Apparatus and method for accelerating intrusion detection and prevention systems using pre-filtering

Number of patents in Portfolio can not be more than 2000

United States of America Patent

APP PUB NO 20060191008A1
SERIAL NO

11291530

Stats

ATTORNEY / AGENT: (SPONSORED)

Importance

Loading Importance Indicators... loading....

Abstract

See full text

An accelerated network intrusion detection and prevention system includes, in part, first, second and third processing stages. The first processing stage receives incoming packets and generates, in response, first and second processed data streams using a first set of rules. The first processing stage optionally detects whether the received packets are suspected of attacking the network and places the received data packets in the first processed data stream. The second processing stage receives the first processed data stream and generates, in response, a third processed data stream using a second set of rules. The second processing stage optionally classifies the first processed data stream, that is suspected of launching a network attack, as either attacks or benign network traffic. A third processing stage receives and processes the second and third processed data streams.

Loading the Abstract Image... loading....

First Claim

See full text

Family

Loading Family data... loading....

Patent Owner(s)

Patent OwnerAddressTotal Patents
INTEL CORPORATIONSANTA CLARA, CA29226
Sensory Networks, Inc.PALO ALTO, CA5

International Classification(s)

  • [Classification Symbol]
  • [Patents Count]

Inventor(s)

Inventor Name Address # of filed Patents Total Citations
Barrie, Robert Matthew Double Bay, AU 22 625
Fernando, Amila Pennant Hills, AU 1 50
Gould, Stephen Killara, AU 43 755
Place, Anthony Waterloo, AU 2 142
Ratner, Simon Kensington, AU 13 167
Tan, Teewoon Roseville, AU 14 332
Williams, Darren Newtown, AU 27 622

Cited Art Landscape

Patent Info (Count) # Cites Year
 
TREND MICRO INCORPORATED (1)
* 7058976 Intelligent feedback loop process control system 25 2000
 
LENOVO PC INTERNATIONAL (1)
* 6016546 Efficient detection of computer viruses and other data traits 72 1997
 
THE REGENTS OF THE UNIVERSITY OF CALIFORNIA (1)
* 2005/0229,254 Detecting public network attacks using signatures and fast content analysis 73 2004
 
PURDUE RESEARCH FOUNDATION (1)
* 4523273 Extra stage cube 113 1982
 
BARHON MAYER, BATYA (2)
* 2004/0034,794 System and method for comprehensive general generic protection for computers against malicious programs that may steal information and/or cause damages 285 2003
* 2005/0120,242 System and method for comprehensive general electric protection for computers against malicious programs that may steal information and/or cause damages 169 2004
 
TECH MAHINDRA LTD. (1)
* 7058821 System and method for detection of intrusion attacks on packets transmitted on a network 62 2002
 
LENOVO INTERNATIONAL LIMITED (1)
* 2004/0199,790 Use of a programmable network processor to observe a flow of packets 11 2003
 
Sensory Networks, Inc. (4)
* 2006/0174,345 Apparatus and method for acceleration of malware security applications through pre-filtering 22 2005
* 2006/0168,329 Apparatus and method for acceleration of electronic message processing through pre-filtering 12 2005
* 2006/0174,343 Apparatus and method for acceleration of security applications through pre-filtering 30 2005
* 2007/0039,051 Apparatus And Method For Acceleration of Security Applications Through Pre-Filtering 12 2006
 
NOKIA TECHNOLOGIES OY (1)
* 2003/0145,228 System and method of providing virus protection at a gateway 121 2002
 
MASSACHUSETTS INSTITUTE OF TECHNOLOGY (1)
* 2005/0138,413 Network security planning architecture 93 2003
 
THE BOEING COMPANY (1)
* 2003/0033,531 System and method for string filtering 3 2002
 
WSOU INVESTMENTS, LLC (1)
* 7099583 Optical cross-connect 4 2002
 
Invicta Networks, Inc. (1)
* 2002/0116,635 Systems and methods for creating a code inspection system 18 2002
 
