System, method and program product for intrusion protection of a network

Assignee

• International Business Machines Corporation · US

Inventors

• David Allen Dennerline · Sandy Springs, US
• Terry Nelms, II · Dallas, US
• Bernard P. Palmer, Jr. · Marietta, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L63/1408
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

Intrusion protection. A first packet en route to a first destination is received. A first value representing a benefit for analyzing the first packet for intrusions in relation to a cost for analyzing the first packet for intrusions is automatically determined. An automatic determination is made that the first value is sufficiently high to warrant an analysis of the first packet for intrusions, and in response, the first packet is analyzed for intrusions. If the analysis of the first packet for intrusions indicates an intrusion, the first packet is discarded without forwarding the first packet to the first destination. A second packet en route to a second destination is received. A second value representing a benefit for analyzing the second packet for intrusions in relation to a cost for analyzing the second packet for intrusions is automatically determined. An automatic determination is made that the second value is not sufficiently high to warrant analysis of the second packet for intrusions, and in response, the second packet is forwarded to a next hop en route to the second destination without analyzing the second packet for intrusions.