WO2003075121A3 - Firewall - Google Patents

Firewall Download PDF

Info

Publication number
WO2003075121A3
WO2003075121A3 PCT/US2003/005099 US0305099W WO03075121A3 WO 2003075121 A3 WO2003075121 A3 WO 2003075121A3 US 0305099 W US0305099 W US 0305099W WO 03075121 A3 WO03075121 A3 WO 03075121A3
Authority
WO
WIPO (PCT)
Prior art keywords
firewall
communication device
devices
connection
network
Prior art date
Application number
PCT/US2003/005099
Other languages
French (fr)
Other versions
WO2003075121A2 (en
Inventor
Peter M Rigstad
John Y Yoon
Mark Farahar
Barani Subbiah
Brant D Thomsen
David E Richmond
Vered Maor Semel
Earl Bryner
Original Assignee
3Com Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 3Com Corp filed Critical 3Com Corp
Priority to EP03743686A priority Critical patent/EP1485777A4/en
Priority to AU2003216337A priority patent/AU2003216337A1/en
Publication of WO2003075121A2 publication Critical patent/WO2003075121A2/en
Publication of WO2003075121A3 publication Critical patent/WO2003075121A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0227Filtering policies
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/20Network architectures or network communication protocols for network security for managing network security; network security policies in general

Abstract

A system (170) for providing security in a computing network. The system has a server (160) for distributing policies (275) to be implemented by firewall devices (120) in the newtwork. The firewall devices provide hardware implemented firewalls (125) to communication devices (140) making network connections. The system has logic (250) to allow a connection to be made to the network (210) via a communication device (140) at a node provided the firewall device is at that node. Therefore, the firewall device (120) must be in the system for a connection to be established via the communication device (140). Additionally, the system is configured to cause data transferred by the communication device to be processed by the firewall (125).
PCT/US2003/005099 2002-03-01 2003-02-20 Firewall WO2003075121A2 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
EP03743686A EP1485777A4 (en) 2002-03-01 2003-02-20 Firewall
AU2003216337A AU2003216337A1 (en) 2002-03-01 2003-02-20 Firewall

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US10/090,543 US7624434B2 (en) 2002-03-01 2002-03-01 System for providing firewall capabilities to a communication device
US10/090,543 2002-03-01

Publications (2)

Publication Number Publication Date
WO2003075121A2 WO2003075121A2 (en) 2003-09-12
WO2003075121A3 true WO2003075121A3 (en) 2004-09-10

Family

ID=27787612

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2003/005099 WO2003075121A2 (en) 2002-03-01 2003-02-20 Firewall

Country Status (5)

Country Link
US (1) US7624434B2 (en)
EP (1) EP1485777A4 (en)
CN (1) CN1703867A (en)
AU (1) AU2003216337A1 (en)
WO (1) WO2003075121A2 (en)

