Electrical computers and digital processing systems: multicomput – Computer network managing – Computer network monitoring
Reexamination Certificate
2006-03-21
2006-03-21
Etienne, Ario (Department: 2157)
Electrical computers and digital processing systems: multicomput
Computer network managing
Computer network monitoring
C709S227000, C709S228000, C709S231000
Reexamination Certificate
active
07016951
ABSTRACT:
A system for network security transparently occupies an observation port on the data stream, passing the entire range of network information to a dedicated interpreter. The interpreter resolves the data stream into individual data packets, which are then assembled into reconstructed network sessions according to parameters such as protocol type, source and destination addresses, source and destination ports, sequence numbers and other variables. The different types of sessions may include the traffic of many different types of users, such as e-mail, streaming video, voice-over-Internet and others. The system detects and stores the sessions into a database. A parser module may extract only the minimum information needed to reconstruct individual sessions. A backend interface permits a systems administrator to interrogate the forensic record of the network for maintenance, security and other purposes. The invention is not constrained to detect limited types of data, but rather captures and records a comprehensive record of network behavior.
REFERENCES:
patent: 5191525 (1993-03-01), LeBrun et al.
patent: 5297039 (1994-03-01), Kanaegami et al.
patent: 5319453 (1994-06-01), Copriviza et al.
patent: 5475838 (1995-12-01), Fehskens et al.
patent: 5495607 (1996-02-01), Pisello et al.
patent: 5568471 (1996-10-01), Hershey et al.
patent: 5673252 (1997-09-01), Johnson et al.
patent: 5696899 (1997-12-01), Kalwitz
patent: 5715397 (1998-02-01), Ogawa et al.
patent: 5787253 (1998-07-01), McCreery et al.
patent: 5790799 (1998-08-01), Mogul
patent: 5796942 (1998-08-01), Esbensen
patent: 5802303 (1998-09-01), Yamaguchi
patent: 5819034 (1998-10-01), Joseph et al.
patent: 5825775 (1998-10-01), Chin et al.
patent: 5835726 (1998-11-01), Shwed et al.
patent: 5848233 (1998-12-01), Radia et al.
patent: 5848246 (1998-12-01), Gish
patent: 5850523 (1998-12-01), Gretta, Jr.
patent: 5892900 (1999-04-01), Ginter et al.
patent: 5930786 (1999-07-01), Carino et al.
patent: 5941945 (1999-08-01), Aditham et al.
patent: 5960200 (1999-09-01), Eager et al.
patent: 5982994 (1999-11-01), Mori et al.
patent: 5987503 (1999-11-01), Murakami
patent: 6021437 (2000-02-01), Chen et al.
patent: 6115040 (2000-09-01), Bladow et al.
patent: 6122665 (2000-09-01), Bar et al.
patent: 6131163 (2000-10-01), Wiegel
patent: 6226680 (2001-05-01), Boucher et al.
patent: 6253337 (2001-06-01), Maloney et al.
patent: 6269447 (2001-07-01), Maloney et al.
patent: 6304262 (2001-10-01), Maloney et al.
patent: 6378126 (2002-04-01), Tang
patent: 6393461 (2002-05-01), Okada et al.
patent: 6446112 (2002-09-01), Bunney et al.
patent: 6457051 (2002-09-01), Riddle et al.
patent: 6615262 (2003-09-01), Schweitzer et al.
patent: 8272810 (1996-10-01), None
Teresa Lunt, DARPA and Catherine McCollum, MITRE Corp.,DARPA's Intrusion Detection And Response Research Efforts, Summer 1998, 9 pages.
John Pallatto, www.ibizmag.com,Keep Tabs on Who's Beating A Path To Your Site, Dec. 1998, pp. 26-27.
Peter Cassidy,CIO Web Business Magazine, Beaching Surfers—Power Source, Feb. 1, 1999, pp. 1-9.
Marcus J. Ranum, et al.,NFR, Implementing A Generalized Tool For Network Monitoring, 1997, pp. 1-19.
MEMCOSession Wall-3™ The Next Generation Of Internet and Intranet Protection, p. 1-6.
Hatonen, K., Klemettinen, M., Mannila, H, Ronkainen, P., Tiovonen, H. “Knowledge Discovery from Telecommunication Network Alarm Databases”, Data Engineering, 1996. Proceedings of the Twelfth Internationl Conference on, 1996, pp. 115-122.
Almeroth, K.C., Ammar, M.H. “Multicast Group Behavior in the Internet's Multicast Backbone (Mbone)”, IEEE Communications Magazine, vol. 35 Issue 6, Jun. 1997, pp. 124-129.
NID Introduction, Apr. 7, 1998, pp. 1-7.
IBM Tech. DISC. Bull., “Parci Architecture”, vol. 38, Issue 3, Mar. 1, 1995, pp. 13-18.
PCT Written Opinion, Aug. 9, 2001 re PCT/US00/11184.
“Parci Architecture”, IBM Technical Disclosure Bulletin, Mar. 1995, pp. 13-18.
Abromavage John D.
Longworth Mark
Moore Todd A.
Romano Vince
Totman Scott V.
El-chanti Hussein
Etienne Ario
Mantech CTX Corporation
LandOfFree
System and method for network security does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with System and method for network security, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and System and method for network security will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3533300