REGISTER now for FREE 
|
FREE patent keyword monitoring and additional FREE benefits. REGISTER now for FREE
|
|
|
Information Security > Access Control Or Authentication > Network > Firewall > Security Protocols Security ProtocolsSecurity Protocols patent applications listed are from June 2005 to current and include Date, Patent Application Number, Patent Title, Patent Abstract summary and are linked to the corresponding patent application page.10/18/07 - 20070245416 - E-mail firewall with stored key encryption/decryption An e-mail firewall (105) applies policies to e-mail messages (204) between a first 5 site and a plurality of second sites in accordance with a plurality of administrator selectable policies (216). The firewall comprises a simple mail transfer protocol (SMTP) relay (202) for causing the e-mail messages (204) to be ... 10/18/07 - 20070245415 - Firewall system A firewall system employs signature validation hardware communicating via low level communication protocols and with inner and outer host computers, which have network protocol stacks and for implementing complex communication protocols with remote source and destination computers. The source computer has data checker and signature functionalities, which respectively check data ... 09/06/07 - 20070209070 - Integrated network intrusion detection Intrusion preludes may be detected (including detection using fabricated responses to blocked network requests), and particular sources of network communications may be singled out for greater scrutiny, by performing intrusion analysis on packets blocked by a firewall. An integrated intrusion detection system uses an end-node firewall that is dynamically controlled ... 08/16/07 - 20070192848 - Detecting network topology when negotiating ipsec security associations that involve network address translation The invention determines if a security association (SA) extends end-to-end between a source node originating a connection and a destination node. In such a case, there will be no ambiguities in routing due to network address translation, and the SA is allowed. In the preferred embodiment, both end nodes of ... 08/09/07 - 20070186281 - Securing network traffic using distributed key generation and dissemination over secure tunnels A technique for securing message traffic in a data network using a protocol such as IPsec, and more particularly various methods for distributing security keys where key generation, key distribution, policy generation and policy distribution are separated, with inner to outer header replication on packet traffic. The approach permits encrypted ... 07/05/07 - 20070157306 - Network threat detection and mitigation A network switch automatically detects undesired network traffic and mirrors the undesired traffic to a security management device. The security management device determines the source of the undesired traffic and redirects traffic from the source to itself. The security management device also automatically sends a policy to a switch to ... 07/05/07 - 20070157305 - Controlling the number of internet protocol security (ipsec) security associations The invention provides a system and method for controlling the number of Internet Protocol Security (IPsec) security associations per Internet Key Exchange (IKE) security association for a single user. The limit on the number of security association (SA) tunnels per key management protocol SA may be stored in a server. ... 06/14/07 - 20070136805 - Business-to-business remote network connectivity A system for providing connectivity to employer networks for support personnel and consultants who regularly work at customer locations. A secure network mechanism is provided to connect these users at the customer locations with their respective employer networks for the purpose of accessing e-mail, reference material, specialized application databases at ... 06/14/07 - 20070136804 - Method and apparatus for login local machine An information processing system 10 comprising a plurality of information processing apparatuses 300, a management server 100, and a plurality of terminals 200, wherein: the management server 100 includes a connection management table 125, and an address notification unit 110 for receiving an apparatus use assignment request from the terminal ... 04/26/07 - 20070094723 - Method for dynamically tunneling over an unreliable protocol or a reliable protocol, based on network conditions A method, and computer program product for providing dynamically tunneling over an unreliable protocol or a reliable protocol based on network conditions is presented. A connection between a source device and a destination device is established using a reliable protocol. An attempt is then made to utilize an unreliable protocol ... 04/12/07 - 20070083925 - Method for improving bundle control in an osgi environment Provided is a method for managing sets of OSGi bundles in a manner that enables a developer to control the order in which bundles are activated, both within and among OSGi start levels. Also provided is a method for eliminating multiple instances of the OSGi class loaders that are typically ... 03/29/07 - 20070074282 - Distributed ssl processing Methods and systems for communicating data between a server and a remote client computer through a secure socket layer (“SSL”). In accordance with the present invention, server-side SSL functions are performed by a network device located remotely from a secure data center, while maintaining the secure use of centralized certificates ... 03/15/07 - 20070061878 - Creating secure interactive connections with remote resources Implementations of the present invention efficiently establish secure connections between a client and server, at least in part by authenticating the client and server early on in the connection setup phases. A client initiating a connection with a server identifies the secure communication protocols enabled at the client, and identifies ... 01/25/07 - 20070022475 - Transmission of packet data over a network with a security protocol A method, device, system and computer program for providing a transport distribution scheme for a security protocol are disclosed. A first packet data connection is established to a remote node for transmitting packet data over a network with a security protocol. An authentication procedure is performed with the remote node ... 01/11/07 - 20070011737 - Method and system for e-mail message transmission An e-mail firewall applies policies to e-mail messages transmitted between a first site and a plurality of second sites. The e-mail firewall includes a plurality of mail transfer relay modules for transferring e-mail messages between the first site and one of the second sites. Policy managers are used to enforce ... 