专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20060168649A1 Method and system for addressing attacks on a computer connected to a network 有权
标题翻译：用于解决连接到网络的计算机上的攻击的方法和系统
公开(公告)号：US20060168649A1
公开(公告)日：2006-07-27
申请号：US10973188
申请日：2004-10-26
申请人： Balaji Venkat , Srinivas Subramanian , Venkat Ramani , Shankar Raman
发明人： Balaji Venkat , Srinivas Subramanian , Venkat Ramani , Shankar Raman
IPC分类号： G06K9/00
CPC分类号： H04L63/1425 , H04L63/1458 , H04L2463/146
摘要： A method for addressing attacks on a computer connected to a network includes receiving at a router a TCP SYN request to be screened. The method also includes comparing the received TCP SYN request to be screened to at least one stored tuple representative of one or more SYN requests previously received at the router and determining that the received TCP SYN request to be screened matches the stored tuple. In response to determining that the received TCP SYN request to be screened matches the stored tuple, the TCP SYN+ACK response is prevented from being sent by the router in response to the TCP SYN request to be screened.
摘要翻译：用于解决连接到网络的计算机上的攻击的方法包括在路由器处接收要被屏蔽的TCP SYN请求。该方法还包括将接收到的待筛选TCP SYN请求与代表先前在路由器处接收的一个或多个SYN请求的至少一个存储的元组进行比较，并确定接收到的要被筛选的TCP SYN请求与存储的元组匹配。响应于确定接收的要被屏蔽的TCP SYN请求与存储的元组匹配，防止TCP SYN + ACK响应被路由器响应于要被屏蔽的TCP SYN请求而发送。

2. 发明授权

US07854000B2 Method and system for addressing attacks on a computer connected to a network 有权
标题翻译：用于解决连接到网络的计算机上的攻击的方法和系统
公开(公告)号：US07854000B2
公开(公告)日：2010-12-14
申请号：US10973188
申请日：2004-10-26
申请人： Balaji Venkat , Srinivas Subramanian , Venkat Ramani , Shankar Raman
发明人： Balaji Venkat , Srinivas Subramanian , Venkat Ramani , Shankar Raman
IPC分类号： G06F11/00 , G06F12/14 , G06F12/16 , G08F23/00
CPC分类号： H04L63/1425 , H04L63/1458 , H04L2463/146
摘要： A method for addressing attacks on a computer connected to a network includes receiving at a router a TCP SYN request to be screened. The method also includes comparing the received TCP SYN request to be screened to at least one stored tuple representative of one or more SYN requests previously received at the router and determining that the received TCP SYN request to be screened matches the stored tuple. In response to determining that the received TCP SYN request to be screened matches the stored tuple, the TCP SYN+ACK response is prevented from being sent by the router in response to the TCP SYN request to be screened.
摘要翻译：用于解决连接到网络的计算机上的攻击的方法包括在路由器处接收要被屏蔽的TCP SYN请求。该方法还包括将接收到的待筛选TCP SYN请求与代表先前在路由器处接收的一个或多个SYN请求的至少一个存储的元组进行比较，并确定接收到的要被筛选的TCP SYN请求与存储的元组匹配。响应于确定接收的要被屏蔽的TCP SYN请求与存储的元组匹配，防止TCP SYN + ACK响应被路由器响应于要被屏蔽的TCP SYN请求而发送。

3. 发明授权

US07971256B2 Mechanism to correlate the presence of worms in a network 有权
标题翻译：关联网络中蠕虫的存在的机制
公开(公告)号：US07971256B2
公开(公告)日：2011-06-28
申请号：US11254592
申请日：2005-10-20
申请人： Bhargav Bhikkaji , Balaji Venkat
发明人： Bhargav Bhikkaji , Balaji Venkat
IPC分类号： G06F11/00 , G06F12/14 , G06F12/16 , G08B23/00
CPC分类号： H04L63/145 , H04L63/1408
摘要： A method and a system for preventing a network attack, the attack being caused by the presence of worms in the network, is provided. The method includes determining the number of packets being transmitted from each source in the network to a plurality of destinations, the packets being transmitted from a source with a set of characteristics. If the number of packets with the set of characteristics, being transmitted from a source, exceeds a predefined first threshold, then the signature of the packets is stored. Subsequently, if at least one of the pluralities of destinations of the packets identified with the source becomes a source of new packets, the new packets being transmitted to more than one destination; then the new packets are compared with the signature. If at least one new packet matches with the signature, then the worm is to be detected.
摘要翻译：提供了一种用于防止网络攻击的方法和系统，该攻击是由网络中蠕虫的存在引起的。该方法包括确定从网络中的每个源发送到多个目的地的分组的数量，该分组是从具有一组特征的源发送的。如果从源发送的具有一组特征的分组的数量超过预定义的第一阈值，则存储分组的签名。随后，如果用源标识的分组的多个目的地中的至少一个成为新分组的源，则新分组被发送到多于一个目的地; 那么将新的数据包与签名进行比较。如果至少有一个新的数据包与签名相匹配，则会检测该蠕虫。

