REGISTER now for FREE 
|
FREE patent keyword monitoring and additional FREE benefits. REGISTER now for FREE
|
|
|
Information Security > Access Control Or Authentication > Network > Firewall FirewallFirewall patent applications listed are from June 2005 to current and include Date, Patent Application Number, Patent Title, Patent Abstract summary and are linked to the corresponding patent application page.11/08/07 - 20070261111 - Distributed firewall implementation and control One or more devices on a network may be configured to provide firewall services for other devices on the network. Each of the firewall service suppliers may publish its capability with respect to firewall services and the service receivers may publish their requirements for firewall services. A manager function may ... 11/08/07 - 20070261110 - Packet firewalls of particular use in packet switching devices One or more firewalls are used to perform firewall functionality on packets based on the entry and exit accesses of each of the one or more firewalls being applied to a packet. For example, when firewalls are included in a router, the interfaces of the router are typically mapped to ... 10/25/07 - 20070250922 - Integration of social network information and network firewalls A firewall functions normally to pass data on open ports to a respective service or endpoint associated with an open port. Invitations may sent to from an internal endpoint to an external peer-to-peer network endpoint inviting a connection back to the internal endpoint. Rather than leave ports open in a ... 10/18/07 - 20070245413 - Trusted cryptographic switch A cryptographic switch for routing information is disclosed. The cryptographic switch includes a first and second input ports, a first and second output ports and a first and second cryptographic paths. The first cryptographic path is configured to programmably couple between at least one of the first or second input ... 10/18/07 - 20070245412 - System and method for a communication system A communication system is made up of several communication communities. Each community provides for communication between the endpoints connected into that community by connecting the endpoints and communication controllers located behind a firewall with an external communication controller outside of the firewall. In selected embodiments, such a community may be ... 10/04/07 - 20070234414 - Firewall control system based on a next generation network service and method thereof The invention provides a firewall control system based on a Next Generation Network (NGN) service and a method thereof. The method includes: resolving an application layer signalling, performing a security inspection of a signalling flow and determining requirements of a service media flow on security level; determining controlment of the ... 10/04/07 - 20070234413 - Method for displaying customers with real-time feedback on firewall activity A method for providing a user with feedback of firewall activity. The method includes determining when access to an application is attempted, blocking access of the application to the Internet based upon a blocked application list, and providing feedback to the user when access to an application is blocked by ... 10/04/07 - 20070234412 - Using a proxy for endpoint access control A technique includes providing a virtual machine within a first enclave and a second enclave. A virtual machine is used as a proxy to negotiate a connection between the first enclave and the second enclave. ... 09/27/07 - 20070226789 - System and method for providing secure internetwork services via an assured pipeline A system and method for the secure transfer of data between a workstation connected to a private network and a remote computer connected to an unsecured network. A secure computer is inserted into the private network to serve as the gateway to the unsecured network and a client subsystem is ... 09/27/07 - 20070226788 - Flexible network security system and method for permitting trusted process Disclosed herein is a flexible network security system and method for permitting a trusted process. The system includes a port monitoring unit for extracting information about a server port being used through a network communication program, an internal permitted program storage for extracting information about a program for which communication ... 09/13/07 - 20070214501 - Firewall system and firewall control method A home agent 404A acquires IP address, port number, and media type obtained by call control of a call control proxy server 403A and sends them to a firewall 700. A packet filtering unit 400 of the firewall 700 performs packet filtering so as to allow the IP packet determined ... 09/06/07 - 20070209067 - System and method for providing security for sip-based communications A security device for SIP communications operates to inhibit the effect of malicious attacks and/or inadvertent erroneous events on the provision of SIP-based services within a private network and between private and public networks. The security device acts as a conventional Firewall, NAT and PAT to isolate SIP User Agents ... 08/30/07 - 20070204338 - Reverse firewall with self-provisioning An application provisioning device may be used to manage a profile of a host and provide data corresponding to a selected application for installation at a host. A reverse firewall may use the profile of the host to determine whether to allow or block particular network communication from an application ... 08/30/07 - 20070204337 - High-assurance file-driven content filtering for secure network server A server for transferring data between networks. The server is programmed to perform the following steps: (a) creating a receiving process, a filtering process and a forwarding process, the filtering process being dictated by a file that specifies filtering rules, wherein: (b) the receiving process receives data transmitted from a ... 08/23/07 - 20070199061 - Network security appliance A network security appliance that provides security to devices in industrial environments by transparently bridging traffic to the endpoint device. The security appliance securely communicates with a management server for receiving configuration data for operation of security modules in the appliance by encrypted communications. The security appliance utilizes the network ... 08/23/07 - 20070199060 - System and method for providing network security to mobile devices A small piece of hardware connects to a mobile device and filters out attacks and malicious code. Using the piece of hardware, a mobile device can be protected by greater security and possibly by the same level of security offered by its associated corporation/enterprise. In one embodiment, a mobile security ... 