专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

WO2005032042A1 SYSTEMS AND METHODS OF CONTROLLING NETWORK ACCESS 审中-公开
标题翻译：控制网络访问的系统和方法
公开(公告)号：WO2005032042A1
公开(公告)日：2005-04-07
申请号：PCT/US2004/031352
申请日：2004-09-24
申请人： INFOEXPRESS, INC. , LUM, Stacey
发明人： LUM, Stacey
IPC分类号： H04L9/00
CPC分类号： H04L63/0876 , H04L63/20
摘要： A new approach to network security includes manipulating an access point (215) such that an initial communication from an external device (230) is passed to a restricted subset (205) of a computing network (200) including a gatekeeper (225). The gatekeeper is configured to enforce a security policy (330A) against the external device before granting access to a less-restricted subset (210) of the computing network. If requirements of the security policy are satisfied, then the gatekeeper reconfigures the access point such that further communication from the external device may be received by elements of the less-restricted subset. Enforcement of the security policy optionally includes performing a security audit of the external device.
摘要翻译：新的网络安全方法包括操纵接入点（215），使得来自外部设备（230）的初始通信传递到包括关守（225）的计算网络（200）的受限子集（205）。网守被配置为在授予对计算网络的较不受限制的子集（210）的访问之前对外部设备执行安全策略（330A）。如果满足安全策略的要求，则网守重新配置接入点，使得来自外部设备的进一步通信可以被较少限制子集的元素接收。安全策略的执行可选地包括执行外部设备的安全审核。

2. 发明申请

WO2007098052A3 PEER BASED NETWORK ACCESS CONTROL 审中-公开
标题翻译：基于对等网络访问控制
公开(公告)号：WO2007098052A3
公开(公告)日：2008-07-31
申请号：PCT/US2007004192
申请日：2007-02-15
申请人： INFOEXPRESS INC , LUM STACEY C
发明人： LUM STACEY C
IPC分类号： G06F15/16
CPC分类号： H04L63/102 , H04L29/12028 , H04L61/103 , H04L63/0227 , H04L63/10 , H04L63/1433 , H04L63/20 , H04W12/08 , H04W12/12
摘要： Systems and methods of securing a computing network are described. Communication from unauthorized devices is prevented by defining one or more dynamic policy enforcement points (DPEPs) on a network segment and specifying one of these DPEPs as an active policy enforcement point (APEP). The APEP prevents communication from unauthorized devices by spoofing an ARP response. If an APEP becomes unavailable, another of the one or more DPEPs is automatically selected as a new APEP. Members of the one or more DPEPs may be non-dedicated devices configured as DPEPs by the addition of security software. The number of DPEPs and APEPs can automatically scale with the number of devices on the computing network.
摘要翻译：描述了保护计算网络的系统和方法。通过在网段上定义一个或多个动态策略执行点（DPEP）并将这些DPEP中的一个指定为活动策略执行点（APEP）来防止来自未授权设备的通信。 APEP通过欺骗ARP响应来防止未经授权的设备的通信。如果APEP变得不可用，则一个或多个DPEP中的另一个将被自动选择为新的APEP。一个或多个DPEP的成员可以是通过添加安全软件而配置为DPEP的非专用设备。 DPEP和APEP的数量可以自动根据计算网络上的设备数量进行扩展。

3. 发明申请

WO2007098052A2 PEER BASED NETWORK ACCESS CONTROL 审中-公开
标题翻译：基于对等网络访问控制
公开(公告)号：WO2007098052A2
公开(公告)日：2007-08-30
申请号：PCT/US2007/004192
申请日：2007-02-15
申请人： INFOEXPRESS, INC. , LUM, Stacey, C.
发明人： LUM, Stacey, C.
IPC分类号： G06F12/14
CPC分类号： H04L63/102 , H04L29/12028 , H04L61/103 , H04L63/0227 , H04L63/10 , H04L63/1433 , H04L63/20 , H04W12/08 , H04W12/12
摘要： Systems and methods of securing a computing network are described. Communication from unauthorized devices is prevented by defining one or more dynamic policy enforcement points (DPEPs) on a network segment and specifying one of these DPEPs as an active policy enforcement point (APEP). The APEP prevents communication from unauthorized devices by spoofing an ARP response. If an APEP becomes unavailable, another of the one or more DPEPs is automatically selected as a new APEP. Members of the one or more DPEPs may be non-dedicated devices configured as DPEPs by the addition of security software. The number of DPEPs and APEPs can automatically scale with the number of devices on the computing network.
摘要翻译：描述了保护计算网络的系统和方法。通过在网段上定义一个或多个动态策略执行点（DPEP）并将这些DPEP中的一个指定为活动策略执行点（APEP）来防止来自未授权设备的通信。 APEP通过欺骗ARP响应来防止未经授权的设备的通信。如果APEP变得不可用，则一个或多个DPEP中的另一个将被自动选择为新的APEP。一个或多个DPEP的成员可以是通过添加安全软件而配置为DPEP的非专用设备。 DPEP和APEP的数量可以自动根据计算网络上的设备数量进行扩展。

