Communication Control Device, Communication Control System, Communication Control Method, and Communication Control Program
First Claim
1. A communication control device for, when communication is carried out with an outside apparatus by way of a communication network, determining and controlling whether communication with said outside apparatus is to be permitted or not, said communication control device comprising:
- a communication parameter acquisition means for acquiring communication parameters specifying the transmission origin of said outside apparatus based on existence information of said outside apparatus that is received from said communication network;
an apparatus identifier acquisition means for acquiring an apparatus identifier from said outside apparatus, said apparatus identifier being an identifier for said outside apparatus;
a policy determination means for determining a communication policy for permitting or prohibiting communication with an outside apparatus specified by said apparatus identifier;
a communication selection rule combining means for combining communication selection rules based on said communication policy and said communication parameters; and
a communication pass control means for passing or blocking communication with said outside apparatus based on communication selection rules that have been combined by said communication selection rule combining means.
1 Assignment
0 Petitions
Accused Products
Abstract
The communication control device of the present invention includes: a communication parameter acquisition means (105) for acquiring communication parameters that specify the transmission origin of an outside apparatus based on existence information of the outside apparatus that is received from a communication network, an apparatus identifier acquisition means (104) for acquiring from the outside apparatus an apparatus identifier that is an identifier for the outside apparatus, a policy determination means (106) for determining a communication policy for permitting or prohibiting communication with the outside apparatus that is specified by the apparatus identifier, a communication selection rule combining means (107) for combining communication selection rules based on the communication policy and communication parameters, and a communication pass control means (108) for passing or blocking communication with the outside apparatus based on the communication selection rules that have been combined by the communication selection rule combining means.
78 Citations
23 Claims
-
1. A communication control device for, when communication is carried out with an outside apparatus by way of a communication network, determining and controlling whether communication with said outside apparatus is to be permitted or not, said communication control device comprising:
-
a communication parameter acquisition means for acquiring communication parameters specifying the transmission origin of said outside apparatus based on existence information of said outside apparatus that is received from said communication network; an apparatus identifier acquisition means for acquiring an apparatus identifier from said outside apparatus, said apparatus identifier being an identifier for said outside apparatus; a policy determination means for determining a communication policy for permitting or prohibiting communication with an outside apparatus specified by said apparatus identifier; a communication selection rule combining means for combining communication selection rules based on said communication policy and said communication parameters; and a communication pass control means for passing or blocking communication with said outside apparatus based on communication selection rules that have been combined by said communication selection rule combining means. - View Dependent Claims (2, 3, 4, 9)
-
-
5. A communication control device for, when performing communication with an outside apparatus by way of a communication network, controlling whether communication with said outside apparatus is to be permitted or not, said communication control device comprising:
-
a policy storage means for storing a policy indicating permission or blockage of communication with said outside apparatus for each of apparatus identifier that uniquely identifies said outside apparatus; an apparatus discovery means for detecting said outside apparatus based on existence information that is received from said communication network and that indicates an existence of said outside apparatus; a communication parameter acquisition means for acquiring from said existence information communication parameters that specify the transmission origin of said outside apparatus that has been discovered by said apparatus discovery means; an apparatus identifier acquisition means for acquiring from said existence information said apparatus identifier that has been discovered by said apparatus discovery means; a policy determination means for both reading from said policy storage means a policy for an apparatus identifier that has been acquired by said apparatus identifier acquisition means and determining said policy that has been read as the policy of said outside apparatus; a communication selection rule combining means for, based on said policy that has been determined by said policy determination means, said apparatus identifier acquired by said apparatus identifier acquisition means, and said communication parameters that have been acquired by said communication parameter acquisition means, combining communication selection rules that indicate whether to pass or block communication for an outside apparatus to which said apparatus identifier is assigned; and a communication pass control means for passing or blocking communication with said outside apparatus based on said communication selection rules that have been combined. - View Dependent Claims (6, 7, 8)
-
-
