Telephony security system

US 6,320,948 B1
Filed: 06/14/2000
Issued: 11/20/2001
Est. Priority Date: 12/11/1998
Status: Expired due to Term

First Claim

Patent Images

1. A telephony security system for controlling and logging incoming and outgoing calls between end-user stations within an enterprise at one or more of its locations and their respective circuits into a Public Switched Telephone Network (PSTN), said system comprising:

a database controlled by system administrators at one or more enterprise locations containing security rules including the action of permitting or denying an incoming or an outgoing call for each of the end-user stations, said security rules specifying actions to be taken based upon at least one designated attribute of the call on the line, wherein said at least one attribute is determined within the enterprise; and

a line sensor within the enterprise for periodically determining a call-type of the call, wherein said line sensor includes means for determining at least one attribute of each call present on the line and for performing actions on selected calls based upon said at least one attribute of the call, in accordance with said security rules and wherein the line sensor senses both incoming and outgoing calls and does not interrupt the calls unless specified in said security rules.

View all claims

5 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method of telephony security for controlling and logging access between an enterprise'"'"'s end-user stations and their respective circuits into the public switched telephone network (PSTN). A security policy, i.e., a set of security rules, are defined for each of the extensions, the rules specifying actions to be taken based upon at least one attribute of the call on the extension. Calls are detected and sensed on the extensions to determine attributes associated with each call. Actions are then performed on selected calls based upon their attributes in accordance with the security rules defined for those extensions.

158 Citations

103 Claims

1. A telephony security system for controlling and logging incoming and outgoing calls between end-user stations within an enterprise at one or more of its locations and their respective circuits into a Public Switched Telephone Network (PSTN), said system comprising:
- a database controlled by system administrators at one or more enterprise locations containing security rules including the action of permitting or denying an incoming or an outgoing call for each of the end-user stations, said security rules specifying actions to be taken based upon at least one designated attribute of the call on the line, wherein said at least one attribute is determined within the enterprise; and
  
  a line sensor within the enterprise for periodically determining a call-type of the call, wherein said line sensor includes means for determining at least one attribute of each call present on the line and for performing actions on selected calls based upon said at least one attribute of the call, in accordance with said security rules and wherein the line sensor senses both incoming and outgoing calls and does not interrupt the calls unless specified in said security rules.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The system of claim 1 wherein other attributes of calls sensed by the system include at least one from the group consisting of:
    - call type, call content, call date, call time, call duration (in seconds), line identification, inbound number, and outbound number dialed.
  - 3. The system of claim 1 wherein said security rules specify additional actions that include one or more of the following:
    - redirect the call, log the call, record the call content, monitor call content for keywords, generate a report, or provide an alert, whereby options for said alert may include one or more of the following;
      
      electronic mail notification, pager dialing, console messaging, or via a Simple Network Management Protocol (SNMP) trap.
  - 4. The system as defined in claim 3 wherein said generated report includes post event analysis or batch analysis.
  - 5. The system as defined in claim 3 wherein said action of content monitoring includes detecting keywords via speech recognition or demodulated data.
  - 6. The telephony security system as defined in claim 1 wherein said line sensor is programmed at the line sensor or programmed from a remote management station.

7. A method of telephony security for an enterprise for controlling and logging incoming and outgoing calls between end-user stations at one or more enterprise locations and their respective circuits into a Public Switched Telephone Network (PSTN), said method comprising the steps of:
- defining security rules by a system administrator at one or more enterprise locations for each of the end-user stations which include the action of permitting or denying an incoming or outgoing call, said rules specifying actions to be taken based upon at least one designated attribute of the call on the line and contained in a database;
  
  detecting and sensing calls on the line to determine at least one attribute of each call present on the line, wherein said at least one attribute of the call detected and sensed periodically by the system is whether the call-type is voice, fax, data (modem), and wherein said detecting and sensing occurs at one or more of the enterprise locations for both incoming and outgoing calls and does not interrupt the call unless specified in said security rules; and
  
  performing actions on selected calls based upon their the determined at least one attribute, in accordance with said security rules defined for those end-user stations.
- View Dependent Claims (8, 9, 10)
- - 8. The method of claim 7 wherein other sensed attributes of calls sensed by the system include one or more of:
    - call content, call date, call time, call duration (in seconds), line identification, inbound number, and outbound number dialed.
  - 9. The method of claim 7 wherein said security rules specify additional actions that include one or more of the following:
    - redirect the call, record the call content, monitor the call content for keywords, log the call, generate a report, or provide an alert.
  - 10. The method as defined in claim 9 wherein said additional action of monitoring the call content for keywords includes detecting keywords via speech recognition or demodulated data.