4. 发明授权

US08677450B2 Systems and methods of controlling network access 有权
标题翻译：控制网络访问的系统和方法
公开(公告)号：US08677450B2
公开(公告)日：2014-03-18
申请号：US13523858
申请日：2012-06-14
申请人： Stacey C. Lum , Yuhshiow Alice Lee
发明人： Stacey C. Lum , Yuhshiow Alice Lee
IPC分类号： H04L9/00 , H04L9/32
CPC分类号： H04L63/0876 , H04L63/20
摘要： A new approach to network security includes manipulating an access point such that an initial communication from an external device is passed to a restricted subset of a computing network including a gatekeeper. The gatekeeper is configured to enforce a security policy against the external device before granting access to a less-restricted subset of the computing network. If requirements of the security policy are satisfied, then the gatekeeper reconfigures the access point such that further communication from the external device may be received by elements of the less-restricted subset. Enforcement of the security policy optionally includes performing a security audit of the external device.
摘要翻译：网络安全的新方法包括操纵接入点，使得来自外部设备的初始通信被传递到包括关守的计算网络的受限子集。网守被配置为在授予对计算网络的较不受限制的子集的访问之前对外部设备执行安全策略。如果满足安全策略的要求，则网守重新配置接入点，使得来自外部设备的进一步通信可以被较少限制子集的元素接收。安全策略的执行可选地包括执行外部设备的安全审核。

5. 发明申请

US20070192500A1 Network access control including dynamic policy enforcement point 审中-公开
标题翻译：网络访问控制包括动态策略执行点
公开(公告)号：US20070192500A1
公开(公告)日：2007-08-16
申请号：US11433723
申请日：2006-05-11
申请人： Stacey Lum
发明人： Stacey Lum
IPC分类号： G06F15/16
CPC分类号： H04L63/102 , H04L29/12028 , H04L61/103 , H04L63/0227 , H04L63/10 , H04L63/1433 , H04L63/20 , H04W12/08 , H04W12/12
摘要： Systems and methods of securing a computing network are described. Communication from unauthorized devices is prevented by defining one or more dynamic policy enforcement points (DPEPs) on a network segment and specifying one of these DPEPs as an active policy enforcement point (APEP). The APEP prevents communication from unauthorized devices by spoofing an ARP response. If an APEP becomes unavailable, another of the one or more DPEPs is automatically selected as a new APEP. Members of the one or more DPEPs may be non-dedicated devices configured as DPEPs by the addition of security software. The number of DPEPs and APEPs can automatically scale with the number of devices on the computing network.
摘要翻译：描述了保护计算网络的系统和方法。通过在网段上定义一个或多个动态策略执行点（DPEP）并将这些DPEP中的一个指定为活动策略执行点（APEP）来防止来自未授权设备的通信。 APEP通过欺骗ARP响应来防止未经授权的设备的通信。如果APEP变得不可用，则一个或多个DPEP中的另一个将被自动选择为新的APEP。一个或多个DPEP的成员可以是通过添加安全软件而配置为DPEP的非专用设备。 DPEP和APEP的数量可以自动根据计算网络上的设备数量进行扩展。

6. 发明授权

US08051460B2 Systems and methods of controlling network access 有权
标题翻译：控制网络访问的系统和方法
公开(公告)号：US08051460B2
公开(公告)日：2011-11-01
申请号：US12273037
申请日：2008-11-18
申请人： Stacey C. Lum , Yuhshiow Alice Lee
发明人： Stacey C. Lum , Yuhshiow Alice Lee
IPC分类号： H04L9/00 , H04L9/32 , G06F15/16
CPC分类号： H04L63/0876 , H04L63/20
摘要： A new approach to network security includes manipulating an access point such that an initial communication from an external device is passed to a restricted subset of a computing network including a gatekeeper. The gatekeeper is configured to enforce a security policy against the external device before granting access to a less-restricted subset of the computing network. If requirements of the security policy are satisfied, then the gatekeeper reconfigures the access point such that further communication from the external device may be received by elements of the less-restricted subset. Enforcement of the security policy optionally includes performing a security audit of the external device.
摘要翻译：网络安全的新方法包括操纵接入点，使得来自外部设备的初始通信被传递到包括关守的计算网络的受限子集。网守被配置为在授予对计算网络的较不受限制的子集的访问之前对外部设备执行安全策略。如果满足安全策略的要求，则网守重新配置接入点，使得来自外部设备的进一步通信可以被较少限制子集的元素接收。安全策略的执行可选地包括执行外部设备的安全审核。