MCAFEE, LLC (5)
* 7080408 Delayed-delivery quarantining of network communications having suspicious contents 149 2001
* 7114185 Identifying malware containing computer files using embedded text 56 2001
* 7424744 Signature based network intrusion detection system and method 129 2002
* 2006/0075,502 System, method and computer program product for accelerating malware/spyware scanning 28 2004
* 2006/0156,403 Integrated firewall, IPS, and virus scanner system and method 17 2005
 
TECHGUARD SECURITY, LLC (1)
* 6519703 Methods and apparatus for heuristic firewall 189 2000
* Cited By Examiner

Patent Citation Ranking

Forward Cite Landscape

Patent Info (Count) # Cites Year
 
INTERNATIONAL BUSINESS MACHINES CORPORATION (3)
* 9514159 Database insertions in a stream database environment 4 2010
* 2012/0110,042 DATABASE INSERTIONS IN A STREAM DATABASE ENVIRONMENT 16 2010
8856060 Creating stream processing flows from sets of rules 0 2011
 
GENERAL ELECTRIC COMPANY (2)
* 8621629 System, method, and computer software code for detecting a computer network intrusion in an infrastructure element of a high value target 1 2010
* 2012/0054,866 SYSTEM, METHOD, AND COMPUTER SOFTWARE CODE FOR DETECTING A COMPUTER NETWORK INTRUSION IN AN INFRASTRUCTURE ELEMENT OF A HIGH VALUE TARGET 6 2010
 
NATIONAL TAIWAN UNIVERSITY (1)
* 2010/0183,013 PACKET PROCESSING DEVICE AND METHOD 0 2009
 
HEWLETT PACKARD ENTERPRISE DEVELOPMENT LP (4)
* 7849503 Packet processing using distribution algorithms 2 2007
* 2008/0298,392 Packet processing 10 2007
* 8416773 Packet monitoring 4 2007
* 2009/0016,226 Packet monitoring 17 2007
 
CA, INC. (1)
8789181 Flow data for security data loss prevention 1 2012
 
ALCATEL LUCENT (2)
* 8856920 System and method of securely processing lawfully intercepted network traffic 6 2006
* 2008/0127,335 System and method of securely processing lawfully intercepted network traffic 18 2006
 
Sensory Networks, Inc. (4)
* 2006/0174,345 Apparatus and method for acceleration of malware security applications through pre-filtering 22 2005
* 2006/0174,343 Apparatus and method for acceleration of security applications through pre-filtering 30 2005
* 2006/0168,329 Apparatus and method for acceleration of electronic message processing through pre-filtering 12 2005
* 2007/0039,051 Apparatus And Method For Acceleration of Security Applications Through Pre-Filtering 12 2006
 
SOPHOS LIMITED (2)
* 2008/0289,041 TARGET DATA DETECTION IN A STREAMING ENVIRONMENT 2 2008
* 2008/0256,634 TARGET DATA DETECTION IN A STREAMING ENVIRONMENT 5 2008
 
Arxceo Corporation (1)
* 2013/0185,795 METHODS AND SYSTEMS FOR PROVIDING NETWORK PROTECTION BY PROGRESSIVE DEGRADATION OF SERVICE 62 2013
 
