专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20050182950A1 Network security system and method 审中-公开
标题翻译：网络安全系统和方法
公开(公告)号：US20050182950A1
公开(公告)日：2005-08-18
申请号：US10962560
申请日：2004-10-13
申请人： So-Ra Son , Yeon-Sik Ryu , Seung-Jong Pyo , Sang-Woo Lee , O-Young Hong
发明人： So-Ra Son , Yeon-Sik Ryu , Seung-Jong Pyo , Sang-Woo Lee , O-Young Hong
IPC分类号： H04L12/66 , H04L9/32 , H04L12/22 , H04L12/24 , H04L29/06
CPC分类号： H04L63/0209 , H04L63/0227 , H04L63/1416
摘要： Disclosed herein is a network security system and method. The network security system includes a packet-dedicated processor for primarily performing hardware filtering on static attacks of network traffic, and a host system provided with a software filter for secondarily performing software filtering on dynamic attacks of network traffic. In the network security method, hardware filtering is performed on static network traffic attacks, software filtering is performed on dynamic network traffic attacks based on an analysis the results of the hardware filtering and packet streams generated by incoming packets for a predetermined time, and intrusion prevention information is provided to an administrator based on the accumulation and an analysis of the results of the software filtering.
摘要翻译：这里公开了一种网络安全系统和方法。网络安全系统包括主要针对网络流量的静态攻击执行硬件过滤的分组专用处理器，以及具有软件过滤器的主机系统，用于对网络流量的动态攻击进行二次软件过滤。在网络安全方法中，对静态网络流量攻击进行硬件过滤，根据硬件过滤的结果和输入报文生成的预定时间内的数据包流分析，对入侵防御进行了动态网络流量攻击软件过滤基于累积和对软件过滤结果的分析，向管理员提供信息。

2. 发明申请

US20050086512A1 Worm blocking system and method using hardware-based pattern matching 审中-公开
标题翻译：蠕虫阻塞系统和方法采用基于硬件的模式匹配
公开(公告)号：US20050086512A1
公开(公告)日：2005-04-21
申请号：US10932063
申请日：2004-09-02
申请人： Sang-Woo Lee , Yeon-Sik Ryu , Seung-Jong Pyo
发明人： Sang-Woo Lee , Yeon-Sik Ryu , Seung-Jong Pyo
IPC分类号： G06F15/00 , G06F21/00 , H04L29/06 , H04L9/00
CPC分类号： H04L63/0245 , G06F21/566 , G06F21/567 , H04L63/1408 , H04L63/145
摘要： The present invention relates generally to a worm blocking system including a dedicated hardware-based board for performing pattern matching without a change in an existing network environment, which is installed in front of a network to be protected, inspects whether worm-related patterns exist on all packets on communication lines without loss or delay, passes packets through the system or blocks packets according to corresponding security rules and informs an administrator of results in real time, and a worm blocking method. In particular, the present invention relates to a hardware-based system and method for detecting and blocking worm-related packets which is suitable for a gigabit environment.
摘要翻译：本发明一般涉及一种包括专用硬件的板，用于执行模式匹配而不改变现有网络环境，该网络环境安装在要保护的网络前面，检查是否存在蠕虫相关模式通信线路上的所有数据包没有丢失或延迟，通过系统传递数据包或根据相应的安全规则阻止数据包，并实时通知管理员结果，以及一种蠕虫阻塞方法。特别地，本发明涉及一种用于检测和阻止适用于千兆环境的蠕虫相关分组的基于硬件的系统和方法。