08/16/07 - 20070192844 - Network security system and the method thereof The present invention discloses a network security system including a firewall arranged between the internal network and the external network, and a trusted node arranged between the firewall and the external network, which is used to provide a data channel between the internal network and the external network, and forward ... 08/02/07 - 20070180511 - Denial of service defense by proxy A method and apparatus which defends a host, which is coupled to the Internet, via a defensive firewall/router, against a denial of service attack The technique includes periodically determining the status of the host, storing the status of the host, receiving at the defensive firewall/router a request from an entity ... 07/19/07 - 20070169184 - Computerized system and method for advanced network content processing A computerized system and method for processing network content in accordance with at least one content processing rule. In accordance with the inventive method, the network content is received at a first interface. The inventive system identifies a transmission protocol information of the received network content and uses the identified ... 07/05/07 - 20070157302 - Methods and systems for correlating event rules with corresponding event log entries Methods and systems for associating an event log entry with the rule that triggered its creation are described. In one embodiment, an apparatus is described. The apparatus has an event handling device for applying a plurality of rules; an event log with a plurality of log entries, and a hash ... 07/05/07 - 20070157301 - State-full perimeter security for data networks The described embodiments include a system for controlling communications between a first network and a second network including a plurality of in-line security devices, the in-line security devices being configured to manage communication between the first network and the second network, and including a state server connected to the plurality ... 06/21/07 - 20070143837 - System and method for secure remote desktop access A secure remote access system includes client software installed on a portable computer that establishes a remote session with a counterpart server software installed on a server in a DMZ of the company's internal network through a secure tunnel. The DMZ server is connected to a router behind an enterprise ... 06/14/07 - 20070136803 - System, method and computer program product for authenticating users using a lightweight directory access protocol (ldap) directory server A system, method and computer program product for providing authentication to a firewall using a lightweight directory access protocol (LDAP) directory server is disclosed. The firewall can be configured through a graphical user interface to implement an authentication scheme. The authentication scheme is based upon a determination of whether at ... 06/14/07 - 20070136802 - Firewall device In a firewall device protecting a specific network against an attack from an external network, a filtering object identifying portion identifies whether or not received data includes filtering object data, a filtering execution/inexecution selector transmits to a source device of the received data, when the received data includes the filtering ... 05/31/07 - 20070124813 - System and method for testing network firewall using fine granularity measurements A device verifies whether signaled pinholes in a Session Initiation Protocol (SIP)-based perimeter protection device are open, calculates a fine granularity pinhole opening delay of the SIP-based perimeter protection device, and calculates a fine granularity pinhole closing delay of the SIP-based perimeter protection device. ... 05/24/07 - 20070118893 - Computerized system and method for policy-based content filtering Firewalls and other filtering gateways have become common security devices for improving computer network security. As more features and functionality are added to these devices they become quite complex to configure. By associating configuration schemes with firewall policies, configuration can be simplified without compromising flexibility. Administrators have more options to ... 05/17/07 - 20070113273 - Enforcement of network device configuration policies within a computing environment A network management system is described for assuring that a network device complies with a device-specific configuration policy. One example of the network management system contains one or more business rules that describe a business policy regarding a computer network in a network-independent form. In general, the business rules refer ... 05/17/07 - 20070113272 - Real-time vulnerability monitoring A security information management system is described, wherein client-side devices preferably collect and monitor information describing the operating system, software, and patches installed on the device(s), as well as configuration thereof. A database of this information is maintained, along with data describing vulnerabilities of available software and associated remediation techniques ... 05/03/07 - 20070101421 - Virtual private network A virtual private network is disclosed. The network may include a first private network including a first firewall interposed between a first private network and a public network and a second firewall interposed between a first client machine and the first firewall machine. The network may include a second private ... 04/05/07 - 20070079365 - Communications system with security checking functions for file transfer operation A secure data communications system with an enhanced function of preventing information leakage. The system includes a user terminal and a router. The router has a security condition definition unit and a storage unit to receive and store a set of security conditions. A packet parser identifies and parses a ... 03/22/07 - 20070067838 - System, mobile node, network entity, method, and computer program product for network firewall configuration and control in a mobile communication system A system, mobile node, network entity, method and computer program product for providing firewall protection for a wireless communication network are provided in which a firewall profile is accessed by the network entity when a mobile node connects to the network. The firewall profile defines a list of static firewall ... 03/22/07 - 20070067837 - Method and transaction interface for secure data exchange between distinguishable networks In one embodiment, the present invention includes a method for secure data exchange between an external network and an internal network (1 and 2) via a transaction interface (3), in which an external user can undertake predetermined data transactions within the internal network (2). An interface server (7) and interface ... 