HYPERVISOR-BASED INTRUSION PREVENTION PLATFORM AND VIRTUAL NETWORK INTRUSION PREVENTION SYSTEM
First Claim
1. A hypervisor-based intrusion prevention platform comprising:
- a virtual network intrusion prevention system (vIPS) framework which obtains internal information of a virtualization system from a hypervisor and performs security control on the hypervisor in response to the result of intrusion detection carried out by using the internal information of the virtualization system;
a hypervisor security application programming interface (API) module which provides an API used by the vIPS framework to access the hypervisor;
an administrator account management and authentication module which manages an administrator account of a vIPS and authenticates the administrator account;
an environment setting management module which manages environment setting values of modules within the vIPS; and
an external interface module which provides an interface for system control and security control.
2 Assignments
0 Petitions
Accused Products
Abstract
Hypervisor-based intrusion prevention platform is provided. The hypervisor-based intrusion prevention platform comprises a virtual network intrusion prevention system (vIPS) framework which obtains internal information of a virtualization system from a hypervisor and performs security control on the hypervisor in response to the result of intrusion detection carried out by using the internal information of the virtualization system, a hypervisor security application programming interface (API) module which provides an API used by the vIPS framework to access the hypervisor, an administrator account management and authentication module which manages an administrator account of a vIPS and authenticates the administrator account, an environment setting management module which manages environment setting values of modules within the vIPS, and an external interface module which provides an interface for system control and security control.
205 Citations
15 Claims
-
1. A hypervisor-based intrusion prevention platform comprising:
-
a virtual network intrusion prevention system (vIPS) framework which obtains internal information of a virtualization system from a hypervisor and performs security control on the hypervisor in response to the result of intrusion detection carried out by using the internal information of the virtualization system; a hypervisor security application programming interface (API) module which provides an API used by the vIPS framework to access the hypervisor; an administrator account management and authentication module which manages an administrator account of a vIPS and authenticates the administrator account; an environment setting management module which manages environment setting values of modules within the vIPS; and an external interface module which provides an interface for system control and security control. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A hypervisor-based vIPS comprising:
-
intrusion detection modules which perform intrusion detection by using internal information of a virtual machine, internal information of a hypervisor, and a virtual network packet of a virtualization system; and a hypervisor-based intrusion prevention platform which provides the internal information of the virtual machine, the internal information of the hypervisor and the virtual network packet of the virtualization system to the intrusion detection modules and receives the result of intrusion detection from the intrusion detection modules, wherein the hyper-based intrusion prevention platform comprises; a vIPS framework which obtains the internal information of the virtual machine, the internal information of the hypervisor and the virtual network of the virtualization system from the hypervisor and performs operation control of the virtual machine and rate control of virtual network traffic on the hypervisor in response to the result of intrusion detection; a hypervisor security API module which provides APIs used by the vIPS framework to access the hypervisor; an administrator account management and authentication module which manages an administrator account of the vIPS and authenticates the administrator account; an environment setting management module which manages environment setting values of modules within the vIPS; and an external interface module which provides interfaces for system control and security control. - View Dependent Claims (9, 10, 11, 12, 13, 14, 15)
-
Specification