Locked down network interface
First Claim
1. An apparatus for intercepting a data flow from a network source to a network destination, the apparatus comprising:
- a data store holding a set of compliance rules and corresponding actions;
a packet inspector configured to inspect the intercepted data flow and search the data store for a compliance rule associated with the inspected data flow; and
processing circuitry configured to carry out an action with respect to data packets meeting a criteria of a temporary compliance rule whilst the temporary compliance rule is valid, wherein said temporary compliance rule is used where there is no other compliance rule associated with the inspected data flow in the data store,wherein the temporary compliance rule is valid until the processing circuitry determines that at least one criterion is met, wherein the at least one criterion comprises either or both of expiration of a predefined time period or arrival from the network source of a predefined number of data packets meeting the criteria of the temporary compliance rule.
4 Assignments
0 Petitions
Accused Products
Abstract
A logic device and method are provided for intercepting a data flow from a network source to a network destination. A data store holds a set of compliance rules and corresponding actions wherein at least one of the set of compliance rules is a temporary compliance rule valid for a predetermined period. A packet inspector is configured to inspect the intercepted data flow and identify from the data store a temporary compliance rule associated with the inspected data flow. A packet filter is configured to when the data flow is identified as being associated with the temporary compliance rule, carry out an action with respect to the data flow corresponding to the temporary compliance rule while the temporary compliance rule is valid.
-
Citations
22 Claims
-
1. An apparatus for intercepting a data flow from a network source to a network destination, the apparatus comprising:
-
a data store holding a set of compliance rules and corresponding actions; a packet inspector configured to inspect the intercepted data flow and search the data store for a compliance rule associated with the inspected data flow; and processing circuitry configured to carry out an action with respect to data packets meeting a criteria of a temporary compliance rule whilst the temporary compliance rule is valid, wherein said temporary compliance rule is used where there is no other compliance rule associated with the inspected data flow in the data store, wherein the temporary compliance rule is valid until the processing circuitry determines that at least one criterion is met, wherein the at least one criterion comprises either or both of expiration of a predefined time period or arrival from the network source of a predefined number of data packets meeting the criteria of the temporary compliance rule. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 21)
-
-
11. An apparatus for intercepting a data flow from a network source to a network destination, the apparatus comprising:
-
a data store holding a set of compliance rules and corresponding actions; and a packet inspector configured to inspect the intercepted data flow and to search the data store for a compliance rule associated with the inspected data flow, processing circuitry configured to determine that there is no compliance rule associated with the inspected data flow in the data store, and in response to said determination, activate a temporary compliance rule to perform an action associated with data packets meeting a criteria of the temporary compliance rule while the temporary compliance rule is valid, wherein the temporary compliance rule is valid until the processing circuitry determines that at least one criterion is met, wherein the at least one criterion comprises either or both of expiration of a predefined time period or arrival from the network source of a predefined number of data packets meeting the criteria of the temporary compliance rule. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 22)
-
-
19. A method comprising:
-
intercepting a data flow from a network source to a network destination; storing a set of compliance rules and corresponding actions; inspecting the intercepted data flow and searching a data store for a compliance rule associated with the inspected data flow; and carrying out an action with respect to data packets meeting a criteria of a temporary compliance rule whilst the temporary compliance rule is valid, wherein said temporary compliance rule is used where there is no other compliance rule associated with the inspected data flow in the data store, wherein the temporary compliance rule is valid until it is determined that at least one criterion is met, wherein the at least one criterion comprises either or both of expiration of a predefined time period or arrival from the network source of a predefined number of data packets meeting the criteria of the temporary compliance rule.
-
-
20. A method comprising:
-
intercepting a data flow from a network source to a network destination; storing a set of compliance rules and corresponding actions; inspecting the intercepted data flow and searching a data store for a compliance rule associated with the inspected data flow; and determining that there is no compliance rule associated with the inspected data flow in the data store, and in response to said determination activating a temporary compliance rule to perform an action associated with data packets meeting a criteria of the temporary compliance rule whilst the temporary compliance rule is valid, wherein the temporary compliance rule is valid until the processing circuitry determines that at least one criterion is met, wherein the at least one criterion comprises either or both of expiration of a predefined time period or arrival from the network source of a predefined number of data packets meeting the criteria of the temporary compliance rule.
-
Specification