DEVICE FOR PROVIDING SECURITY BARRIER FOR NETWORK
First Claim
Patent Images
1. An apparatus for providing a security barrier between a communication network and an internet connection, the apparatus comprising:
- a transceiver device; and
one or more processors to;
detect one or more indications of identity of one or more devices of the communication network;
obtain a first set of signal packets, received at the transceiver device, from at least one of the one or more devices of the communication network;
inspect the first set of signal packets based, at least in part, on a set of security policies;
responsive to the inspection of the first set of signal packets, blocking, based at least in part, on the set of security policies the first set of signal packets, or filtering, modifying, or a combination thereof, at least one of the first set of signal packets based, at least in part, on the set of security policies, to form a modified first set of signal packets;
responsive to formation of the modified first set of signal packets, initiate transmission of the modified first set of signal packets via the transceiver device, the transmission of the modified first set of signal packets comprising emulating the at least one of the one or more devices based, at least in part, on the one or more indications of identity;
inspect a second set of signal packets received from the internet connection via the transceiver device and intended for the at least one of the one or more devices, the inspection of the second set of signal packets based, at least in part, on the set of security policies; and
responsive to the inspection of the second set of signal packets, blocking, based, at least in part, on the set of security policies the second set of signal packets, or filtering, modifying, or a combination thereof, at least one of the second set of signal packets based, at least in part, on the set of security policies to form a modified second set of signal packets for transmission to the at least one of the one or more devices.
1 Assignment
0 Petitions
Accused Products
Abstract
An apparatus, a system, and a method for providing a security barrier between local network and an internet connection.
-
Citations
20 Claims
-
1. An apparatus for providing a security barrier between a communication network and an internet connection, the apparatus comprising:
-
a transceiver device; and one or more processors to; detect one or more indications of identity of one or more devices of the communication network; obtain a first set of signal packets, received at the transceiver device, from at least one of the one or more devices of the communication network; inspect the first set of signal packets based, at least in part, on a set of security policies; responsive to the inspection of the first set of signal packets, blocking, based at least in part, on the set of security policies the first set of signal packets, or filtering, modifying, or a combination thereof, at least one of the first set of signal packets based, at least in part, on the set of security policies, to form a modified first set of signal packets; responsive to formation of the modified first set of signal packets, initiate transmission of the modified first set of signal packets via the transceiver device, the transmission of the modified first set of signal packets comprising emulating the at least one of the one or more devices based, at least in part, on the one or more indications of identity; inspect a second set of signal packets received from the internet connection via the transceiver device and intended for the at least one of the one or more devices, the inspection of the second set of signal packets based, at least in part, on the set of security policies; and responsive to the inspection of the second set of signal packets, blocking, based, at least in part, on the set of security policies the second set of signal packets, or filtering, modifying, or a combination thereof, at least one of the second set of signal packets based, at least in part, on the set of security policies to form a modified second set of signal packets for transmission to the at least one of the one or more devices. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A system for providing a security barrier between a communication network and an internet connection, the system comprising:
-
means for detecting one or more indications of identity of one or more devices of the communication network; means for receiving a first set of signal packets from at least one of the one or more devices of the communication network; means for inspecting the first set of signal packets based, at least in part, on a set of security policies; in response to the inspection of the first set of signal packets; means for blocking, based at least in part, on the set of security policies the first set of signal packets;
ormeans for filtering, modifying, or a combination thereof, at least one of the first set of signal packets based, at least in part, on the set of security policies, to form a modified first set of signal packets; and means for transmitting the modified first set of signal packets in response to formation of the modified first set of signal packets, the transmission of the modified first set of signal packets comprising emulating the at least one of the one or more devices based, at least in part, on the one or more indications of identity; means for inspecting a second set of signal packets received from the internet connection and intended for the at least one of the one or more devices based, at least in part, on a set of security policies; and in response to the inspection of the second of signal packets sent via the internet connection and the set of security policies; means for blocking the second set of signal packets, based at least in part, on the set of security policies the second set of signal packets;
ormeans for filtering, modifying, or a combination thereof, one or more of the second set of signal packets to form a modified second set of signal packets for transmission to the at least one of the one or more devices. - View Dependent Claims (9, 10, 11, 12)
-
-
13. A method for providing a security barrier between a communication network and an internet connection, the method comprising:
-
detecting, at one or more processors of a security device, one or more indications of identity of one or more devices of the communication network; receiving, via a transceiver of the security device, a first set of signal packets from at least one of the one or more devices of the communication network; inspecting, at the one or more processors, the first set of signal packets based, at least in part, on a set of security policies; responsive to the inspection of the first set of signal packets, blocking, based at least in part, on the set of security policies the first set of signal packets, or filtering, modifying, or a combination thereof, at least one of the first set of signal packets based, at least in part, on the set of security policies, to form a modified first set of signal packets; responsive to formation of the modified first set of signal packets, initiate transmission of the modified first set of signal packets via the transceiver, the transmission of the modified first set of signal packets comprising emulating the at least one of the one or more devices based, at least in part, on the one or more indications of identity; inspecting, at the one or more processors, a second set of signal packets received from the internet connection and intended for the at least one of the one or more devices, the inspection of the second set of signal packets being based, at least in part, on the set of security policies; responsive to the inspection of the second set of signal packets, blocking, based, at least in part, on the set of security policies the second set of signal packets, or filtering, modifying, or a combination thereof, at least one of the second set of signal packets based, at least in part, on the set of security policies to form a modified second set of signal packets for transmission to the at least one of the one or more devices. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20)
-
Specification