11. A telephony security system for controlling incoming and outgoing calls between a plurality of end-user stations in one or more enterprise locations and a plurality of respective circuits into a Public Switched Telephone Network (PSTN), said system comprising:
- a database controlled by system administrators at one or more enterprise locations containing security rules for the plurality of end-user stations which include the action of permitting or denying an incoming or an outgoing call, said security rules specifying actions to be taken based upon at least one attribute designated of a call on each of the lines, wherein said at least one attribute is determined within the enterprise;
  
  a line sensor within the enterprise for periodically determining a call-type of the call present on the line, wherein said line sensor includes determining at least one attribute of each call present on the line and wherein said line sensor does not interrupt the incoming and outgoing calls unless specified in said security rules; and
  
  means for performing actions on selected calls based upon the determined at least one attribute of the call, in accordance with said security rules, and wherein said actions are performed within the enterprise.
- View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23)
- - 12. The system of claim 11 wherein said line sensor includes the means for performing actions on selected calls.
  - 13. The system of claim 11 wherein other attributes of calls sensed by the system include at least one from the group consisting of:
    - call content, call date, call time, call duration (in seconds), line identification, inbound number, and outbound number dialed.
  - 14. The system of claim 11 further including a remote management station containing said database, said remote management station being utilized for downloading said database to said line sensor.
  - 15. The system of claim 11 wherein said security rules specify additional actions that include one or more of the following:
    - redirect the call, record the call content, monitor the call content for keywords, log the call, generate a report or provide an alert.
  - 16. The system as defined in claim 15 wherein said additional action of monitoring the call content for keywords includes detecting keywords via speech recognition or demodulated data.
  - 17. The system of claim 11 further including a remote log server utilized to log all attempted access to or from each of the lines and any actions taken on each of the lines.
  - 18. The system of claim 11 wherein the telephone security system exists on the enterprise side of a local telephony company'"'"'s central office.
  - 19. The system of claim 11 wherein said line sensor exists between the end-user station and a local telephony company'"'"'s central office.
  - 20. The system of claim 11 further including a private branch exchange (PBX) and wherein said line sensor exists between said PBX and a local telephony company'"'"'s central office.
  - 21. The system of claim 11 further including a private branch exchange (PBX) and wherein said line sensor exists between said PBX and the end-user station.
  - 22. The system of claim 11 whereby options for said alert may include one or more of the following:
    - electronic mail notification, pager dialing, console messaging, or via a Simple Network Management Protocol (SNMP) trap notification of a call.
  - 23. The telephony security system as defined in claim 11 wherein said line sensor is programmed at the line sensor or programmed from a remote management station.

24. A security apparatus for controlling and monitoring access to the telephony resources of an enterprise, said security apparatus comprising:
- a microprocessor controlled telephony access control device;
  
  said microprocessor controlled telephony access control device connected between a public switched telephone network and the end-user stations in an enterprise, said end-user stations including voice capability, fax capability, and data transfer capability;
  
  a set of security rules contained within said microprocessor controlled telephony access control device;
  
  means for periodically determining if an incoming call or an outgoing call is a voice, fax, or data transfer call contained within said microprocessor controlled telephony access control device and for determining at least one attribute of each call present on the line and wherein said access control device does not interrupt the incoming and outgoing calls unless specified in said security rules;
  
  means for applying said set of security rules based on the end-user station to which an incoming call is directed or from which an outgoing call has been initiated;
  