01/11/07 - 20070011736 - Policy based cryptographic application programming interface in secure memory Systems, methods, and apparatus are provided for policy protected cryptographic Application Programming Interfaces (APIs) that are deployed in secure memory. One embodiment is a method of software execution. The method includes executing an application in a first secure memory partition; formatting a request to comply with a pre-defined secure communication ... 01/11/07 - 20070011735 - Open standard conditional access system The present open standard conditional access system uses an open standard protocol for authenticating devices, selectively enabling services, and revoking service on cable and satellite content distribution networks. This system uses a two-way communication protocol between devices in the home and security system servers in the cable network. This allows ... 01/04/07 - 20070006295 - Adaptive ipsec processing in mobile-enhanced virtual private networks Disclosed is a method providing secure mobility for a terminal in a mobile system comprising at least two IP based sub-networks. The method comprises to detect a change of the IP based sub-network by the terminal. The connection parameters of the terminal are updated so as to be connected with ... 01/04/07 - 20070006294 - Secure flow control for a data flow in a computer and data flow in a computer network Systems and methods of the present invention manage data flow of a computer and computer network in a secure domain. The system includes an administration module and a management module. The administration module assigns a security label to data within the secure domain, and establishes a set of schema based ... 12/14/06 - 20060282888 - Method and system for filtering communication A e-mail relay provides message filtering services to an e-mail network. The e-mail relay monitors incoming communication and intercepts e-mail messages. The e-mail relay compares attributes of the messages to data derived from SPAM messages, which is stored in a SPAM database. The e-mail relay restricts the delivery of message ... 11/02/06 - 20060248583 - Communication apparatus and communication method and computer readable medium A communication apparatus includes a storage device to store security associations to be exchanged between an opposite party's apparatus, an update device to update the security associations stored in the storage device, before starting a sleep mode for a power-saving operation, and a notification device to notify a message of ... 10/19/06 - 20060236387 - Bulk transmission of messages using a single http request Example embodiments provide for keeping an HTTP reply flow for a communication open such that portions of an overall response corresponding to a single request may be sent across the HTTP reply flow. As the various portions of the overall response become available at a corresponding service endpoint, the service ... 10/12/06 - 20060230444 - Method and apparatus for traffic control of dynamic denial of service attacks within a communications network A method and apparatus for providing traffic management for distributed denial of service (DDOS) traffic. Within a communications network, a DDOS detection system monitors network traffic to identify traffic that is designed to attack a particular server within the network and their entry points into the network. A traffic routing ... 09/21/06 - 20060212936 - Method of integrating qkd with ipsec A method of integrating quantum key distribution (QKD) with Internet protocol security (IPSec) to improve the security of IPSec. Standard IPSec protocols impose limits on the frequency at which keys can be changed. This makes efforts to improve the security of IPSec by employing quantum keys problematic. The method includes ... 09/14/06 - 20060206933 - Security for mobile devices in a wireless network A network and associated methods and apparatus are described. The network includes a wireless access node which is operable to receive first packets from a plurality of wireless computing devices attempting to access the network. Each of the first packets corresponds to one of a plurality of traffic types. At ... 08/24/06 - 20060191004 - Secured one-way interconnection system A secured one-way interconnection system comprises at least one system A with a security level NA and one system B with a security level NB, the two systems exchanging information through a physical linking means, wherein the physical linking means is equipped with an optical isolator device adapted to transmitting ... 08/24/06 - 20060191003 - Method of improving security performance in stateful inspection of tcp connections Disclosed herein is a method of improving a security performance in a stateful inspection of TCP connections. In the security performance improvement method, a stateful inspection computer, placed between first and second hosts in which TCP connections are set up, creates a single session entry corresponding to a new SYN ... 08/17/06 - 20060185012 - Communication betweeen a private network and a roaming mobile terminal Communication between a private network (1) and a roaming mobile terminal (4), the private network (1) including a home agent (5) for the mobile terminal and a gateway (2, 3) through which, the communication passes and which-provides security protection for the private network (1). The protocols of the communication include ... 06/29/06 - 20060143701 - Techniques for authenticating network protocol control messages while changing authentication secrets A method and apparatus for changing a secret value used to authenticate network protocol control messages among network nodes in a trusted domain includes configuring each network node in the domain to use a first secret value to authenticate network protocol control messages among network nodes in the domain. After ... 06/29/06 - 20060143700 - Security system providing methodology for cooperative enforcement of security policies during ssl sessions A security system providing methodology for cooperative enforcement of security policies during SSL sessions is described. In one embodiment, for example, a method is described for controlling SSL (Secure Sockets Layer) communication, the method comprises steps of: defining rules indicating conditions under which a machine is permitted to participate in ... 06/22/06 - 20060137004 - Network security protection A method and system for providing security to a Network Job Entry (NJE) network. A first NJE node and a third NJE node are connected by a second NJE node. The second NJE node conducts a security check of NJE packets traveling between the first and third NJE nodes. The ... 04/20/06 - 20060085850 - System and methods for providing network quarantine using ipsec A system and method for ensuring that machines having invalid or corrupt states are restricted from accessing host resources are provided. A quarantine agent (QA) located on a client machine acquires statements of health from a plurality of quarantine policy clients. The QA packages the statements and provides the package ... 