Network traffic intercepting method and system

US 20040230840A1
Filed: 06/04/2004
Published: 11/18/2004
Est. Priority Date: 02/03/1999
Status: Active Grant

First Claim

Patent Images

1. A method conducted within a single computer system connected to a network for intercepting, examining, and controlling data flowing via transport connections between the transport layer of an operating system and user applications, said method comprising:

intercepting all said data, via a dedicated transport connection connected to said transport layer, flowing between said transport layer and said user application; and

, examining said data for information content, which comprises examining said data to determine if it is scannable for information content or non-scannable for information content.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A computer system and method for intercepting, examining, and controlling data streams flowing via transport connections between the transport layer of an operating system and the user application. All data streams that pass from an external network, through the transport layer of an operating system to the user application or from the user application to the transport layer are intercepted by a network traffic interceptor. The network traffic interceptor processes all data streams for proscribed data that may include viruses, trojan horses, worms, and other hostile algorithms. The processing used by the network traffic interceptor can include monitoring, blocking or destroying data, thereby protecting the single computer system from being infected by hostile algorithms.

40 Citations

View as Search Results

20 Claims

1. A method conducted within a single computer system connected to a network for intercepting, examining, and controlling data flowing via transport connections between the transport layer of an operating system and user applications, said method comprising:
- intercepting all said data, via a dedicated transport connection connected to said transport layer, flowing between said transport layer and said user application; and
  
  , examining said data for information content, which comprises examining said data to determine if it is scannable for information content or non-scannable for information content.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
- - 2. A method as in claim 1 further comprising processing said data, including scanning said data for proscribed data.
  - 3. A method as in claim 2 further comprising preventing said computer system from accessing proscribed data.
  - 4. A method as in claim 3 further comprising monitoring wherein said monitoring includes watching for key words in network traffic.
  - 5. A method as in claim 4 further comprising blocking further transmittal of said data containing said key words.
  - 6. A method as in claim 3 further comprising preventing said computer system accessing from accessing proscribed data, by designating said data with a GO designation or a NOGO designation;
    - passing said GO designated data to said user application; and
      
      blocking said NOGO designated data from said user application.
  - 7. A method as in claim 6 further comprising communicating the existence of said NOGO designated data.
  - 8. A method as in claim 7 wherein said communicating comprises displaying the existence of said NOGO designated data on a dialogue box or message.
  - 9. A method as in claim 6 further comprising logging the existence of NOGO designated data in a log file.
  - 10. A method as in claim 9, wherein said logging includes designating place of origin, date, size and type of said NOGO designated data.
  - 11. A method as in claim 1 further comprising protocol parsing.
  - 12. A method as in claim 1 further comprising decrypting said data.
  - 13. A method as in claim 1 further comprising authenticating said data.
  - 14. A method as in claim 1 wherein said transport layer comprises a Transmission Control Protocol/Internet Protocol (TCP/IP) layer.

15. A method conducted within a single computer system connected to a network for intercepting, examining, and controlling data flowing via transport connections between the transport layer of an operating system and user applications, said method comprising:
- intercepting all said data flowing between said transport layer and said user application; and
  
  , transmitting said data via a dedicated transport connection connected to said transport layer to a network traffic interceptor.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. A method as in claim 15 wherein said network traffic interceptor examines said data for information content.
  - 17. A method as in claim 16, further comprising scanning said data for proscribed data.
  - 18. A method as in claim 16, further comprising examining said data to determine if it is scannable for information content or non-scannable for information content.
  - 19. A method as in claim 15 further comprising processing said data, including scanning said data for proscribed data.
  - 20. A method as in claim 17 further comprising preventing said computer system from accessing proscribed data.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Cybersoft, Inc.
Original Assignee
Cybersoft, Inc.
Inventors
Radatti, Peter V.

Granted Patent

US 7,503,069 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/201
CPC Class Codes

G06F 21/564   by virus signature recognition

H04L 63/0245   Filtering by information in...

H04L 63/145   the attack involving the pr...

Network traffic intercepting method and system

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

40 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Network traffic intercepting method and system

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

40 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links