03/15/07 - 20070061876 - System and method for reducing data stream interruption during failure of a firewall device A system and method of using a controller and firewall devices. Each of the firewall devices operate in an active mode during normal operation. The method may include the steps of determining when a first and/or second redundant data packet is received from a first/second firewall device, respectively, determining a ... 03/08/07 - 20070056030 - Apparatus and method for facilitating network security with granular traffic modifications An apparatus is described that facilitates network security and network traffic monitoring through processing of network traffic in accordance with provisioned rules and policies. The apparatus includes a set of microcode controlled state machines, each of which includes a computation kernel operating in accordance with microcode stored in a control ... 03/08/07 - 20070056029 - Apparatus and method for providing security and monitoring in a networking architecture An apparatus is described that provides security and monitoring in a networking architecture. One embodiment of the apparatus includes a physical layer interface that includes a physical layer receiver and a decoder for converting physical layer data from the physical layer receiver to data link layer information, wherein the decoder ... 03/08/07 - 20070056028 - Apparatus and method for selective mirroring An apparatus is described that facilitates selective mirroring through processing of network traffic in accordance with provisioned rules and policies. The apparatus includes a port included in a set of at least one port, wherein each port in the set receives input traffic, a data processor that processes input data ... 01/25/07 - 20070022474 - Portable firewall A firewall device provides a novel architecture for conducting firewall and other network interface management operations over a wired Ethernet connection. The firewall device includes a first network interface for connecting to a first packet switched network connection that transports packets, a second network interface for connecting to a second ... 01/18/07 - 20070016946 - System and method of querying firewalls A system, method, and computer-usable medium for firewall query processing. In a preferred embodiment of the present invention, a firewall query manager receives a firewall query and a firewall expressed as a sequence of rules. The firewall query manager first constructs a firewall decision tree from the given sequence of ... 01/18/07 - 20070016945 - Automatically generating rules for connection security A method and system for creating security policies for firewall and connection policies in an integrated manner is provided. The security system provides a user interface through which a user can define a security rule that specifies both a firewall policy and a connection policy. After the security rule is ... 01/11/07 - 20070011733 - Unified architecture for remote network access A unified architecture for enabling remote access to a network is provided. The network may comprise, as examples, a virtual private network (VPN) and/or a peer-to-peer network. In one embodiment, the architecture includes components installed on a client device/node and a gateway/supernode. Components implemented on the client device may facilitate ... 01/11/07 - 20070011732 - Network device for secure packet dispatching via port isolation The invention relates to a network device for dispatching data packets from a transmitter on a data transmission network. The data transmission network also includes an abnormality detection module for detecting abnormality relative to the transmitter. The network device receives the data packets through an input port and transmits the ... 01/11/07 - 20070011731 - Method, system & computer program product for discovering characteristics of middleboxes A method, computer program product, communications device and system for enabling an end node or terminal to discover one or more characteristics of a firewall on the communications path between the end node and a data network are provided. In particular, middlebox configuration protocols have been extended to allow a ... 01/04/07 - 20070006292 - Method and system for the transparent transmission of data traffic between data processing devices, corresponding computer program product, and corresponding computer-readable storage medium The invention relates to a method and a system for the transparent transmission of data traffic between data processing devices, a corresponding program product, and a corresponding computer-readable storage medium, which can be used especially for transparently inserting, modifying, and/or removing data packets into/in/from the data traffic by introducing a ... 12/28/06 - 20060294584 - Auto-configuration of network services required to support operation of dependent network services Auto-configuration (i.e., without requiring manual intervention) of network services required to support operation of dependent network services. For example, when an administrator causes instantiation of (or installs) OSPF protocol, the firewall, QoS and NAT services are automatically configured. Due to such configuration, the deployment of additional services may be simplified. ... 12/21/06 - 20060288409 - Method and apparatus for managing a firewall A method and apparatus are disclosed for managing a firewall. The disclosed firewall manager facilitates the generation of a security policy for a particular network environment, and automatically generates the firewall-specific configuration files from the security policy simultaneously for multiple gateways. The security policy is separated from the vendor-specific rule ... 12/21/06 - 20060288408 - Virtual private network A virtual private network is disclosed including a first firewall interposed between a first private network and a public network, and a second firewall interposed between a second private network and the public network. An encrypted path is provided for traffic flowing between the first and second firewalls. A dedicated ... 12/14/06 - 20060282887 - Hybrid distributed firewall apparatus, systems, and methods Apparatus and systems, as well as methods and articles, may operate to control a security state associated with one or more network node(s) using a master heuristic policy enforcement module associated with a network firewall, and to selectively re-direct first packets to the network firewall from a remotely manageable network ... 