Protective device for internal resource protection in network and method for operating the same
First Claim
1. A protective device for internal resource protection in a network, comprising:
- a firewall between an internal network and an external network, to selectively perform a disconnection function for an access request to the internal network from the external network;
a FTP proxy to perform an authentication function for an access request from the internal network to the external network and to record copies of data transmitted to the external network and log information related to the transmission of data by an authenticated user;
a file system to store data transmitted from the internal network to the external network according to the control of the FTP proxy; and
a database to store log information related to the transmission of data according to the control of the FTP proxy.
2 Assignments
0 Petitions
Accused Products
Abstract
A protective device for an internal resource protection in a network and method for operating the same is disclosed. The method preferably includes giving an internal user of a local network (internal network) in which a firewall is built a proper ID and host, performing authentication and access control for a request for accessing to an external network from the internal user, and if an access to the external network is permitted, connecting to a server of the external network, receiving a service command from the user, and if the received service command is a command for requesting data transmission, transmitting file data transmitted from the user to the server, storing copies of the transmitted file data and log information, and transmitting the log information to an operator. Accordingly, a network operator can monitor and trace the transmission and reception of FTP service from an internal network to an external network.
-
Citations
22 Claims
-
1. A protective device for internal resource protection in a network, comprising:
-
a firewall between an internal network and an external network, to selectively perform a disconnection function for an access request to the internal network from the external network;
a FTP proxy to perform an authentication function for an access request from the internal network to the external network and to record copies of data transmitted to the external network and log information related to the transmission of data by an authenticated user;
a file system to store data transmitted from the internal network to the external network according to the control of the FTP proxy; and
a database to store log information related to the transmission of data according to the control of the FTP proxy. - View Dependent Claims (2, 3, 4, 18, 19, 20)
-
-
5. A method for protecting internal resources in a network, comprising:
-
determining whether an access request for accessing an external network from an internal user of an internal network is permitted or not;
connecting to a server located in the external network if the access request is permitted;
receiving a service command from the internal user;
if the received service command is a command designating a type of data, storing the designated type of data; and
if the received service command is a command requesting data transmission, transmitting data from the internal user and recording the transmission and reception of services. - View Dependent Claims (6, 7, 8, 9, 10, 11, 12, 13, 21)
-
-
14. A method for protecting internal resources in a network, comprising:
-
giving an internal user of a local network in which a firewall is built a proper ID and host information;
performing authentication and access control upon receiving a request for access to an external network from the internal user;
connecting to a server of the external network if an access to the external network is permitted; and
receiving a service command from the internal user, and if the service command is a request for data transmission, transmitting file data transmitted from the internal user to the server and storing copies of the transmitted file data and log information in a database. - View Dependent Claims (15, 16, 17, 22)
-
Specification