-
公开(公告)号:US11468165B2
公开(公告)日:2022-10-11
申请号:US16636390
申请日:2018-07-20
发明人: Keiichi Okabe , Hiroki Itoh
摘要: The present invention reduces the time required for inspecting packets and detecting unauthorized commands. An intrusion prevention device (3) is connected to a communication network (9-1) in which a packet including a command for a device to be controlled is transmitted according to a predetermined rule. An analysis table storage part (34) stores an analysis table comprised of a predetermined number of slots for storing a predetermined number of commands together with time information. An input part (31) extracts the command from the packet detected from the communication network (9-1). A parse part (32) inserts the command into the analysis table. An analysis part (33) analyzes whether or not the plurality of commands stored in the respective slots of the analysis table follow the predetermined rule. A notification part (35) outputs an alarm when an analysis result indicates an abnormality. An output part (36) determines whether to pass or discard the packet according to the analysis result.
-
2.发明授权公开(公告)号:US11176252B2
公开(公告)日:2021-11-16
申请号:US16344563
申请日:2017-09-26
发明人: Keiichi Okabe , Takaaki Koyama , Jun Miyoshi , Yoshihiro Itoh , Naohiko Yoshizumi , Tetsuo Takahashi , Yuki Mori , Toshiyuki Yamada , Naoki Yamasaki
摘要: An intrusion prevention device includes a reception unit, a monitoring unit, and a determination unit. The reception unit receives, from a control target device, a notification indicating a state of the control target device. The monitoring unit receives a control command transmitted from a control device to the control target device. The determination unit determines whether to permit or block passage of the control command received by the monitoring unit in accordance with the state of the control target device received by the reception unit.
-
搜索结果
2 条记录 (耗时 0.015 秒)