12/07/06 - 20060277602 - Communication method, communication system, program and recording medium By conducting cryptographic communication after establishing a session to monitor the cryptographic communication between a server and a firewall, it is possible that the firewall monitors and controls the contents of the communication without changing an existing cryptographic communication protocol. There are hence provided a communication method, a communication system, ... 12/07/06 - 20060277601 - System and method of removing redundancy from packet classifiers A system, method, and computer-usable medium for removing redundancy from packet classifiers. In a preferred embodiment of the present invention, a packet classifier is implemented as a sequence of rules. A redundancy manager marks at least one upward redundant rule and at least one downward redundant rule. The redundancy manager ... 11/30/06 - 20060272013 - Firewall protection for wireless users In a computer telecommunications network, firewalls protect a machine or network from undesired message transmissions. In the case of a firewall employed on a user side of the wireless link, a message rejected by the firewall has already consumed the wireless resources required to transmit. A system for protecting a ... 11/23/06 - 20060265741 - Dynamic network security In a dynamic network security system and method for networks using a firewall, in judging whether packets using unfixed IPs and ports, such as VoIP (Voice over Internet Protocol) packets, are to be passed or blocked by a firewall, a current communication condition is reflected, thereby enhancing QoS (Quality of ... 11/09/06 - 20060253901 - Providing security for external access to a protected computer network A system and method are disclosed for providing controlled access via an external network to a resource residing on an internal network. An external request addressed to a first computer system associated with the internal network is received at the first computer system via the external network. The external request ... 11/09/06 - 20060253900 - Client assisted firewall configuration Embodiments describe techniques in connection with configuring a firewall and/or reducing network traffic. According to an embodiment is a method for configuring a firewall to reduce unwanted network traffic. The method includes executing a web-server and detecting a passive socket has been created. The method also includes establishing contact with ... 11/09/06 - 20060253899 - Expansion connector An expansion connector is provided. The expansion connector on a network access circuit board is posed in between the network connection port and the network controller, where the first connector pins are electrically connected to corresponding pins of the network connection port responsible which are responsible for sending/receiving network packets, ... 11/02/06 - 20060248580 - Methods, systems, and computer program products for network firewall policy optimization Methods, systems, and computer program products for firewall policy optimization are disclosed. According to one method, a firewall policy including an ordered list of firewall rules is defined. For each rule, a probability indicating a likelihood of receiving a packet matching the rule is determined. The rules are sorted in ... 10/12/06 - 20060230442 - Method and apparatus for reducing firewall rules A method and apparatus for reducing obsolete firewall rules are disclosed. The present invention addresses the issue by using existing network routing information as well as firewall rule configuration information to help analyze firewall access logs to identify obsolete and unused firewall rules so that these obsolete firewall rules can ... 10/12/06 - 20060230441 - Real-time vulnerability monitoring A security information management system is described, wherein client-side devices preferably collect and monitor information describing the operating system, software, and patches installed on the device(s), as well as configuration thereof. A database of this information is maintained, along with data describing vulnerabilities of available software and associated remediation ... 10/05/06 - 20060225132 - System and method of proxy authentication in a secured network A method of controlling access to network services enables an authorized proxy client to access a service on behalf of a user. To permit the client to function as a proxy, the user registers proxy authorization information with a trusted security server. The proxy authorization information identifies the proxy client ... 09/21/06 - 20060212933 - Surveillance implementation in a voice over packet network A network infrastructure device in a voice over packet (VOP) network includes a transceiver and a processor. The transceiver can transmit and receive communications over a VOP network. The processor, responsive to receipt of a call setup information request (CIReq) specifying a particular target, can associate a public identifier with ... 09/21/06 - 20060212932 - System and method for coordinating network incident response activities The present invention provides a system and method to process information regarding a network attack through an automated workflow that actively reconfigures a plurality of heterogeneous network-attached devices and applications to dynamically counter the attack using the network's own self-defense mechanisms. The present invention leverages the security capabilities present within ... 08/31/06 - 20060195897 - Filtering method and firewall system A firewall device that executes filtering of a packet for an internal network to which a moving terminal belongs is set so that a control packet related with registration of position information about the moving terminal is allowed to pass. When the moving terminal is connected to an external network, ... 08/31/06 - 20060195896 - Method, systems, and computer program products for implementing function-parallel network firewall Methods, systems, and computer program products for providing function-parallel firewalls are disclosed. According to one aspect, a function-parallel firewall includes a first firewall node for filtering received packets using a first portion of a rule set including a plurality of rules. The first portion includes less than all of the ... 08/31/06 - 20060195895 - Enabling terminal services through a firewall Systems and methods are described that provide terminal services through a firewall. In one implementation, data is wrapped with an RPC-based protocol, wherein the data to be wrapped is configured according to a stream-based protocol consistent with establishing a server/client relationship. The RPC-based protocol is then layered over HTTPS. The ... 