Method and System for Digital Communication Security Using Computer Systems
First Claim
1. A system for network security, comprising:
- a protected network comprising at least one protected server; and
a virtual network comprising at least one virtual server;
wherein the at least one virtual server is a ghost of the at least one protected server and is configured to;
receive a data packet;
run an inspection of the received data packet; and
send at least a portion of the inspected data packet to the protected network, in response to the data packet passing the inspection.
1 Assignment
0 Petitions
Accused Products
Abstract
Methods and systems are provided for network security. In one embodiment, the method may involve receiving a data packet (e.g. from a firewall). The method may involve running an inspection of the received data packet within a virtual network, the virtual network duplicating at least a portion (e.g., servers(s) and/or application(s)) of a protected network. The method may involve sending the inspected data packet, or portion and/or modified version thereof, to the protected network, in response to the data packet passing the inspection within the virtual network. The method may also involve blocking passage of the data packet to the protected network, in response to the data packet failing the inspection.
-
Citations
20 Claims
-
1. A system for network security, comprising:
-
a protected network comprising at least one protected server; and a virtual network comprising at least one virtual server; wherein the at least one virtual server is a ghost of the at least one protected server and is configured to; receive a data packet; run an inspection of the received data packet; and send at least a portion of the inspected data packet to the protected network, in response to the data packet passing the inspection. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method operable by a virtual entity in a network system, comprising:
-
receiving a data packet; running an inspection of the received data packet within a virtual network, the virtual network duplicating at least a portion of a protected network; and sending at least a portion of the inspected data packet to the protected network, in response to the data packet passing the inspection within the virtual network. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A computer program product, comprising:
a computer-readable medium comprising code for causing a computer to; receive a data packet; run an inspection of the received data packet within a virtual network, the virtual network duplicating at least a portion of a protected network; and send at least a portion of the inspected data packet to the protected network, in response to the data packet passing the inspection within the virtual network. - View Dependent Claims (16, 17, 18, 19, 20)
Specification