10. A communication control method for, when carrying out communication with an outside apparatus by way of a communication network, determining and controlling whether to permit communication with said outside apparatus or not;
- said method comprising;
an apparatus identifier/communication parameter acquisition step of acquiring, from said outside apparatus, an apparatus identifier that is the identifier for said outside apparatus and communication parameters that specify the transmission origin of said outside apparatus from existence information of said outside apparatus that is received from said communication network; a policy determination step of determining a communication policy for permitting or prohibiting communication with said outside apparatus that is specified by said apparatus identifier; a communication selection rule combining step of combining communication selection rules based on said communication policy and said communication parameters; and a communication pass control step carried out in a communication pass control means that functions based on communication selection rules that have been combined and sets passage or blockage of communication with said outside apparatus. - View Dependent Claims (11, 12)
- said method comprising;
-
13. A communication control method for, when carrying out communication with an outside apparatus by way of a communication network, controlling whether or not to permit communication with said outside apparatus;
- said method comprising;
an outside apparatus detection step of detecting said outside apparatus based on existence information that is received from said communication network and that indicates existence of said outside apparatus; an apparatus identifier/communication parameter acquisition step of acquiring from said existence information communication parameters that specify the transmission origin of said outside apparatus that has been detected and the corresponding apparatus identifier; a policy determination step of reading from a policy storage means, in which policies are stored in advance for each apparatus identifier, a policy that indicates whether to permit or block communication with an outside apparatus to which said apparatus identifier that has been acquired is assigned and determining said policy as the policy of said outside apparatus; a communication selection rule combining step of, based on said policy that has been determined, and said apparatus identifier and communication parameters that have been acquired, combining communication selection rules that indicate whether to pass or block communication for said outside apparatus to which said apparatus identifier is assigned; and a communication pass control step of executing determination based on said communication selection rules that have been combined and passing or blocking communication with said outside apparatus. - View Dependent Claims (14, 15, 16)
- said method comprising;
-
17. A communication control program products for, when carrying out communication with an outside apparatus by way of a communication network, determining and controlling whether or not to permit communication with said outside apparatus;
- said program causing a computer to execute processes of;
an apparatus identifier/communication parameter acquisition step of acquiring, from said outside apparatus, an apparatus identifier that is the identifier for said outside apparatus and communication parameters that specify the transmission origin of said outside apparatus based on existence information of said outside apparatus that is received from said communication network; a policy determination step of determining a communication policy for permitting or prohibiting communication with said outside apparatus that is specified by said apparatus identifier; a communication selection rule combining step of combining communication selection rules based on said communication policy and said communication parameters; and a communication pass control step carried out in a communication pass control means that functions based on communication selection rules that have been combined and that sets passage or blockage of communication with said outside apparatus. - View Dependent Claims (18, 19, 20)
- said program causing a computer to execute processes of;
-
21. A communication control program products for, when carrying out communication with an outside apparatus by way of a communication network, determining and controlling whether or not to permit communication with said outside apparatus;
- said program causing a computer to execute processes of;
an outside apparatus detection step of detecting said outside apparatus based on existence information that is received from said communication network and that indicates existence of said outside apparatus; an apparatus identifier/communication parameter acquisition step of acquiring from said existence information communication parameters that specify the transmission origin of said outside apparatus that has been detected and the corresponding apparatus identifier; a policy determination step of reading from a policy storage means, in which policies are stored in advance for each apparatus identifier, a policy that indicates whether to permit or block communication with an outside apparatus to which said apparatus identifier that has been acquired is assigned and determining said policy as the policy of said outside apparatus; a communication selection rule combining step of, based on said policy that has been determined and said apparatus identifier and communication parameters that have been acquired, combining communication selection rules that indicate whether to pass or block communication for said outside apparatus to which said apparatus identifier is assigned; and a communication pass control step of executing determination based on said communication selection rules that have been combined and passing or blocking communication with said outside apparatus. - View Dependent Claims (22, 23)
- said program causing a computer to execute processes of;
Specification