4. 发明申请

US20070094730A1 Mechanism to correlate the presence of worms in a network 有权
标题翻译：关联网络中蠕虫的存在的机制
公开(公告)号：US20070094730A1
公开(公告)日：2007-04-26
申请号：US11254592
申请日：2005-10-20
申请人： Bhargav Bhikkaji , Balaji Venkat
发明人： Bhargav Bhikkaji , Balaji Venkat
IPC分类号： G06F12/14
CPC分类号： H04L63/145 , H04L63/1408
摘要： A method and a system for preventing a network attack, the attack being cause by the presence of worms in the network, is provided. The method includes determining the number of packets being transmitted from each source in the network to a plurality of destinations, the packets being transmitted from a source with a set of characteristics. If the number of packets with the set of characteristics, being transmitted from a source, exceeds a predefined first threshold, then the signature of the packets is stored. Subsequently, if at least one of the pluralities of destinations of the packets identified with the source becomes a source of new packets, the new packets being transmitted to more than one destination; then the new packets are compared with the signature. If at least one new packet matches with the signature, then the worm is to be detected.
摘要翻译：提供一种用于防止网络攻击的方法和系统，该网络中存在蠕虫引起的攻击。该方法包括确定从网络中的每个源发送到多个目的地的分组的数量，该分组是从具有一组特征的源发送的。如果从源发送的具有一组特征的分组的数量超过预定义的第一阈值，则存储分组的签名。随后，如果用源标识的分组的多个目的地中的至少一个成为新分组的源，则新分组被发送到多于一个目的地; 那么将新的数据包与签名进行比较。如果至少有一个新的数据包与签名相匹配，则会检测该蠕虫。

5. 发明授权

US08352590B2 Method and system for network management using wire tapping 有权
标题翻译：使用钢丝攻丝的网络管理方法和系统
公开(公告)号：US08352590B2
公开(公告)日：2013-01-08
申请号：US11359287
申请日：2006-02-21
申请人： Ganesh Chennimalai Sankaran , Balaji Venkat
发明人： Ganesh Chennimalai Sankaran , Balaji Venkat
IPC分类号： G06F15/173
CPC分类号： H04L63/306 , H04M3/2281
摘要： A method and a system for collecting information in a network. A wiretap tunnel interface is initialized between a wire-tapping device and a network device. The wire-tapping device receives information related to routing protocol traffic from the network device through the wiretap tunnel interface. The wire-tapping device collates the received information about the routing protocol traffic. This collated information is used by the network administrator to manage the network.
摘要翻译：一种用于在网络中收集信息的方法和系统。在窃听设备和网络设备之间初始化窃听隧道接口。有线窃听设备通过窃听隧道接口从网络设备接收与路由协议流量相关的信息。有线窃听设备对接收到的有关路由协议流量的信息进行整理。这种整理的信息被网络管理员用来管理网络。

6. 发明授权

US07788407B1 Apparatus and methods for providing an application level gateway for use in networks 有权
标题翻译：用于提供在网络中使用的应用级网关的装置和方法
公开(公告)号：US07788407B1
公开(公告)日：2010-08-31
申请号：US10914444
申请日：2004-08-09
申请人： Balaji Venkat , Kaushik Narayan , Manokar Namasivayan , Shankar Sthanuretnam
发明人： Balaji Venkat , Kaushik Narayan , Manokar Namasivayan , Shankar Sthanuretnam
IPC分类号： G06F15/16 , G06F15/173
CPC分类号： G06F17/30876 , H04L29/12047 , H04L29/12386 , H04L29/12556 , H04L61/15 , H04L61/2521 , H04L61/2585 , H04L67/1002 , H04L67/1014
摘要： An application level gateway allows computers on a local area or “internal” network to serve data (e.g., web pages, files or other constructs) to computer systems on an external or public network such as the Internet, even though references such as hostnames and/or network addresses within the internal network that are contained within the data (e.g., URLs in web pages) might not be compatible (e.g., DNS resolvable or routable) with the external network. The system detects, in a portion of data (e.g., a web page), a local reference to a computer system on the internal network, determines whether a computer system identifier is mapped to the computer system specified in the local reference, and replaces the local reference with a translated reference obtained from the mapping. The translated reference contains the computer system identifier and a reference to a gateway computer system coupled to the internal network, such that subsequent referrals to the translated reference are directed to the gateway computer system. When a request for the data is subsequently received, the gateway performs a reverse mapping to determine the identity of the computer system on the internal network.
摘要翻译：应用级网关允许本地或“内部”网络上的计算机向诸如因特网的外部或公共网络上的计算机系统提供数据（例如，网页，文件或其他结构），即使诸如主机名和 /或包含在数据内的内部网络中的网络地址（例如，网页中的URL）可能与外部网络不兼容（例如，DNS可解析或可路由）。该系统在一部分数据（例如网页）中检测对内部网络上的计算机系统的本地引用，确定计算机系统标识符是否映射到本地引用中指定的计算机系统，并且替换使用从映射获取的转换引用的本地引用。经翻译的参考文献包含计算机系统标识符和对与内部网络耦合的网关计算机系统的引用，使得到翻译的引用的后续引用被引导到网关计算机系统。当随后接收到对数据的请求时，网关执行反向映射以确定内部网络上的计算机系统的身份。

