公开(公告)号：US06654882B1

公开(公告)日：2003-11-25

申请号：US10153645

申请日：2002-05-24

申请人： Paul Froutan ,  Eric Evans

发明人： Paul Froutan ,  Eric Evans

IPC分类号： G06F124

CPC分类号： H04L63/1416

摘要： A network security system provides a complete, reactive, Network Intrusion Detection System (NIDS) designed to stop a would-be hacker from gaining unauthorized access by blocking their connectivity to a protected network at the first sign of malicious activity. The network security system utilizes a commercially available or open source NIDS that can detect patterns in TCP/IP activity as well as examining packet headers to detect probes and attempts to compromise systems. The network security system then modifies the return route from the “victim” protected network so that outbound packets are never returned to the attacker.

摘要翻译： 网络安全系统提供了一个完整的，反应式的网络入侵检测系统（NIDS），旨在通过在恶意活动的第一个迹象上阻止其与受保护网络的连接，阻止未来的黑客获取未经授权的访问。 网络安全系统使用可以检测TCP / IP活动中的模式的商业可用或开源NIDS，以及检查数据包头以检测探测和企图破坏系统。 网络安全系统然后修改“受害者”受保护网络的返回路由，以便出站数据包不会返回给攻击者。