3. 发明授权

US08122494B2 Apparatus and method of securing network 有权
标题翻译：装置和网络保护方法
公开(公告)号：US08122494B2
公开(公告)日：2012-02-21
申请号：US11959129
申请日：2007-12-18
申请人： Won-Jip Kim , Yeon-Sik Ryu , So-Ra Son
发明人： Won-Jip Kim , Yeon-Sik Ryu , So-Ra Son
IPC分类号： H04L9/00 , H04L29/06 , G06F15/16
CPC分类号： H04L63/1441
摘要： The present invention relates to an apparatus and method of securing a network. In the present invention, a pattern matching engine 210 corresponding to a first security module initially performs a hardware-based filtering process for a static attack of an input network packet and transmits a normal packet determined to be normal as a result of the filtering to a dynamic attack detection module 230 corresponding to a second security module through a PL3 interface. The dynamic attack detection module 230 performs a hardware-based filtering process for a dynamic attack of the normal packet transmitted from the pattern matching engine 210. The dynamic attack detection module 230 transmits the filtering result to a main CPU 400 through a PCI 300 if filtering the dynamic attack is completed. Then, a main CPU 400 transmits a response policy based on the transmitted filtering result to a response engine 220 through the PCI 300 and the dynamic attack detection module 230 to block an abnormal packet. Therefore, the present invention is very effective in that accuracy of detection is enhanced, and weakness in processing speed and performance of a network security solution can be compensated to meet requirements on real-time.
摘要翻译：本发明涉及一种保护网络的装置和方法。在本发明中，对应于第一安全模块的模式匹配引擎210最初对输入网络分组的静态攻击执行基于硬件的过滤处理，并将由过滤结果确定为正常的正常分组发送到动态攻击检测模块230通过PL3接口对应于第二安全模块。动态攻击检测模块230对从模式匹配引擎210发送的正常分组的动态攻击执行基于硬件的过滤处理。动态攻击检测模块230如果过滤则通过PCI 300将过滤结果发送到主CPU400 动态攻击完成。然后，主CPU400通过PCI300和动态攻击检测模块230将基于发送的过滤结果的响应策略发送到响应引擎220，以阻止异常分组。因此，本发明在提高检测精度方面非常有效，可以补偿网络安全解决方案的处理速度和性能不足以实时满足要求。

4. 发明申请

US20050283831A1 Security system and method using server security solution and network security solution 审中-公开
标题翻译：使用服务器安全解决方案和网络安全解决方案的安全系统和方法
公开(公告)号：US20050283831A1
公开(公告)日：2005-12-22
申请号：US10962440
申请日：2004-10-13
申请人： Yeon-Sik Ryu , Hae-Jin Lee
发明人： Yeon-Sik Ryu , Hae-Jin Lee
IPC分类号： G06F15/16 , G06F9/00 , G06F17/00 , H04L12/24 , H04L29/06
CPC分类号： H04L63/02 , H04L63/0263 , H04L63/1408 , H04L63/1416
摘要： A security method and system using a server security solution and a network security solution is disclosed. In the security method based on the security system that has a firewall for blocking malicious access to a corresponding network, a network intrusion prevention system for blocking intrusion into the network and server systems including a mail server and a File Transfer Protocol (FTP) server, the server systems transmit information on an intruding system, which has transmitted harmful traffic, to the network intrusion prevention system at the time of detecting the harmful traffic. The network intrusion prevention system blocks the access of the harmful traffic based on the information transmitted from the server systems. According to the present invention, the server systems detect malicious intrusion attempts, and intrusion is blocked at a network level, so that the present invention is effective in that second and third malicious intrusion attempts can be fundamentally blocked and the consumption of network resources attributable to repeated intrusion attempts can be prevented.
摘要翻译：公开了一种使用服务器安全解决方案和网络安全解决方案的安全方法和系统。在基于具有用于阻止对相应网络的恶意访问的防火墙的安全系统的安全方法中，用于阻止入侵网络的网络入侵防御系统和包括邮件服务器和文件传输协议（FTP）服务器的服务器系统，在检测到有害流量时，服务器系统将已传送有害流量的入侵系统信息传送到网络入侵防御系统。基于从服务器系统发送的信息，网络入侵防御系统阻止有害流量的访问。根据本发明，服务器系统检测恶意入侵企图，并且在网络级别阻止入侵，从而本发明是有效的，因为可以从根本上阻止第二和第三恶意入侵企图，并且归因于网络资源的消耗可以防止重复的入侵尝试。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式