7. 发明申请

US20070199052A1 Method and system for network management using wire tapping 有权
标题翻译：使用钢丝攻丝的网络管理方法和系统
公开(公告)号：US20070199052A1
公开(公告)日：2007-08-23
申请号：US11359287
申请日：2006-02-21
申请人： Ganesh Sankaran , Balaji Venkat
发明人： Ganesh Sankaran , Balaji Venkat
IPC分类号： H04L9/32
CPC分类号： H04L63/306 , H04M3/2281
摘要： A method and a system for collecting information in a network. A wiretap tunnel interface is initialized between a wire-tapping device and a network device. The wire-tapping device receives information related to routing protocol traffic from the network device through the wiretap tunnel interface. The wire-tapping device collates the received information about the routing protocol traffic. This collated information is used by the network administrator to manage the network.
摘要翻译：一种用于在网络中收集信息的方法和系统。在窃听设备和网络设备之间初始化窃听隧道接口。有线窃听设备通过窃听隧道接口从网络设备接收与路由协议流量相关的信息。有线窃听设备对接收到的有关路由协议流量的信息进行整理。这种整理的信息被网络管理员用来管理网络。

8. 发明授权

US07751318B2 Method and system for computing AS-disjoint inter-AS traffic engineering-label switched paths (TE-LSPS) 有权
标题翻译：用于计算AS-不相干的流量工程 - 标签交换路径（TE-LSPS）的方法和系统
公开(公告)号：US07751318B2
公开(公告)日：2010-07-06
申请号：US11509415
申请日：2006-08-23
申请人： Balaji Venkat , Ashok Vishwanath Rajagopalan , Bhargav Bhikkaji
发明人： Balaji Venkat , Ashok Vishwanath Rajagopalan , Bhargav Bhikkaji
IPC分类号： H04L12/26 , H04L12/56
CPC分类号： H04L45/50 , H04L45/02 , H04L45/04
摘要： Methods and systems have been provided for constructing autonomous system (AS)-disjoint Traffic Engineering LSPs for load-balancing and protection purposes using AS-Level topology information in a network. The constructed network paths through a plurality of domains may be disjoint or partially disjoint.
摘要翻译：已经提供了用于构建自治系统（AS）的交互工程LSP，用于使用网络中的AS级拓扑信息进行负载平衡和保护目的的流量工程LSP。通过多个域的构建的网络路径可以是不相交或部分不相交的。

9. 发明申请

US20080049751A1 Method and system for computing as-disjoint inter-as traffic engineering-label switched paths (TE-LSPs) 有权
标题翻译：用于计算不相交流量工程标签交换路径（TE-LSP）的方法和系统
公开(公告)号：US20080049751A1
公开(公告)日：2008-02-28
申请号：US11509415
申请日：2006-08-23
申请人： Balaji Venkat , Ashok Vishwanath Rajagopalan , Bhargav Bhikkaji
发明人： Balaji Venkat , Ashok Vishwanath Rajagopalan , Bhargav Bhikkaji
IPC分类号： H04L12/56
CPC分类号： H04L45/50 , H04L45/02 , H04L45/04
摘要： Methods and systems have been provided for constructing autonomous system (AS)-disjoint Traffic Engineering LSPs for load-balancing and protection purposes using AS-Level topology information in a network. The constructed network paths through a plurality of domains may be disjoint or partially disjoint.
摘要翻译：已经提供了用于构建自治系统（AS）的交互工程LSP，用于使用网络中的AS级拓扑信息进行负载平衡和保护目的的流量工程LSP。通过多个域的构建的网络路径可以是不相交或部分不相交的。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式