FORCEPOINT LLC (31)
8453243 Real time lockdown 0 2005
* 2007/0150,956 Real time lockdown 21 2005
* 8615800 System and method for analyzing web content 9 2006
9654495 System and method of analyzing web addresses 1 2007
8881277 Method and systems for collecting addresses for remotely accessible information sources 2 2008
8938773 System and method for adding context to prevent data leakage over a computer network 2 2008
* 2008/0307,489 SYSTEM AND METHOD FOR ADDING CONTEXT TO PREVENT DATA LEAKAGE OVER A COMPUTER NETWORK 6 2008
9130986 Method and system for protection against information stealing software 0 2008
9015842 Method and system for protection against information stealing software 0 2008
8407784 Method and system for protection against information stealing software 1 2008
8370948 System and method for analysis of electronic information dissemination events 8 2008
* 2009/0241,196 METHOD AND SYSTEM FOR PROTECTION AGAINST INFORMATION STEALING SOFTWARE 17 2008
* 2009/0241,173 METHOD AND SYSTEM FOR PROTECTION AGAINST INFORMATION STEALING SOFTWARE 29 2008
* 2009/0241,187 METHOD AND SYSTEM FOR PROTECTION AGAINST INFORMATION STEALING SOFTWARE 96 2008
8150817 System and method of monitoring and controlling application files 8 2009
* 2009/0216,729 SYSTEM AND METHOD OF MONITORING AND CONTROLLING APPLICATION FILES 11 2009
9130972 Systems and methods for efficient detection of fingerprinted data and information 1 2010
8701194 System and method of monitoring and controlling application files 2 2011
8645340 System and method of monitoring and controlling application files 2 2012
8959634 Method and system for protection against information stealing software 0 2013
8959642 Real time lockdown 0 2013
9342693 System and method of monitoring and controlling application files 1 2013
9003524 System and method for analyzing web content 2 2013
9253060 System and method of monitoring and controlling application files 2 2014
9609001 System and method for adding context to prevent data leakage over a computer network 0 2015
9230098 Real time lockdown 0 2015
9680866 System and method for analyzing web content 0 2015
9495539 Method and system for protection against information stealing software 0 2015
9692762 Systems and methods for efficient detection of fingerprinted data and information 0 2015
9455981 Method and system for protection against information stealing software 0 2015
9692790 System and method of monitoring and controlling application files 0 2016
 
AMAZON TECHNOLOGIES, INC. (2)
* 9591018 Aggregation of network traffic source behavior data across network-based endpoints 0 2014
* 2017/0180,406 AGGREGATION OF NETWORK TRAFFIC SOURCE BEHAVIOR DATA ACROSS NETWORK-BASED ENDPOINTS 0 2017
 
NOKIA TECHNOLOGIES OY (2)
* 8331904 Apparatus and a security node for use in determining security attacks 0 2006
* 2008/0096,526 Apparatus and a security node for use in determining security attacks 68 2006
 
INVENTEC CORPORATION (1)
* 2009/0178,140 NETWORK INTRUSION DETECTION SYSTEM 2 2008
 
DELL PRODUCTS L.P. (1)
* 2013/0031,632 System and Method for Detecting Malicious Content 1 2011
 
EXTRAHOP NETWORKS, INC. (1)
9813311 Dynamic snapshot value by turn for continuous packet capture 0 2017
 
IMPERVA, INC. (2)
* 8024804 Correlation engine for detecting network attacks and detection method 3 2006
* 2007/0214,503 Correlation engine for detecting network attacks and detection method 31 2006
 
TENABLE NETWORK SECURITY, INC. (6)
* 8707440 System and method for passively identifying encrypted and interactive network sessions 5 2010
* 2011/0231,935 SYSTEM AND METHOD FOR PASSIVELY IDENTIFYING ENCRYPTED AND INTERACTIVE NETWORK SESSIONS 20 2010
9367707 System and method for using file hashes to track data leakage and document propagation in a network 0 2012
8839442 System and method for enabling remote registry service security audits 3 2012
8972571 System and method for correlating network identities and addresses 0 2013
9794223 System and method for facilitating data leakage and/or propagation tracking 0 2016
 
SYMANTEC CORPORATION (1)
* 9652616 Techniques for classifying non-process threats 0 2011
 
WEBSENSE U. K. LIMITED (4)
8250081 Resource access filtering system and database structure for use therewith 2 2008
8244817 Method and apparatus for electronic mail filtering 2 2008
8799388 Method and apparatus for electronic mail filtering 0 2012
9473439 Method and apparatus for electronic mail filtering 0 2014
 
BLACKSPIDER TECHNOLOGIES (1)
8015250 Method and system for filtering electronic messages 16 2006
 
ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE (2)
* 8015610 Intrusion detection apparatus and method using patterns 0 2007
* 2008/0034,433 INTRUSION DETECTION APPARATUS AND METHOD USING PATTERNS 3 2007
 
QINETIQ LIMITED (2)
* 8037520 Communications systems firewall 1 2006
* 2008/0209,542 Communications Systems Firewall 0 2006
 
RAYTHEON COMPANY (1)
9378282 System and method for dynamic and real-time categorization of webpages 1 2009
* Cited By Examiner