08/31/06 - 20060195894 - Windows remote debugger service Systems and methodologies for a scalable remote debugging system that can debug machines positioned behind a firewall and thru the Internet, via employing an Internet Friendly Relay Service (IFRS). The IFRS can be positioned in a common reach location and provide a secure method of exchanging communication traffic over HTTP ... 08/24/06 - 20060190999 - Method and apparatus for two-way transmission of medical data The present invention provides for a secure, two-way transmission of medical data over the Internet and through the hospital's firewall using push and pull mechanisms. More particularly, the present invention utilizes standard SSH technology and the rsync and scp protocols to enable secure, cost-effective data transmission over the Internet. The ... 08/24/06 - 20060190998 - Determining firewall rules for reverse firewalls A reverse firewall for removing undesirable traffic from a computing network, such as a virtual private network (VPN), is disclosed. The reverse firewall uses firewall rules that may be determined and maintained within the enterprise network to control communication sent between computers in the computing network. The reverse firewall rules ... 08/17/06 - 20060185009 - Communication apparatus and communication method To make it possible, even for each of general users who is not familiar with the setting of an IP network, to automatically connect to and communicate with an apparatus within a firewall from the outside of the firewall without changing the setting of the firewall, a personal computer PC ... 08/17/06 - 20060185008 - Method, apparatus and computer program product enabling negotiation of firewall features by endpoints Disclosed are examples of a method, system, devices and nodes to conduct communications between a device coupled to a communication network and a network security enforcement node, such as a firewall. An illustrative method includes, with a device coupled to a network security enforcement node through a communication network, requesting ... 08/10/06 - 20060179479 - Secure computer network arrangement using directed circuits Two private networks are connected to each other through a public network. A first of the private networks has a firewall which prevents unsolicited messages from the public network into the first private network. The firewall does allow messages from the first private network on to the public network, and ... 08/03/06 - 20060174337 - System, method and program product to identify additional firewall rules that may be needed System, method and program product for managing a security policy of a firewall. The firewall receives a message packet addressed to a specified port of a destination IP address and determines that the firewall does not have a message flow rule which permits passing of the message packet to the ... 08/03/06 - 20060174336 - Vpn and firewall integrated system The present invention provides an integrated VPN/firewall system that uses bath hardware (firmware) and software to optimize the efficiency of both VPN and firewall functions. The hardware portions of the VPN and firewall are designed in flexible and scalable layers to permit high-speed processing without sacrificing system security. The software ... 07/27/06 - 20060168654 - Authentication of remote host via closed ports A method, system and apparatus for authenticating a communication request sent from a client computing device. The communication request is initially blocked by a firewall preventing delivery to a server. A first logging event corresponding to the communication request is created. The communication request and the logging event are stored ... 07/06/06 - 20060150243 - Management of network security domains Described herein is a system for the management of security domains. The system comprises a managing security domain (10), a firewall (70) and two or more managed security domains (80, 100). The managing security domain (10) includes a plurality of nodes (12, 14, 16) of which one is a management ... 06/29/06 - 20060143699 - Firewall device A firewall apparatus including plural virtual firewalls, each virtual firewall including a dependent firewall policy, is disclosed. The firewall apparatus includes: a distribution management table for managing a user name and a virtual firewall ID; a part configured to receive authentication information for network connection from a user terminal, and ... 06/22/06 - 20060137003 - Method and system for network intrusion prevention According to some embodiments of the invention, a method for network protection is provided. The method includes receiving with a network security software a request from an entity to stop at least a portion of unauthorized network traffic from being transmitted through a firewall. The entity lacks control over the ... 06/22/06 - 20060137002 - System, method and program product to route message packets A system, method and computer program for routing a response message packet. The response message packet is a response to a request message packet which traveled along an outbound path from a source computer to a destination computer. The outbound path comprises a first firewall for the source computer and ... 06/15/06 - 20060130134 - Secure transmitting method, a system, a firewall, and a router using the method Data packets are transmitted in a secure manner from an external network to a secure network. The secure network and the external network are interconnected via a firewall comprising a first interface with the external network and a second interface with the secure network. The firewall provides, over the second ... 06/15/06 - 20060130133 - Automated generation of configuration elements of an information technology system A firewall rule generation method, a load balancing rule generation method, and a wrapper generation method, for an Information Technology (IT) system, associated computer program products, and an associated processes for integrating computing infrastructure. The firewall rule generation method generates firewall rules allowing data transmission between a computer and a ... 06/08/06 - 20060123473 - Two-way communication device capable of communicating through a firewall A two-way communication device capable of communicating through a firewall includes a network module capable of exchanging signals through a network line, and a control module capable of receiving a terminal connecting condition of a client through a public switched telephone network (PSTN) line for controlling the network module to ... 