专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20090276204A1 METHOD AND SYSTEM FOR POLICY SIMULATION 有权
标题翻译：政策模拟方法与系统
公开(公告)号：US20090276204A1
公开(公告)日：2009-11-05
申请号：US12432186
申请日：2009-04-29
申请人： Srinivas Kumar , Vijayashree S. Bettadapura
发明人： Srinivas Kumar , Vijayashree S. Bettadapura
IPC分类号： G06F21/00 , G06F9/00
CPC分类号： H04L63/0227
摘要： A method and system for managing access to resources on a secured network is disclosed. The method includes reading packet information in respective packets of a packet communication received at a security node and applying one of the plurality of access rules. The method also includes determining whether the security node is to block the respective packets and/or the packet communication from reaching a resource on the secured network based on the applied access rule. If the security node is to block the respective packets and/or the packet communication, it is determined whether the applied access rule is a simulated access rule. Responsive to the applied access rule being a simulated access rule, the respective packets and/or the packet communication are passed towards the resource on the secured network and a log event is generated that indicates the security node blocked the respective packets and/or the packet communication.
摘要翻译：公开了一种用于管理对安全网络上的资源的访问的方法和系统。该方法包括在安全节点处接收的分组通信的各个分组中读取分组信息，并应用多个接入规则之一。该方法还包括基于所应用的访问规则来确定安全节点是否阻止各个分组和/或分组通信到达安全网络上的资源。如果安全节点要阻止相应的分组和/或分组通信，则确定所应用的访问规则是否是模拟访问规则。响应于作为模拟访问规则的应用访问规则，相应的分组和/或分组通信被传递到安全网络上的资源，并且生成指示安全节点阻止相应分组和/或分组的日志事件通讯。

2. 发明授权

US08943575B2 Method and system for policy simulation 有权
标题翻译：政策模拟方法与系统
公开(公告)号：US08943575B2
公开(公告)日：2015-01-27
申请号：US12432186
申请日：2009-04-29
申请人： Srinivas Kumar , Vijayashree S. Bettadapura
发明人： Srinivas Kumar , Vijayashree S. Bettadapura
IPC分类号： G06F9/00 , H04L29/06
CPC分类号： H04L63/0227
摘要： A method and system for managing access to resources on a secured network is disclosed. The method includes reading packet information in respective packets of a packet communication received at a security node and applying one of the plurality of access rules. The method also includes determining whether the security node is to block the respective packets and/or the packet communication from reaching a resource on the secured network based on the applied access rule. If the security node is to block the respective packets and/or the packet communication, it is determined whether the applied access rule is a simulated access rule. Responsive to the applied access rule being a simulated access rule, the respective packets and/or the packet communication are passed towards the resource on the secured network and a log event is generated that indicates the security node blocked the respective packets and/or the packet communication.
摘要翻译：公开了一种用于管理对安全网络上的资源的访问的方法和系统。该方法包括在安全节点处接收的分组通信的各个分组中读取分组信息，并应用多个接入规则之一。该方法还包括基于所应用的访问规则来确定安全节点是否阻止各个分组和/或分组通信到达安全网络上的资源。如果安全节点要阻止相应的分组和/或分组通信，则确定所应用的访问规则是否是模拟访问规则。响应于作为模拟访问规则的应用访问规则，相应的分组和/或分组通信被传递到安全网络上的资源，并且生成指示安全节点阻止相应分组和/或分组的日志事件通讯。

3. 发明授权

US09240945B2 Access, priority and bandwidth management based on application identity 有权
标题翻译：基于应用程序身份的访问，优先级和带宽管理
公开(公告)号：US09240945B2
公开(公告)日：2016-01-19
申请号：US12406613
申请日：2009-03-18
申请人： Srinivas Kumar , Vijayashree S. Bettadapura , Shadab Munam Shah
发明人： Srinivas Kumar , Vijayashree S. Bettadapura , Shadab Munam Shah
IPC分类号： G06F15/16 , H04L12/801 , H04L12/833 , H04L29/06
CPC分类号： H04L47/10 , H04L47/2458 , H04L63/0227 , H04L63/102
摘要： A method or system for managing packet flow is disclosed. The packets each include an inserted application identifier identifying a registered application. The method includes receiving packets destined for one or more resources, determining, by a packet processor, the inserted application identifier for each of the respective packets received and managing the packet flow of each received packet sent from a security node based at least in part on the inserted application identifier of the received packet.
摘要翻译：公开了一种用于管理分组流的方法或系统。这些分组各自包括标识注册的应用的插入的应用标识符。该方法包括接收目的地为一个或多个资源的分组，由分组处理器确定所接收的每个分组的插入的应用标识符，并至少部分地基于从安全节点发送的每个接收分组的分组流管理所接收的分组的插入的应用标识符。