04/06/06 - 20060075483 - Method for routing bi-directional connections in a telecommunication network by means of a signalling protocol via an interposed firewall with address transformation device and also a telecommunication network and security and tunnel device for this The invention relates to a method for routing a bi-directional end-to-end connection between an end subscriber and the domain of a service provider by means of a signalling protocol via an interposed firewall with address transformation device, wherein by means of a security and tunnel device, located in the end-to-end ... 04/06/06 - 20060075482 - Method and apparatus for preventing network reset attacks A method for improving resistance of network protocols running on transmission control protocol (TCP), such as BGP. For example, a method comprises receiving, from a TCP application, a request to ignore all TCP segments with an RST bit set, except for solicited RST segments; establishing a filter that blocks all ... 03/30/06 - 20060070122 - Method and apparatus for a distributed firewall A method and apparatus for implementing a distributed firewall is described. A packet filter processor receives a packet sent from a first device to a second device. The packet filter processor authenticates an identifier for the packet. For example, authentication could be performed using a cryptographically-verifiable identifier. The packet filter ... 03/23/06 - 20060064751 - Apparatus, system, and method for message level security An apparatus, system, and method are disclosed for selective, end-to-end message level security. The apparatus includes a message class definition module, a security module, and a messaging module. The message class definition module identifies a predetermined message class of an internode message. The security module applies security to the message ... 03/23/06 - 20060064750 - System and methods for transparent encryption Conventional SSL termination devices support secure connections only to a predetermined destination address. An SSL termination device accepts a plaintext connection and associate it to a secure connection to an arbitrary destination endpoint by intercepting a connection request from the local subnetwork, identifying the intended destination of the connection, and ... 03/02/06 - 20060048219 - Secure private information transmission program and secure private information receiving apparatus A secure private information transmission program readable by a computer, comprises the steps of: receiving first transition screen information and screen transition information, the first transition screen information being for displaying a first transition screen prior to screen transition, the screen transition information containing a branching condition and screen specifying ... 02/23/06 - 20060041938 - Method of supporting ssl/tls protocols in a resource-constrained device System and method for secure communication between a resource constrained device and a remote node over a computer network. The system and method according to the invention supports an SSL/TLS protocol stack on the resource-constrained device by performing at least one optimization step to reduce the resources required to support ... 02/16/06 - 20060037072 - Systems and methods for network disruption shielding techniques The present invention is generally directed towards a remote access architecture for providing peer-to-peer communications and remote access connectivity. In one embodiment, the remote access architecture of the present provides a method for establishing a direct connection between peer computing devices via a third computing device, such as a gateway. ... 02/09/06 - 20060031930 - Dynamically configurable service oriented architecture A system, method and media for a service oriented architecture. This on is not intended to be a complete description of, or limit the scope of, the Other features, aspects and objects of the invention can be obtained from a the specification, the figures and the claims. ... 12/08/05 - 20050273851 - Method and apparatus providing unified compliant network audit Information flow between network elements in a network enables a management system to capture a security knowledge base and to perform a static analysis of the network. In one embodiment, a method for performing a network security audit based on information flows among network elements comprises the machine-implemented steps of ... 12/08/05 - 20050273850 - Security system with methodology providing verified secured individual end points A security system with methodology providing verified secured individual end points is described. In one embodiment, for example, a method of the present invention is described for controlling access to a particular application, the method comprises steps of: defining firewall rules specifying filtering conditions for incoming network traffic, the firewall ... 10/20/05 - 20050235352 - Systems and methods for managing a network A method of managing a network. The method includes receiving an activation key transmitted from a device connected to the network, automatically transmitting a configuration to the device, automatically maintaining the configuration of the device, and receiving log information from the device. ... 10/20/05 - 20050235351 - Displaying a security element with a browser window The present invention provides a method and system for providing a security element that is directed at inhibiting malicious activity by displaying a browser window in such a way that the user can trust and know the source of the window. Additional information and ornamentation is displayed on the window ... 10/13/05 - 20050229246 - Programmable context aware firewall with integrated intrusion detection system A context-aware firewall and intrusion detection system receives a definition of a Protocol State Machine (PSM) that defines the expected behavior of any protocol (FTP, HTTP, etc.). The PSM provides rules for detecting flows that deviate from the defined protocol behavior and taking appropriate actions. PSMs are comprised of rule ... 10/13/05 - 20050229245 - Inter-device authentication system, inter-device authentication method, communication device, and computer program Providing a function of isolating a home network from an external network for a router or a gateway, which are interposed between the home network and the external network, so as to isolate or disconnect the home network from the external network when, for example, the home server registers a ... 07/21/05 - 20050160478 - Preventing network data injection attacks Approaches for preventing TCP data injection attacks in packet-switched networks are disclosed. A first approach provides for dropping received segments that carry ACK values smaller than the next unacknowledged sequence number expected minus the maximum window size. This approach helps keep spurious injected segments out of the TCP re-assembly buffer. ... ### FreshPatents.com Support |