05/25/06 - 20060112424 - Method for authenticating a user access request A firewall for authenticating a user access request is disclosed. The firewall device may include a proxy process for processing incoming connection requests. The proxy is configured to receive an access request from a user over a first communication medium and prompt the user for a username and a first ... 05/04/06 - 20060095960 - Data center topology with transparent layer 4 and layer 7 services A data center topology routes traffic between internal sub-nets and between a sub-net and an outside network through a common chain of services. The data center topology employs transparent layer 7 and layer 4 services on a common chassis or platform to provide routing, load balancing and firewall services while ... 04/06/06 - 20060075479 - Data processing system and method The present invention relates to a data processing system comprising a computer for receiving data that is uploaded from a data source via a public network through a first firewall a database for receiving the data from the computer through a second firewall, and a data sink for receiving the ... 04/06/06 - 20060075478 - Method and apparatus for enabling enhanced control of traffic propagation through a network firewall A distributed firewall system is used to implement a network firewall with enhanced control over network traffic to allow policy to be implemented on a per-user basis, a per-application basis, a per-user and application basis, and to allow ports to be dynamically opened and closed as needed by the applications. ... 03/16/06 - 20060059550 - Stateful application firewall A method and system to protect web applications from malicious attacks is described. A stateful means of distinguishing between valid (e.g., harmless) and invalid (e.g., harmful) accesses is provided. A request from a content browser for content from an application server is forwarded by a firewall to the application server ... 03/09/06 - 20060053485 - Network connection through nat routers and firewall devices A method for communication and data exchange between two or more systems located in separate, private networks with each network behind a firewall device includes establishing communication with a proxy server. A first system and a second system establish a TCP connection with the proxy server. A TCP probing packet ... 03/02/06 - 20060048218 - System and method for on-demand dynamic control of security policies/rules by a client computing device A system and method for an end user to change the operation of a data flow filter mechanism, such as a firewall, that operates to control data flows between a plurality of protected computing devices and one or more non-protected computing devices. With the system and method, an administrator of ... 03/02/06 - 20060048217 - Secure bidirectional cross-system communications framework A local computer system and a remote computer system are connected by a network. When the local computer system needs to initiate communication with the remote computer system or vice versa, a cross-system request is generated, and placed in a request queue on the computer system generating the request. All ... 02/23/06 - 20060041936 - Method and apparatus for graphical presentation of firewall security policy A graphical representation of the firewall and a network coupled to the firewall is generated and displayed. A number of an inbound port of the network is displayed. An arrow adjacent to the port number pointing toward the network is displayed to indicate that a communication is permitted to the ... 02/23/06 - 20060041935 - Methodology for configuring network firewall Provided is a method for configuring filter parameters for a network firewall whereby information corresponding to a core set of data parameters is extracted from each of a plurality of data packets traversing a network segment. The extracted information is stored as a respective log entry within a database. A ... 02/16/06 - 20060037070 - Blocking of spam e-mail at a firewall A method of blocking spam at a firewall involves applying blocking measures for an adaptively determined duration. The blocking measure is then suspended while determining whether the spam has ended. If so, the method resets to an initial state. Otherwise, the blocking measure is re-applied for a second duration. ... 02/16/06 - 20060037069 - Systems and methods for communicating messages A system for communicating messages is described. The system includes a server and a gateway. The gateway sends a first message to the server. The first message queries the server to determine whether the server is ready to communicate with the gateway. ... 02/09/06 - 20060031929 - Network system, internal server, terminal device, storage medium and packet relay method A network system has a firewall that connects an external network and an internal network. A terminal device is provided on the external network. An application server is provided on the internal network and provides data to the terminal device based on a request from the terminal device. An external ... 02/09/06 - 20060031928 - Detector and computerized method for determining an occurrence of tunneling activity Devices and methods are provided to ascertain an existence of tunneling activity through a network firewall. According to one methodology, a set of norms is established for network traffic and a series of data packets transmitted through the firewall are monitored. Data packet attributes are analyzed to determine an absence ... 02/09/06 - 20060031927 - Information management system, information management method, and system control apparatus [Means to Solve the Problem] A system control apparatus 60 is provided to an intranet 30 for managing groupware information and files. A service site 70 is provided to an Internet 10. A file duplication daemon 63c is provided to each of clients 40 and 41. The file duplication daemon ... 02/02/06 - 20060026674 - Firewall port search system A search system and user interface provides flexible and comprehensive search functions for searching Access Lists of multiple firewall databases for IP addresses and Ports in a networked computer system involving multiple servers and hosting executable applications in an Application Service Provider (ASP) environment, for example. A system identifies communication ... 01/26/06 - 20060021020 - Method for directly connecting an inherently secure computer to a private network element A firewall device is disclosed that includes a proxy agent configured to examine a packet received from a source host machine destined for a private network element over an IP-compliant network. The firewall is configured to determine whether the packet is inherently secure and directly connect said source host machine ... 