4. 发明申请

US20090241170A1 ACCESS, PRIORITY AND BANDWIDTH MANAGEMENT BASED ON APPLICATION IDENTITY 有权
标题翻译：基于应用程序标识的访问，优先级和带宽管理
公开(公告)号：US20090241170A1
公开(公告)日：2009-09-24
申请号：US12406613
申请日：2009-03-18
申请人： Srinivas Kumar , Vijayashree S. Bettadapura , Shadab Munam Shah
发明人： Srinivas Kumar , Vijayashree S. Bettadapura , Shadab Munam Shah
IPC分类号： G06F15/16 , H04J1/16 , G06F17/30 , G06F15/173
CPC分类号： H04L47/10 , H04L47/2458 , H04L63/0227 , H04L63/102
摘要： A method or system for managing packet flow is disclosed. The packets each include an inserted application identifier identifying a registered application. The method includes receiving packets destined for one or more resources, determining, by a packet processor, the inserted application identifier for each of the respective packets received and managing the packet flow of each received packet sent from a security node based at least in part on the inserted application identifier of the received packet.
摘要翻译：公开了一种用于管理分组流的方法或系统。这些分组各自包括标识注册的应用的插入的应用标识符。该方法包括接收目的地为一个或多个资源的分组，由分组处理器确定所接收的每个分组的插入的应用标识符，并至少部分地基于从安全节点发送的每个接收分组的分组流管理所接收的分组的插入的应用标识符。

5. 发明授权

US08990573B2 System and method for using variable security tag location in network communications 有权
标题翻译：在网络通信中使用可变安全标签位置的系统和方法
公开(公告)号：US08990573B2
公开(公告)日：2015-03-24
申请号：US12267850
申请日：2008-11-10
申请人： Srinivas Kumar , Vijayashree S. Bettadapura
发明人： Srinivas Kumar , Vijayashree S. Bettadapura
IPC分类号： H04L9/32 , H04L29/06
CPC分类号： H04L63/0272 , H04L29/06102 , H04L29/0653 , H04L63/105 , H04L63/166 , H04L63/20
摘要： A method of packet security management to ensure a secure connection from one network node to another. The method includes creating a security tag for each packet in a network session, selecting one of a number of possible tag locations within the packet, inserting the security tag at that location, transmitting the tagged packets from a sending node to the receiving node, authenticating the packets' security tags at the receiving node, and dropping non-authenticated packets. The method also includes determining best possible tag locations when sending a packet and locating a security tag when receiving a packet.
摘要翻译：一种分组安全管理的方法，以确保从一个网络节点到另一个网络节点的安全连接。该方法包括为网络会话中的每个分组创建安全标签，选择分组内的多个可能的标签位置中的一个，在该位置插入安全标签，将标记的分组从发送节点传送到接收节点，认证接收节点上的报文安全标签，丢弃非认证报文。该方法还包括在发送分组时确定最佳可能的标签位置并在接收分组时定位安全标签。

6. 发明申请

US20090144818A1 SYSTEM AND METHOD FOR USING VARIABLE SECURITY TAG LOCATION IN NETWORK COMMUNICATIONS 有权
标题翻译：在网络通信中使用可变安全标签位置的系统和方法
公开(公告)号：US20090144818A1
公开(公告)日：2009-06-04
申请号：US12267850
申请日：2008-11-10
申请人： Srinivas Kumar , Vijayashree S. Bettadapura
发明人： Srinivas Kumar , Vijayashree S. Bettadapura
IPC分类号： G06F21/00
CPC分类号： H04L63/0272 , H04L29/06102 , H04L29/0653 , H04L63/105 , H04L63/166 , H04L63/20
摘要： A method of packet security management to ensure a secure connection from one network node to another. The method includes creating a security tag for each packet in a network session, selecting one of a number of possible tag locations within the packet, inserting the security tag at that location, transmitting the tagged packets from a sending node to the receiving node, authenticating the packets' security tags at the receiving node, and dropping non-authenticated packets. The method also includes determining best possible tag locations when sending a packet and locating a security tag when receiving a packet.
摘要翻译：一种分组安全管理的方法，以确保从一个网络节点到另一个网络节点的安全连接。该方法包括为网络会话中的每个分组创建安全标签，选择分组内的多个可能的标签位置中的一个，在该位置插入安全标签，将标记的分组从发送节点传送到接收节点，认证接收节点上的报文安全标签，丢弃非认证报文。该方法还包括在发送分组时确定最佳可能的标签位置并在接收分组时定位安全标签。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式