Selectively disabling anti-replay protection by a network security device
US11477241B2 · kind B2 · utility
Assignee
Inventor
Key dates
| Filing date | Dec 30, 2019 |
| Grant date | Oct 18, 2022 |
| Priority date | — |
| Expiry date | May 17, 2040 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/20
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
Systems and methods for selectively disabling anti-replay security checks based on a defined network policy that can override the globally-defined defaults for specific network sessions are provided. A network security device protecting a private network receives a packet associated with a network traffic flow between a source computing device and an internal destination computing device. The network security device identifies an anti-replay policy associated with the network traffic flow and whether the anti-replay policy is intended to override a global anti-replay policy of the network security device. When the identifying is affirmative, the network security device performs one or more anti-replay security checks in accordance with the anti-replay policy. When the identifying is negative, the network security device performs the one or more anti-replay security checks in accordance with the global anti-replay policy.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.