  means for denying incoming calls or denying outgoing calls based on whether said incoming or outgoing call is a voice, fax, or data transfer call and the extension to which said incoming call is directed or from which said outgoing call has been initiated.
- View Dependent Claims (25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38)
- - 25. The security apparatus as defined in claim 24 wherein said microprocessor controlled telephony access control device includes one or more functionalities selected from a group including:
    - call progress monitoring, caller identification, automatic number identification, digital line protocol reception, decoding, demodulation, speech recognition, pulse dial detection, tone detection, call interrupt circuitry, and access control logic.
  - 26. The security apparatus as defined in claim 24 further including a line sensor for providing input to said microprocessor controlled telephony access control device.
  - 27. The security apparatus as defined in claim 26 wherein said line sensor is programmed at the line sensor or programmed from a remote management station.
  - 28. The security apparatus as defined in claim 24 wherein said microprocessor controlled telephony access control device captures one or more call attributes selected from a group including:
    - line identification, inbound caller identification information, outbound number dialed, call type, keywords in call content, date of call, time of call, and duration of call.
  - 29. The security apparatus as defined in claim 24 wherein said security rules define one or more actions selected from a group including:
    - redirecting the call, recording the call, content monitoring the call content for keywords, reporting a call or batch of calls, logging a call, providing an alert.
  - 30. The security apparatus as defined in claim 29 wherein said microprocessor controlled telephony access control device is connected to a management station for consolidation, management, display, or printing of one or more of the following:
    - call logs, recorded content, or call-event record, or programming said security rules into said microprocessor controlled telephony access control device.
  - 31. The security apparatus as defined in claim 29 wherein said call log designates one or more of the following:
    - line, call number, call direction, call type, call content, date and time of call, call duration, call event description.
  - 32. The security apparatus as defined in claim 29 wherein said report includes post event analysis or batch analysis.
  - 33. The security apparatus as defined in claim 29 wherein content monitoring the call for keywords includes detecting keywords via speech recognition or demodulated data.
  - 34. The security apparatus as defined in claim 29 wherein said action of providing an alert includes one or more of the following:
    - email notification of a call, pager notification, console messaging notification, or a Simple Network Management Protocol (SNMP) trap notification of a call.
  - 35. The security apparatus as defined in claim 24 wherein one or more of said security rules are selected from a group including:
36. The security apparatus as defined in claim 35 wherein modem calls from non-designated sources are denied or reported on their first use.
37. The security apparatus as defined in claim 35 wherein said destination identified by a designated digital sequence is a Numbering Plan Area (NPA) code.
38. The security apparatus as defined in claim 24 further including a remote log server utilized to log all attempted access to or from each of the lines and any actions taken on each of the lines.

39. A method for controlling and monitoring access to the telephony resources of an enterprise at one or more of its locations through a public switched telephone network, said method comprising the steps of:
- connecting a microprocessor controlled telephony access control device between the publicly switched telephone network and the telephony lines in one or more enterprise locations, said telephony lines including voice, fax, and data transfer capabilities;
  
  including a database of security rules within said microprocessor controlled telephony access control device;
  
  periodically determining if an incoming call is a voice, fax, or a data transfer call and determining at least one attribute of the call present on the line and wherein said access control device does not interrupt the incoming and outgoing calls unless specified in said security rules;
  
  applying said security rules based on the extension to which an incoming call is directed or from which an outgoing call has been initiated;
  
  permitting or denying incoming calls based on whether said incoming call is a voice, fax, or data transfer call and the extension to which said incoming call is directed;
  
  or permitting or denying outgoing calls based on whether said outgoing call is a voice, fax, or data transfer call and the extension from which said outgoing call has been initiated.
- View Dependent Claims (40, 41, 42, 43, 44, 45, 46, 47, 48, 49)
- - 40. The method as defined in claim 39 further including the step of capturing one or more call attributes selected from a group including:
    - line identification, inbound caller identification information, outbound number dialed, keywords in call content, date of call, time of call, and duration of call.
  - 41. The method as defined in claim 39 wherein said security rules define one or more actions selected from a group including:
    - redirect the call, record the call content, monitor call content for keywords, log the call, generate a report of the call, or provide an alert.
  - 42. The method as defined in claim 41 further including connecting said microprocessor controlled telephony access control device to a management station for consolidation, management, display, or printing of one or more of the following:
    - call logs, recorded call content, call-event record, and programming said security rules into said microprocessor controlled telephony access control device.
  - 43. The method as defined in claim 41 wherein said call log designates one or more of the following:
    - line identification, call number, call direction, call type, call content, date and time of call, call-event description.
  - 44. The method as defined in claim 41 wherein said report includes post event analysis or batch analysis.
  - 45. The method as defined in claim 41 wherein said action of monitoring call content for keywords includes detecting keywords via speech recognition or demodulated data.
  - 46. The method as defined in claim 41 wherein said action of provide an alert includes providing email notification of a call, pager notification of a call, console messaging, or a Simple Network Management Protocol (SNMP) trap notification of a call.
  - 47. The method as defined in claim 39 wherein one or more of said security rules are selected from a group including:
48. The method as defined in claim 47 wherein modem calls from non-designated sources are denied or reported on their first use.
49. The method as defined in claim 47 wherein said destination identified by a designated digital sequence is a Numbering Plan Area (NPA) code.

