-
公开(公告)号:US20070136791A1
公开(公告)日:2007-06-14
申请号:US11593226
申请日:2006-11-06
申请人: Stuart Green , Scott Brown , Jonathan Crain , Jeffrey Myers , Carl Perry , Marcus Yax
发明人: Stuart Green , Scott Brown , Jonathan Crain , Jeffrey Myers , Carl Perry , Marcus Yax
IPC分类号: H04L9/32
CPC分类号: H04L63/02 , H04L63/1408
摘要: A FireNet security system in which trustworthy networks, called BlackNets, each comprising One (1) or more client computers, are protected by FireBreaks against attacks from untrustworthy networks, called RedNets. All incoming transactions from the RedNet are examined by the FireBreak to determine if they violate any of a plurality of protection rules stored in a local protection rules database. Any transaction found to be in violation is discarded. Valid transactions are forwarded to the BlackNet. If an otherwise valid transaction is found to be suspicious, the FireBreak will forward to a FireNet Server relevant information relating to that transaction. If the FireNet Server verifies that the transaction is indeed part of an attack, the FireNet Server will create new protection rules suitable to defend against the newly identified source or strategy of attack. Periodically, all FireBreaks in the FireNet system will transfer, directly or indirectly, all new rules.
摘要翻译: 一个FireNet安全系统,其中称为BlackNets的每个包含一(1)个或更多客户端计算机的可信网络受到FireBreaks的保护,防止称为RedNets的不可信网络的攻击。 FireBreak检查RedNet的所有传入事务,以确定它们是否违反存储在本地保护规则数据库中的多个保护规则。 任何被发现违规的事务被丢弃。 有效的交易将转发到BlackNet。 如果发现其他有效的交易是可疑的,则FireBreak将转发到与该交易相关的FireNet Server相关信息。 如果FireNet服务器验证事务确实是攻击的一部分,FireNet服务器将创建适合防御新发现的攻击源或策略的新保护规则。 定期地,FireNet系统中的所有FireBreak将直接或间接地转移所有新规则。