Families Citing this family (37)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8185943B1 (en) 2001-12-20 2012-05-22 Mcafee, Inc. Network adapter firewall system and method
US7761605B1 (en) 2001-12-20 2010-07-20 Mcafee, Inc. Embedded anti-virus scanner for a network adapter
TW533351B (en) * 2001-12-31 2003-05-21 Icp Electronics Inc Network monitoring device and the computer system having the same
US7363508B2 (en) * 2003-05-21 2008-04-22 Palo Alto Research Center Incorporated System and method for dynamically enabling components to implement data transfer security mechanisms
WO2005008954A1 (en) * 2003-06-19 2005-01-27 Nippon Telegraph And Telephone Corporation Session control server and communication system
US7386887B2 (en) * 2003-07-01 2008-06-10 International Business Machines Corporation System and method for denying unauthorized access to a private data processing network
US7844731B1 (en) * 2003-11-14 2010-11-30 Symantec Corporation Systems and methods for address spacing in a firewall cluster
WO2005074397A2 (en) * 2004-02-05 2005-08-18 Kings Information & Network Computer security apparatus and method using security input device driver
WO2005114947A1 (en) 2004-05-20 2005-12-01 Qinetiq Limited Firewall system
WO2005119462A1 (en) * 2004-06-01 2005-12-15 The Commonwealth Of Australia Multilevel secure information transfer device
US7814216B2 (en) * 2004-09-07 2010-10-12 Route 1 Inc. System and method for accessing host computer via remote computer
US8826014B2 (en) * 2005-01-21 2014-09-02 International Business Machines Corporation Authentication of remote host via closed ports
US8266320B1 (en) * 2005-01-27 2012-09-11 Science Applications International Corporation Computer network defense
US9325728B1 (en) 2005-01-27 2016-04-26 Leidos, Inc. Systems and methods for implementing and scoring computer network defense exercises
US8250654B1 (en) 2005-01-27 2012-08-21 Science Applications International Corporation Systems and methods for implementing and scoring computer network defense exercises
US7424745B2 (en) * 2005-02-14 2008-09-09 Lenovo (Singapore) Pte. Ltd. Anti-virus fix for intermittently connected client computers
WO2006120703A1 (en) * 2005-05-09 2006-11-16 Trinity Future-In Pvt. Ltd, An electromechanical system incorporating a mechanical firewall useful as a security lock
WO2008018055A2 (en) * 2006-08-09 2008-02-14 Neocleus Ltd Extranet security
US8302179B2 (en) * 2006-12-13 2012-10-30 Avaya Inc. Embedded firewall at a telecommunications endpoint
US9137203B2 (en) * 2007-01-24 2015-09-15 International Business Machines Corporation Centralized secure offload of cryptographic security services for distributed security enforcement points
US8316427B2 (en) 2007-03-09 2012-11-20 International Business Machines Corporation Enhanced personal firewall for dynamic computing environments
WO2008114257A2 (en) * 2007-03-21 2008-09-25 Neocleus Ltd. Protection against impersonation attacks
WO2008114256A2 (en) * 2007-03-22 2008-09-25 Neocleus Ltd. Trusted local single sign-on
US8695081B2 (en) * 2007-04-10 2014-04-08 International Business Machines Corporation Method to apply network encryption to firewall decisions
US8656477B2 (en) * 2007-05-25 2014-02-18 Sony Corporation Server system, communication method, computer, program and recording medium
US8474037B2 (en) 2008-01-07 2013-06-25 Intel Corporation Stateless attestation system
EP2286333A4 (en) * 2008-06-05 2012-08-08 Neocleus Israel Ltd Secure multi-purpose computing client
CN101340444B (en) * 2008-08-26 2011-08-24 成都市华为赛门铁克科技有限公司 Fireproof wall and server policy synchronization method, system and apparatus
US8424075B1 (en) * 2008-12-31 2013-04-16 Qurio Holdings, Inc. Collaborative firewall for a distributed virtual environment
US11310191B2 (en) * 2013-02-12 2022-04-19 Nec Corporation Receiving device, receiving device control method, network system, network system control method, and medium
CN104717182B (en) * 2013-12-12 2018-03-09 华为技术有限公司 The security strategy dispositions method and device of network firewall
US9674147B2 (en) 2014-05-06 2017-06-06 At&T Intellectual Property I, L.P. Methods and apparatus to provide a distributed firewall in a network
US9560010B1 (en) * 2015-03-30 2017-01-31 Amazon Technologies, Inc. Network file transfer
US9900285B2 (en) 2015-08-10 2018-02-20 International Business Machines Corporation Passport-controlled firewall
US10762201B2 (en) * 2017-04-20 2020-09-01 Level Effect LLC Apparatus and method for conducting endpoint-network-monitoring
TW201926108A (en) * 2017-12-04 2019-07-01 和碩聯合科技股份有限公司 Network security system and method thereof
US10708230B2 (en) * 2018-06-14 2020-07-07 Servicenow, Inc. Systems and methods for firewall configuration using block lists

Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4823345A (en) * 1987-06-15 1989-04-18 International Business Machines Corp. Method and apparatus for communication network alert record identification
US5278904A (en) * 1992-10-09 1994-01-11 Gte Laboratories Incorporated Method of verifying identification
US5475839A (en) * 1990-03-28 1995-12-12 National Semiconductor Corporation Method and structure for securing access to a computer system
US5475826A (en) * 1993-11-19 1995-12-12 Fischer; Addison M. Method for protecting a volatile file using a single hash
US5826048A (en) * 1997-01-31 1998-10-20 Vlsi Technology, Inc. PCI bus with reduced number of signals
US5968176A (en) * 1997-05-29 1999-10-19 3Com Corporation Multilayer firewall system
US6324656B1 (en) * 1998-06-30 2001-11-27 Cisco Technology, Inc. System and method for rules-driven multi-phase network vulnerability assessment
US6496840B1 (en) * 2000-05-31 2002-12-17 International Business Machines Corporation Method, system and program products for atomically and persistently swapping resource groups

Family Cites Families (14)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5826014A (en) * 1996-02-06 1998-10-20 Network Engineering Software Firewall system for protecting network elements connected to a public network
US6243815B1 (en) * 1997-04-25 2001-06-05 Anand K. Antur Method and apparatus for reconfiguring and managing firewalls and security devices
US6385195B2 (en) * 1997-07-21 2002-05-07 Telefonaktiebolaget L M Ericsson (Publ) Enhanced interworking function for interfacing digital cellular voice and fax protocols and internet protocols
US6167052A (en) * 1998-04-27 2000-12-26 Vpnx.Com, Inc. Establishing connectivity in networks
US6272169B1 (en) * 1998-06-09 2001-08-07 Advanced Micro Devices, Inc. Software based modems that interact with the computing enviroment
US6550012B1 (en) * 1998-12-11 2003-04-15 Network Associates, Inc. Active firewall system and methodology
US6662221B1 (en) * 1999-04-12 2003-12-09 Lucent Technologies Inc. Integrated network and service management with automated flow through configuration and provisioning of virtual private networks
US6681243B1 (en) * 1999-07-27 2004-01-20 Intel Corporation Network environment supporting mobile agents with permissioned access to resources
US6389419B1 (en) * 1999-10-06 2002-05-14 Cisco Technology, Inc. Storing and retrieving connection information using bidirectional hashing of connection identifiers
GB9928503D0 (en) * 1999-12-03 2000-02-02 Ibm Resource allocation in data processing systems
US20020010800A1 (en) * 2000-05-18 2002-01-24 Riley Richard T. Network access control system and method
US7003562B2 (en) * 2001-03-27 2006-02-21 Redseal Systems, Inc. Method and apparatus for network wide policy-based analysis of configurations of devices
US7206933B2 (en) * 2001-07-09 2007-04-17 Advanced Micro Devices, Inc. Software modem with privileged mode driver authentication
US7058811B2 (en) * 2001-10-31 2006-06-06 Intel Corporation Apparatus and method to prevent a device driver from loading on a counterfeit hardware element