50. A system for monitoring and logging access to the telephony resources of an enterprise at one or more of its locations, said system comprising:
- an access control device constructed and arranged to be connected in-line between a plurality of telephony end-user stations at one or more enterprise locations and the connections to a public switched telephone network;
  
  said plurality of telephony end-user stations including voice telephones, fax machines, and data transfer devices;
  
  said access control device including a set of rules to be applied to all incoming and outgoing calls passing through said access control device;
  
  said access control device further including means for periodically determining if an incoming call or an outgoing call is a voice, fax, or data transfer call;
  
  whereby said access control device will detect and analyze at least one predetermined attribute of each call present on the line and wherein said access control device does not interrupt the incoming and outgoing calls unless specified in said set of rules.
- View Dependent Claims (51, 52, 53, 54, 55, 56, 57, 58, 59, 60, 61, 62, 63)
- - 51. The system as defined in claim 50 further including a line sensor for providing input to said access control device.
  - 52. The system as defined in claim 51 wherein said line sensor is programmed at the line sensor or programmed from a remote management station.
  - 53. The system as defined in claim 50 wherein said access control device captures one or more call attributes selected from a group including:
    - call-type, line identification, inbound caller identification information, outbound number dialed, keywords via speech recognition or demodulated fax/modem data, date of call, time of call, and duration of call.
  - 54. The system as defined in claim 50 wherein said analysis of call attributes generates one or more actions selected from a group including reporting a call, redirecting a call, monitoring call content, recording call content, logging a call, providing e-mail notification of a call, and providing an alert.
  - 55. The system as defined in claim 54 wherein said access control device is connected to a management station for consolidation, management, display, or printing of call logs, recorded call content, or a call-event record, or programming said security rules into said access control device.
  - 56. The system as defined in claim 54 wherein said call log designates one or more of the following:
    - line identification, call number, call direction, call type, date and time of call, call description.
  - 57. The system as defined in claim 54 wherein said report includes post event analysis or batch analysis.
  - 58. The system as defined in claim 54 wherein said monitoring call content includes detecting keywords via speech recognition or demodulated data.
  - 59. The system as defined in claim 54 further including the action of providing an alert by:
    - email notification of a call, pager notification of a call, console message notification of a call, or a Simple Network Management Protocol (SNMP) trap notification of a call.
  - 60. The system as defined in claim 50 wherein one or more of said analysis rules are selected from a group including:
61. The system as defined in claim 60 wherein modem calls from non-designated sources are denied or reported on their first use.
62. The system as defined in claim 60 wherein said destination identified by a designated digital sequence is a Numbering Plan Area (NPA) code.
63. The system as defined in claim 50 further including a remote log server utilized to log all attempted access to or from each of the lines and any actions taken on each of the lines.

64. An enterprise telephony system connected to a Public Switched Telephone Network (PSTN) comprising:
- at least one private branch exchange (PBX) connected to the PSTN;
  
  a plurality of telephony end-user stations connected either to said at least one PBX or directly to the PSTN;
  
  said plurality of telephony end-user stations including voice telephones, fax machines, and data transfer devices;
  
  a security system for monitoring, controlling, and logging access to the telephony resources of an enterprise at one or more of its locations, said security system including;
  
  an access control device constructed and arranged to be connected in-line between said plurality of telephony end-user stations at one or more enterprise locations and said connections to said PSTN or said at least one PBX;
  
  said access control device including a set of security rules to be applied to all incoming and outgoing calls passing through said access control device;
  
  said access control device further including means for periodically determining if an incoming call or an outgoing call is a voice, fax or data transfer call and for determining at least one attribute of each call present on the line and wherein said access control device does not interrupt the incoming and outgoing calls unless specified in said security rule;
  