7. 发明申请

US20110231916A1 SYSTEMS AND METHODS OF CONTROLLING NETWORK ACCESS 失效
公开(公告)号：US20110231916A1
公开(公告)日：2011-09-22
申请号：US13157310
申请日：2011-06-10
申请人： Stacey C. Lum , Yuhshiow Alice Lee
发明人： Stacey C. Lum , Yuhshiow Alice Lee
IPC分类号： H04L9/32 , G06F21/20 , G06F15/16
CPC分类号： H04L63/0876 , H04L63/20
摘要： A new approach to network security includes manipulating an access point such that an initial communication from an external device is passed to a restricted subset of a computing network including a gatekeeper. The gatekeeper is configured to enforce a security policy against the external device before granting access to a less-restricted subset of the computing network. If requirements of the security policy are satisfied, then the gatekeeper reconfigures the access point such that further communication from the external device may be received by elements of the less-restricted subset. Enforcement of the security policy optionally includes performing a security audit of the external device.

8. 发明授权

US09621553B1 Secure network access control 有权
公开(公告)号：US09621553B1
公开(公告)日：2017-04-11
申请号：US14741955
申请日：2015-06-17
申请人： InfoExpress, Inc.
发明人： Alice Lee , Stacey Lum
IPC分类号： H04L9/00 , H04L9/32 , H04L29/06
CPC分类号： H04L63/0876 , H04L63/20
摘要： A new approach to network security includes manipulating an access point such that an initial communication from an external device is passed to a restricted subset of a computing network including a gatekeeper. The gatekeeper is configured to enforce a security policy against the external device before granting access to a less-restricted subset of the computing network. If requirements of the security policy are satisfied, then the gatekeeper reconfigures the access point such that further communication from the external device may be received by elements of the less-restricted subset. Enforcement of the security policy optionally includes performing a security audit of the external device.

9. 发明授权

US09083753B1 Secure network access control 有权
标题翻译：安全的网络访问控制
公开(公告)号：US09083753B1
公开(公告)日：2015-07-14
申请号：US14175687
申请日：2014-02-07
申请人： Alice Lee , Stacey Lum
发明人： Alice Lee , Stacey Lum
IPC分类号： H04L9/00 , H04L9/32 , H04L29/06
CPC分类号： H04L63/0876 , H04L63/20
摘要： A new approach to network security includes manipulating an access point (215) such that an initial communication from an external device (230) is passed to a restricted subset (205) of a computing network (200) including a gatekeeper (225). The gatekeeper is configured to enforce a security policy (330A) against the external device before granting access to a less-restricted subset (210) of the computing network. If requirements of the security policy are satisfied, then the gatekeeper reconfigures the access point such that further communication from the external device may be received by elements of the less-restricted subset. Enforcement of the security policy optionally includes performing a security audit of the external device.
摘要翻译：新的网络安全方法包括操纵接入点（215），使得来自外部设备（230）的初始通信传递到包括关守（225）的计算网络（200）的受限子集（205）。网守被配置为在授予对计算网络的较不受限制的子集（210）的访问之前对外部设备执行安全策略（330A）。如果满足安全策略的要求，则网守重新配置接入点，使得来自外部设备的进一步通信可以被较少限制子集的元素接收。安全策略的执行可选地包括执行外部设备的安全审核。

10. 发明授权

US08117645B2 Systems and methods of controlling network access 有权
标题翻译：控制网络访问的系统和方法
公开(公告)号：US08117645B2
公开(公告)日：2012-02-14
申请号：US13157309
申请日：2011-06-10
申请人： Stacey C. Lum , Yuhshiow Alice Lee
发明人： Stacey C. Lum , Yuhshiow Alice Lee
IPC分类号： H04L9/32 , H04L9/00
CPC分类号： H04L63/0876 , H04L63/20
摘要： A new approach to network security includes manipulating an access point such that an initial communication from an external device is passed to a restricted subset of a computing network including a gatekeeper. The gatekeeper is configured to enforce a security policy against the external device before granting access to a less-restricted subset of the computing network. If requirements of the security policy are satisfied, then the gatekeeper reconfigures the access point such that further communication from the external device may be received by elements of the less-restricted subset. Enforcement of the security policy optionally includes performing a security audit of the external device.
摘要翻译：网络安全的新方法包括操纵接入点，使得来自外部设备的初始通信被传递到包括关守的计算网络的受限子集。网守被配置为在授予对计算网络的较不受限制的子集的访问之前对外部设备执行安全策略。如果满足安全策略的要求，则网守重新配置接入点，使得来自外部设备的进一步通信可以被较少限制子集的元素接收。安全策略的执行可选地包括执行外部设备的安全审核。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式