Information security – Monitoring or scanning of software or data including attack... – Intrusion detection
Reexamination Certificate
2008-08-28
2010-10-12
Smithers, Matthew B (Department: 2437)
Information security
Monitoring or scanning of software or data including attack...
Intrusion detection
Reexamination Certificate
active
07814547
ABSTRACT:
A method for detecting intrusions that employ messages of two or more protocols is disclosed. Such intrusions might occur in Voice over Internet Protocol (VoIP) systems, as well as in systems in which two or more protocols support some service other than VoIP. In the illustrative embodiment of the present invention, a stateful intrusion-detection system is capable of employing rules that have cross-protocol pre-conditions. The illustrative embodiment can use such rules to recognize a variety of VoIP-based intrusion attempts, such as call hijacking, BYE attacks, etc. In addition, the illustrative embodiment is capable of using such rules to recognize other kinds of intrusion attempts in which two or more protocols support a service other than VoIP. The illustrative embodiment also comprises a stateful firewall that is capable of employing rules with cross-protocol pre-conditions.
REFERENCES:
patent: 6279113 (2001-08-01), Vaidya
patent: 6370648 (2002-04-01), Diep
patent: 6609205 (2003-08-01), Bernhard et al.
patent: 6711127 (2004-03-01), Gorman et al.
patent: 6944670 (2005-09-01), Krichevski et al.
patent: 7451486 (2008-11-01), Garg et al.
patent: 2001/0050914 (2001-12-01), Akahane et al.
patent: 2004/0034800 (2004-02-01), Singhal et al.
patent: 2004/0086093 (2004-05-01), Schranz
patent: 2004/0165709 (2004-08-01), Pence et al.
patent: 2005/0083912 (2005-04-01), Afshar et al.
patent: 2005/0286466 (2005-12-01), Tagg et al.
patent: 2006/0075498 (2006-04-01), Yeom
patent: 2007/0130350 (2007-06-01), Alperovitch et al.
patent: 03067810 (2003-08-01), None
Yu et al., “TRINETR: An Intrusion Detection Alert Management System”, 2004, IEEE, pp. 1-6.
Manjunath et al., “Design and Implementation of Information Gathering Tool for VOIP Collaboration”, 2004, IEEE, pp. 434-438.
Wu et al., “SCIDIVE: A Stateful and Cross Protocol Intrusion Detection Architecture for Voice-over-IP Environments”, 2004, IEEE, pp. 1-10.
Isaka, M., “Countermeasure against Troubles in IP Telephone which does not annoy a user, Telecommunication”, Apr. 25, 2004, pp. 37-41, vol. 21, No. 5, Publisher: Lick Telecom Corporation, Published in: JP.
Pogar, Joel A., “Data Security in a Converged Network—A Siemens White Paper”, 2003, pp. 1-7, Publisher: Siemens Information and Communication Networks, Inc.
“An IP Telephone is risky in this point”, “Network Magazine”, Sep. 28, 2004, pp. 128-135, vol. 9, No. 11, Publisher: Askey Corporation Japan, Published in: JP.
NIKKEI BP Corporation, “Next ‘presence’ relating persons—things—information”, Mar. 8, 2004, pp. 65-69, No. 595, Published in: JP.
Vuong et al., “A Survey of VOIP Intrusions and Intrusion Detection Systems”, 2004, pp. 317-322, Publisher: IEEE.
Sudo, T., “JP Application No. 2005-287464 Refusal Decision Oct. 29, 2008”, , Publisher: JPO, Published in: JP.
Tauchi, K., “JP Application No. 2005-287464 Office Action Nov. 7, 2007”, , Publisher: JPO, Published in JP.
Tauchi, K., “JP Application No. 2005-287464 Office Action Jun. 11, 2007”, , Publisher: JPO, Published in: JP.
“KR Application No. 2005-0090327 Office Action Oct. 27, 2006”, , Publisher: KIPO, Published in KR.
“KR Application No. 2005-0090327 Office Action Jun. 29, 2007”, , Publisher: KIPO, Published in: KR.
Smithers, Matthew, “U.S. Appl. No. 10/955,594 Notice of Allowance Aug. 14, 2008”, , Publisher: USPTO, Published in: US.
Mede, Esteve, “U.S. Appl. No. 10/955,594 Office Action Nov. 1, 2007”, , Publisher: USPTO, Published in: US.
Smithers, Matthew, “U.S. Appl. No. 10/955,594 Office Action Apr. 29, 2008”, , Publisher: USPTO, Published in: US.
Bagchi Saurabh
Garg Sachin
Singh Navjot
Tsai Timothy Kohchih
Wu Yu-Sung
Avaya Inc.
DeMont & Breyer LLC
Smithers Matthew B
LandOfFree
Stateful and cross-protocol intrusion detection for voice... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Stateful and cross-protocol intrusion detection for voice..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Stateful and cross-protocol intrusion detection for voice... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4235144