01/19/06 - 20060015935 - Method for providing user authentication/authorization and distributed firewall utilizing same The distributed firewall performs user authentication at a first level to establish a user security context for traffic from that user, and an authority context provides authorization for subsequent traffic. This authority context may be based on an underlying policy for particular types of traffic, access to particular applications, etc. ... 01/19/06 - 20060015934 - Method and apparatus for automatic risk assessment of a firewall configuration Generally, a method and apparatus are disclosed for Automatic Risk Assessment of a Firewall Configuration. The disclosed invention facilitates the automatic generation of a risk assessment of a given firewall configuration. The prior work of [Mayer et al; 2000, Mayer et al; 2005] and [Wool; 2001] teaches how to analyze ... 01/12/06 - 20060010491 - Firewall system protecting a community of appliances, appliance participating in the system and method of updating the firewall rules within the system The invention relates to the protection by firewall of a domestic community of interconnectable appliances. The invention allows distributed and totally decentralized management of the firewall policy, implemented at the level of each appliance, which is consistent and adapts dynamically to the changes occurring within the domestic network. We shall ... 01/05/06 - 20060005236 - Computer gateway system A computer gateway system is disclosed. The system may include a multi-homing gateway with at least one interface connected to an IP compliant network. The gateway is to allow an IP address to be mapped to at least one virtual host. A virtual host configuration table is coupled to the ... 12/29/05 - 20050289647 - Method of remotely managing a firewall A method of remotely managing a firewall has been developed. The method includes receiving a control data packet at the firewall from a remote location. Next, the control data packet is analyzed to determine if the control data packet is authorized to access the firewall. Finally, an authorized control data ... 12/22/05 - 20050283831 - Security system and method using server security solution and network security solution A security method and system using a server security solution and a network security solution is disclosed. In the security method based on the security system that has a firewall for blocking malicious access to a corresponding network, a network intrusion prevention system for blocking intrusion into the network and ... 12/08/05 - 20050273848 - Procedure for controlling access to a source terminal network using a block mode tunnel and computer programs for its implementation According to the invention, the periodic supply of the authentification token is performed by the transmission on the ISO model Level 2 layer (L2) so that the token continues to be provided during a block tunnel mode communication. ... 12/08/05 - 20050273847 - Programmable message processing stage for a service oriented architecture A system, method and media for a service oriented architecture. This description is not intended to be a complete description of, or limit the scope of, the invention. Other features, aspects and objects of the invention can be obtained from a review of the specification, the figures and the claims. ... 12/08/05 - 20050273846 - Controlled firewall penetration for management of discrete devices A method of remotely controlling a client device is provided within a network having a network server coupled to a first side of a firewall from a web server coupled to a second side of the firewall. The network server initiates a service request for the client device through the ... 12/01/05 - 20050268334 - Access and control system for network-enabled devices Systems and methods for remote access of network-enabled devices that provide seamless, firewall-compliant connectivity between multiple users and multiple devices, that allow collaborative operations by multiple users of remote devices, that allow point to multipoint control of multiple devices and which allow rapid, secure transmission of data between remote users ... 12/01/05 - 20050268333 - Method and apparatus for providing security to web services Method and firewall architecture system for providing security to web services. A firewall architecture can determine whether data in a web service message is valid and then can determine whether the source of the web service message is authorized to pass through the firewall architecture. If it is determined that ... 12/01/05 - 20050268332 - Extensions to filter on ipv6 header A network implementing at least one firewall for providing protection for users on the network. The network includes at least one host system protected by the at least one firewall, the host system being configured to send and receive information from external host systems through the at least one firewall. ... 12/01/05 - 20050268331 - Extension to the firewall configuration protocols and features A network implementing at least one firewall for providing protection for users on the network. The network includes at least one host system protected by the at least one firewall, the host system being configured to send and receive information from external host systems through the at least one firewall. ... 11/24/05 - 20050262554 - Visualization of firewall rules in an auto provisioning environment Various aspects of the invention provide a method, apparatus, and software for selecting interconnectivity rules for a computer network environment and visualization on a display of a data processing system interconnectivity rules in an auto provisioning environment, including: selecting a network environment specification having characteristics describing the environment, the characteristics ... 11/17/05 - 20050257257 - Method and apparatus for two-way transmission of medical data The present invention utilizes standard SSH technology and the rsync and scp protocols to enable secure, cost-effective, two-way transmission of medical data over the Internet and through the hospital's firewall using push and pull mechanisms. The hospital firewall is traversed through the use of an agent located behind the hospital's ... 11/17/05 - 20050257256 - Firewall load balancing using a single physical device Methods and systems for load balancing a plurality of entities, such as firewalls, in a network environment are disclosed. In particular, the load balancing of firewalls on a bidirectional traffic path is performed using a single device that controls both incoming and outgoing traffic through the firewalls. The single device ... 