System and method for network security

Electrical computers and digital processing systems: multicomput – Computer network managing – Computer network monitoring

Reexamination Certificate

Rate now

  [ 0.00 ] – not rated yet Voters 0   Comments 0

Details

C709S227000, C709S228000, C709S231000

Reexamination Certificate

active

07016951

ABSTRACT:
A system for network security transparently occupies an observation port on the data stream, passing the entire range of network information to a dedicated interpreter. The interpreter resolves the data stream into individual data packets, which are then assembled into reconstructed network sessions according to parameters such as protocol type, source and destination addresses, source and destination ports, sequence numbers and other variables. The different types of sessions may include the traffic of many different types of users, such as e-mail, streaming video, voice-over-Internet and others. The system detects and stores the sessions into a database. A parser module may extract only the minimum information needed to reconstruct individual sessions. A backend interface permits a systems administrator to interrogate the forensic record of the network for maintenance, security and other purposes. The invention is not constrained to detect limited types of data, but rather captures and records a comprehensive record of network behavior.

REFERENCES:
patent: 5191525 (1993-03-01), LeBrun et al.
patent: 5297039 (1994-03-01), Kanaegami et al.
patent: 5319453 (1994-06-01), Copriviza et al.
patent: 5475838 (1995-12-01), Fehskens et al.
patent: 5495607 (1996-02-01), Pisello et al.
patent: 5568471 (1996-10-01), Hershey et al.
patent: 5673252 (1997-09-01), Johnson et al.
patent: 5696899 (1997-12-01), Kalwitz
patent: 5715397 (1998-02-01), Ogawa et al.
patent: 5787253 (1998-07-01), McCreery et al.
patent: 5790799 (1998-08-01), Mogul
patent: 5796942 (1998-08-01), Esbensen
patent: 5802303 (1998-09-01), Yamaguchi
patent: 5819034 (1998-10-01), Joseph et al.
patent: 5825775 (1998-10-01), Chin et al.
patent: 5835726 (1998-11-01), Shwed et al.
patent: 5848233 (1998-12-01), Radia et al.
patent: 5848246 (1998-12-01), Gish
patent: 5850523 (1998-12-01), Gretta, Jr.
patent: 5892900 (1999-04-01), Ginter et al.
patent: 5930786 (1999-07-01), Carino et al.
patent: 5941945 (1999-08-01), Aditham et al.
patent: 5960200 (1999-09-01), Eager et al.
patent: 5982994 (1999-11-01), Mori et al.
patent: 5987503 (1999-11-01), Murakami
patent: 6021437 (2000-02-01), Chen et al.
patent: 6115040 (2000-09-01), Bladow et al.
patent: 6122665 (2000-09-01), Bar et al.
patent: 6131163 (2000-10-01), Wiegel
patent: 6226680 (2001-05-01), Boucher et al.
patent: 6253337 (2001-06-01), Maloney et al.
patent: 6269447 (2001-07-01), Maloney et al.
patent: 6304262 (2001-10-01), Maloney et al.
patent: 6378126 (2002-04-01), Tang
patent: 6393461 (2002-05-01), Okada et al.
patent: 6446112 (2002-09-01), Bunney et al.
patent: 6457051 (2002-09-01), Riddle et al.
patent: 6615262 (2003-09-01), Schweitzer et al.
patent: 8272810 (1996-10-01), None
Teresa Lunt, DARPA and Catherine McCollum, MITRE Corp.,DARPA's Intrusion Detection And Response Research Efforts, Summer 1998, 9 pages.
John Pallatto, www.ibizmag.com,Keep Tabs on Who's Beating A Path To Your Site, Dec. 1998, pp. 26-27.
Peter Cassidy,CIO Web Business Magazine, Beaching Surfers—Power Source, Feb. 1, 1999, pp. 1-9.
Marcus J. Ranum, et al.,NFR, Implementing A Generalized Tool For Network Monitoring, 1997, pp. 1-19.
MEMCOSession Wall-3™ The Next Generation Of Internet and Intranet Protection, p. 1-6.
Hatonen, K., Klemettinen, M., Mannila, H, Ronkainen, P., Tiovonen, H. “Knowledge Discovery from Telecommunication Network Alarm Databases”, Data Engineering, 1996. Proceedings of the Twelfth Internationl Conference on, 1996, pp. 115-122.
Almeroth, K.C., Ammar, M.H. “Multicast Group Behavior in the Internet's Multicast Backbone (Mbone)”, IEEE Communications Magazine, vol. 35 Issue 6, Jun. 1997, pp. 124-129.
NID Introduction, Apr. 7, 1998, pp. 1-7.
IBM Tech. DISC. Bull., “Parci Architecture”, vol. 38, Issue 3, Mar. 1, 1995, pp. 13-18.
PCT Written Opinion, Aug. 9, 2001 re PCT/US00/11184.
“Parci Architecture”, IBM Technical Disclosure Bulletin, Mar. 1995, pp. 13-18.

LandOfFree

Say what you really think

Search LandOfFree.com for the USA inventors and patents. Rate them and share your experience with other people.

Rating

System and method for network security does not yet have a rating. At this time, there are no reviews or comments for this patent.

If you have personal experience with System and method for network security, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and System and method for network security will most certainly appreciate the feedback.

Rate now

     

Profile ID: LFUS-PAI-O-3533300

  Search
All data on this website is collected from public sources. Our data reflects the most accurate information available at the time of publication.