lingafelt et al.
patent: 2003/0004688 (2003-01-01), Gupta et al.
patent: 2003/0004689 (2003-01-01), Gupta et al.
patent: 2003/0009699 (2003-01-01), Gupta et al.
patent: 2003/0105859 (2003-06-01), Garnett et al
patent: 2004/0193482 (2004-09-01), Hoffman et al.
patent: 2005/0235360 (2005-10-01), Pearson
patent: 02/45380 (2002-06-01), None
patent: WO 02/101516 (2002-12-01), None
Giovanni Vigna, et al., “NetSTAT: A Network-Based Intrusion Detection System,” Department of Computer Science,University of California Santa Barbara, pp. 1-46. Supported under Agreement No. F30602-97-1-0207.
Y. F. Jou, et al., and S.F. Wu, et al., “Design and Implementation of a Scalable Intrusion Detection System for the Protection of Network Infrastructure,”Advanced Networking Research, MCNC, RTP, NC, et al., pp. 15.
Ivan Krsul, “Computer Vulnerability Analysis Thesis Proposal,” The COAST Laboratory, Department of Computer Sciences,Purdue University, IN, Technical Report CSD-TR-97-026. Apr. 15, 1997, pp. 1-23.
Matt Bishop, “Vulnerabilities Analysis,” Department of Computer Science,University of California at Davis, pp. 1-12.
Matt Bishop, “A Taxonomy of UNIX System and Network Vulnerabilities,”CSE-95-10, May 1995, pp. 17.
Matt Bishop, et al., “A Critical Analysis of Vulnerability Taxonomies,”CSE-96-11, Sep. 1996, pp. 1-14.
Dawn X. Song, et al., “Advanced and Authenticated Marking Schemes for IP Traceback,” Report No. UCB/CSD-00-1107, Computer Science Division (EECS),University of California, Berkeley, Jun. 2000, pp. 1-11.
Chien-Lung Wu, et al., IPSec/PHIL (Packet Header Information List): Design, Implementation, and Evaluation,NC State University, Raleigh, NC, et al., pp. 6.
Allison Mankin, et al., “On Design and Evaluation of “Intention-Driven” ICMP Traceback,”USC/ISI, et al., pp. 7.
Brian Carrier, et al., “A Recursive Session Token Protocol for Use in Computer Forensic and TCP Traceback,” CERIAS,Purdue University, West Lafayette, IN, et al., 2002 IEEE, pp. 7.
Stefan Savage, et al., “Practical Network Support for IP Traceback,” Department of Computer Science and Engineering,University of Washington, Seattle, WA. Copyright 2000, pp. 12.
Diheng Qu, et al., “Statistical Anomaly Detection for Link-State Routing Protocols,” Computer Science Department,North Carolina State University, Raleigh, NC, et al.., Supported under Contract No. F30602-96-C-0325, pp. 9.
Amidon Keith E.
Gong Fengmin
Gupta Ramesh M.
Haeffele Steve M.
Jain Parveen K.
Hamaty Christopher J.
McAfee, Inc.
Moazzami Nasser
Shiferaw Eleni A
Zilka-Kotab, PC
LandOfFree
Protocol-parsing state machine and method of using same does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Protocol-parsing state machine and method of using same, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Protocol-parsing state machine and method of using same will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3883904