Patent Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4823345A (en) * 1987-06-15 1989-04-18 International Business Machines Corp. Method and apparatus for communication network alert record identification
US5475839A (en) * 1990-03-28 1995-12-12 National Semiconductor Corporation Method and structure for securing access to a computer system
US5278904A (en) * 1992-10-09 1994-01-11 Gte Laboratories Incorporated Method of verifying identification
US5475826A (en) * 1993-11-19 1995-12-12 Fischer; Addison M. Method for protecting a volatile file using a single hash
US5826048A (en) * 1997-01-31 1998-10-20 Vlsi Technology, Inc. PCI bus with reduced number of signals
US5968176A (en) * 1997-05-29 1999-10-19 3Com Corporation Multilayer firewall system
US6324656B1 (en) * 1998-06-30 2001-11-27 Cisco Technology, Inc. System and method for rules-driven multi-phase network vulnerability assessment
US6496840B1 (en) * 2000-05-31 2002-12-17 International Business Machines Corporation Method, system and program products for atomically and persistently swapping resource groups

Non-Patent Citations (3)

* Cited by examiner, † Cited by third party
Title
"Microsoft Computer Dictionary, Fifth Edition", 2002, MICROSOFT PRESS, pages: 342, 403, XP002975595 *
NEWTON, HARRY: "Newton's Telecom Dictionary, 18th Edition", 2002, pages: 665, XP002975596 *
See also references of EP1485777A4 *

Also Published As

Publication number Publication date
WO2003075121A2 (en) 2003-09-12
US7624434B2 (en) 2009-11-24
EP1485777A2 (en) 2004-12-15
CN1703867A (en) 2005-11-30
EP1485777A4 (en) 2006-09-06
US20030167410A1 (en) 2003-09-04
AU2003216337A1 (en) 2003-09-16
AU2003216337A8 (en) 2003-09-16

Similar Documents

Publication Publication Date Title
WO2003075121A3 (en) Firewall
WO2006050336A3 (en) Service processor gateway system and appliance
WO2002076065A3 (en) Generic external proxy
CA2323766A1 (en) Providing secure access to network services
WO2007024458A3 (en) Universal out-of-band gateway
TW200704100A (en) Encryption communication method and system
WO2002095543A3 (en) Apparatus and method for providing secure network communication
WO2008063360A3 (en) Remote access
CZ138799A3 (en) External access to computer means through firewall
WO2006050074A3 (en) System and method for providing a multi-credential authentication protocol
WO2004064324A8 (en) Port adapter network-analyzer
WO2000072509A3 (en) Communication management system and method
GB2404111B (en) Audio-communication bandwidth management system, method and program for the same, communication connection server, and network apparatus
WO2001043358A3 (en) Truly anonymous communications using supernets, with the provision of topology hiding
WO2007080558A3 (en) Communications network system and methods for using same
CA2292186A1 (en) System and method for providing a graphical user interface to, for building, and/or for monitoring a telecommunication network
GB0424177D0 (en) Virtual computing infrastructure
AU5098300A (en) An element for a communications system
HK1108247A1 (en) Management of passive network devices using covert connections
AU2002304516A1 (en) Security in area networks
TW200640189A (en) Method, apparatus and computer program product enabling negotiation of firewall features by endpoints
WO2002098039A3 (en) Method and system for logging into and providing access to a computer system via a communications network
WO2002082769A3 (en) Facilitating legal interception of ip connections
WO2002065230A3 (en) Non-hierarchical collaborative computing platform
GB2453461A (en) Methods and arrangements to negotiate communication speed

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ OM PH PL PT RO RU SC SD SE SG SK SL TJ TM TN TR TT TZ UA UG UZ VC VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IT LU MC NL PT SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
WWE Wipo information: entry into national phase

Ref document number: 2003743686

Country of ref document: EP

WWE Wipo information: entry into national phase

Ref document number: 20038016524

Country of ref document: CN

WWP Wipo information: published in national office

Ref document number: 2003743686

Country of ref document: EP

NENP Non-entry into the national phase

Ref country code: JP

WWW Wipo information: withdrawn in national office

Country of ref document: JP

WWW Wipo information: withdrawn in national office

Ref document number: 2003743686

Country of ref document: EP