11/03/05 - 20050246768 - Filters to isolate untrusted ports of switches A technique is provided for dividing a plurality of switch ports into trusted ports and untrusted ports. The trusted ports are those ports that are coupled either directly or via one or more additional switches to a trusted computing device. Filters are applied on each untrusted port to allow the ... 11/03/05 - 20050246767 - Method and apparatus for network security based on device security status A method and apparatus are provided for network security based on a security status of a device. A security update status of a device is evaluated; and one or more of a plurality of security policies are selected to apply to the device based on the security update status. The ... 10/27/05 - 20050240992 - Method for controlling access to a web server operating on an ip-compliant network Methods and apparatus are dislosed for controlling access to a web server operating on an IP-compliant network. Disclosed embodiments include a network device disposed between the IP-compliant network and the web server and including at least one proxy agent configured to receive an access request from a user seeking to ... 10/27/05 - 20050240991 - Secure data communication system This invention relates to methods and apparatus for securing communications between an open multimedia network and a trusted multimedia network. A multimedia boundary controller controls the communications between the two networks in order to intercept corrupting data such as viruses. The boundary controller contains an open network security engine for ... 10/27/05 - 20050240990 - Systems and methods for managing networks The described systems and methods are directed at managing networks using network templates. Each network template is associated with a different network topology and includes parameters for implementing the associated network topology. A user may implement a particular network topology by selecting a corresponding network template. A configurator may be ... 10/27/05 - 20050240989 - Method of sharing state between stateful inspection firewalls on mep network The present invention is devised to solve the problem in which a state cannot be kept track of because an outgoing traffic and an incoming traffic pass through different firewalls on a Multiple Entry/Exit Point (MEP) network having a plurality of entry points. In the present invention, firewalls physically remote ... 10/20/05 - 20050235349 - Null-packet transmission from inside a firewall to open a communication window for an outside transmitter A high-bandwidth direct communication path between two clients is used for voice or video calls over the Internet. An opening or a window in a firewall is made for the direct path by sending a null packet out from inside the firewall. The null packet can be a UDP packet ... 10/20/05 - 20050235348 - System for preventing unwanted access to information on a computer A firewall device for preventing unwanted access to information on a computer is disclosed. In disclosed embodiments, the firewall device is managing traffic between a computer and an IP-compliant network. The computer may have a bundled application and associated information stored thereon. The firewall system includes a proxy agent cofigured ... 10/20/05 - 20050235347 - Method for eliminating source-based routing by a device disposed between an ip-compliant network and private network elements Methods and apparatus for eliminating source-based routing are disclosed. Disclosed embodiments include a gateway device being disposed between an IP-compliant network and private network elements for receiving incoming access request packets from users desiring to access private network elements residing behind the device. The device may include proxy agents configured ... 10/20/05 - 20050235346 - Method for transparently forming a connection to an element of a private network over an ip-compliant network Methods and apparatus for transparently forming a connection to an element of a private network over an IP-compliant network are disclosed. In disclosed embodiments, network devices such as firewalls are disclosed that are configured to receive an access request from an external user over the IP-compliant network to access the ... 09/15/05 - 20050204402 - System and method for behavior-based firewall modeling One embodiment of the present invention creates a model of the traffic through a network firewall and uses that model to dynamically manipulate the network firewall based on human intervention or based on the automatic invocations of processes and protocols that implement firewall policy. Another embodiment of the invention creates ... 08/18/05 - 20050183140 - Hierarchical firewall load balancing and l4/l7 dispatching A secure cluster-based server system includes a plurality of firewalls, a plurality of back-end servers, a logically external firewall dispatcher, a logically internal firewall dispatcher, and a plurality of second stage dispatchers. The external firewall dispatcher is configured for routing packets received from the external network through one or more ... 08/18/05 - 20050183139 - Combined firewall load balancing and cluster-based server dispatcher A computer device for interfacing a plurality of firewalls to a plurality of servers includes at least one input for receiving packets directly from the firewalls and at least one output for forwarding said packets to the servers. The computer device is configured for dispatching each packet received from one ... 08/18/05 - 20050183138 - System and method for protecting a computing device from computer exploits delivered over a networked environment in a secured communication A network security module for protecting computing devices connected to a communication network from identified security threats communicated in a secured communication is presented. The network security module is interposed, either logically or physically, between the protected computer and the communication network. Upon detecting a secured communication, the network security ... 08/11/05 - 20050177869 - Firewall permitting access to network based on accessing party identity The inventive communications management systems manage access to a local area network or network content by external users, applications, and devices. The systems and methods are implemented on a network appliance to manage content within the network and facilitate content transmission through a firewall that separates the network from a ... 08/11/05 - 20050177868 - Method and system for protecting against computer viruses A method for delivering an update to at least one user, including creating an electronic communication including an update and a unique signature identifying, the electronic communication as including the update and sending the electronic communication to the user. ... ### FreshPatents.com Support |