System for securing inbound and outbound data packet flow in a computer network
US5606668A · kind A · utility
Assignee
Inventor
Key dates
| Filing date | Dec 15, 1993 |
| Grant date | Feb 25, 1997 |
| Priority date | — |
| Expiry date | Dec 15, 2013 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/0263
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A filter module allows controlling network security by specifying security rules for traffic in the network and accepting or dropping communication packets according to these security rules. A set of security rules are defined in a high level form and are translated into a packet filter code. The packet filter code is loaded into packet filter modules located in strategic points in the network. Each packet transmitted or received at these locations is inspected by performing the instructions in the packet filter code. The result of the packet filter code operation decides whether to accept (pass) or reject (drop) the packet, disallowing the communication attempt.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.