System And Method For Providing Network And Computer Firewall Protection With Dynamic Address Isolation To A Device
First Claim
1. A computer comprising:
- an application associated with an application address;
a network interface coupled to receive incoming data packets from and transmit outgoing data packets to an external network;
a network address translation engine configured to translate between the application address and a public address; and
a driver for automatically forwarding the outgoing data packets to the network address translation engine to translate the application address to the public address, and for automatically forwarding the incoming data packets to the network address translation engine to translate the public address to the application address.
2 Assignments
0 Petitions
Accused Products
Abstract
A computer performs dynamic address isolation. The computer comprises an application associated with an application address, a network interface coupled to receive incoming data packets from and transmit outgoing data packets to an external network, a network address translation engine configured to translate between the application address and a public address, and a driver for automatically forwarding the outgoing data packets to the network address translation engine to translate the application address to the public address, and for automatically forwarding the incoming data packets to the network address translation engine to translate the public address to the application address. The computer may communicate with a firewall configured to handle both network-level security and application-level security.
-
Citations
19 Claims
-
1. A computer comprising:
-
an application associated with an application address; a network interface coupled to receive incoming data packets from and transmit outgoing data packets to an external network; a network address translation engine configured to translate between the application address and a public address; and a driver for automatically forwarding the outgoing data packets to the network address translation engine to translate the application address to the public address, and for automatically forwarding the incoming data packets to the network address translation engine to translate the public address to the application address. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A system comprising:
-
a network interface; a firewall in communication with the network interface configured to handle both network-level security and application-level security; and a computer in communication with the firewall, having one or more applications, and being configured to send data packets identifying the one or more applications to the firewall. - View Dependent Claims (8, 9, 10, 11, 12)
-
-
13. A method within a personal computer of processing incoming data associated with a public address, the method comprising:
-
receiving the data from an external network; translating the public address into an internal address associated with an application; analyzing the data for malicious code; and routing the data to the application if the data does not comprise malicious code. - View Dependent Claims (14, 15)
-
-
16. A method within a computer of processing outgoing data, the method comprising:
-
receiving outgoing data from an application, the application being associated with an internal address; translating the internal address into a public address; and routing at least a subset of the outgoing data to an external network using the public address, thereby dynamically isolating the internal address from the external network. - View Dependent Claims (17, 18, 19)
-
Specification