  whereby said access control device will either permit or deny all incoming calls or permit or deny all outgoing calls based on the extension to which said incoming call is directed or from which extension said outgoing call is initiated, a determination of said incoming or said outgoing call is a voice, fax, or data transfer call, and an application of said security rules to said incoming or said outgoing call.
- View Dependent Claims (65, 66, 67, 68, 69, 70, 71, 72, 73, 74, 75, 76, 77, 78, 79, 80)
- - 65. The enterprise telephony system as defined in claim 64 wherein said access control device is connected to the enterprise telephone system by a line sensor, said line sensor being placed between said PBX and the PSTN.
  - 66. The enterprise telephony system as defined in claim 65 wherein said line sensor is programmed at the line sensor or programmed from a remote management station.
  - 67. The enterprise telephony system as defined in claim 64 wherein said access control device is connected to the enterprise telephone system by a line sensor, said line sensor being placed between said PBX and said access control device.
  - 68. The enterprise telephony system as defined in claim 64 wherein said access control device is connected to the enterprise telephone system by a line sensor, said line sensor being placed between said PSTN and said access control device.
  - 69. The enterprise telephony system as defined in claim 64 wherein said access control device captures one or more call attributes selected from a group including:
    - end-user station identification, inbound caller identification information, outbound number dialed, keywords via speech recognition or demodulation fax/modem data, date of call, time of call, and duration of call.
  - 70. The enterprise telephony system as defined in claim 64 wherein said security rules define one or more actions selected from a group including:
    - monitoring call content, recording call content, redirecting a call, reporting a call, logging a call, providing e-mail notification of a call, and providing an alert.
  - 71. The enterprise telephony system as defined in claim 70 wherein said access control device is connected to a management station for consolidation, management, display, or printing of call logs, recorded call content or a call-event record, and programming said security rules into said access control device.
  - 72. The enterprise telephony system as defined in claim 70 wherein said call log designates one or more of the following:
    - line identification, call number, call content, call direction, call-type, date and time of call, call duration and call description.
  - 73. The enterprise telephony system as defined in claim 70 wherein said report includes post event or batch analysis.
  - 74. The enterprise telephony system as defined in claim 70 wherein said action of monitoring call content includes detecting keywords via speech recognition or demodulated data.
  - 75. The enterprise telephony system as defined in claim 70 further including the action of providing an alert by pager notification of a call, providing console message notification of a call, providing a Simple Network Management Protocol (SNMP) trap notification of a call.
  - 76. The enterprise telephony system as defined in claim 64 wherein one or more of said security rules are selected from a group including:
77. The enterprise telephony system as defined in claim 76 wherein modem calls from non-designated sources are denied or reported on their first use.
78. The enterprise telephony system as defined in claim 76 wherein said destination identified by a designated digital sequence is a Numbering Plan Area (NPA) code.
79. The enterprise telephony system as defined in claim 64 wherein said access control device is complemented with computer telephony integration to said PBX.
80. The enterprise telephony system as defined in claim 64 further including a remote log server utilized to log all attempted access to or from each of the lines and any actions taken on each of the lines.

81. A telephony system for controlling and logging incoming and outgoing calls between end-user stations within an enterprise at one or more of its locations and their respective circuits into a Public Switched Telephone Network (PSTN), said system comprising:
- a database controlled by system administrators at one or more enterprise locations containing security rules including the action of permitting or denying an incoming or an outgoing call for each of the end-user stations, said security rules specifying actions to be taken based upon at least one designated call attribute on the line, wherein said at least one call attribute is determined within the enterprise;
  
  a line sensor within the enterprise for periodically determining the call type and for determining at least one call attribute of each call present on the line and for performing actions on selected calls based upon said at least one call attribute in accordance with said security rules and wherein the line sensor senses both incoming and outgoing calls and does not interrupt the calls unless specified in said security rules.
- View Dependent Claims (82, 83)
- - 82. The telephony system as defined in claim 81 wherein said line sensor is programmed at the line sensor or programmed from a remote management station.
  - 83. The telephony system as defined in claim 81 wherein said line sensor captures said call attributes.

84. An enterprise telephony system including a plurality of telephony end-user stations, said plurality of telephony end-user stations including voice telephones, fax machines, and data transfer devices, said enterprise telephony system being connected to a Public Switch Telephone Network (PSTN) and comprising:
- a private branch exchange (PBX) connected to the PSTN;
  
  said PBX being connected to said plurality of telephony end-user stations;
  
  a security system for monitoring, controlling, and logging access to the plurality of telephony end-user stations of the enterprise at one or more of its locations, said security system including;
  
  an access control device constructed and arranged to be connected in-line between said plurality of telephony end-user stations at one or more enterprise locations, and said connections to the PSTN or said PBX;
  
  said access control device including set of security rules to be applied to all incoming and outgoing calls passing through said access control device;
  
  said access control device further including means for periodically determining if an incoming call or an outgoing call is a voice, fax, or data transfer call and for determining at least one attribute of each call present on the line and wherein said access control device does not interrupt the incoming and outgoing calls unless specified in said security rules;
  
  whereby said access control device will either permit or deny all incoming calls or permit or deny outgoing calls based on the extension to which said incoming call is directed or from which extension said outgoing call is initiated, a determination of said incoming or said outgoing call is a voice, fax, or data transfer call, and an application of said security rules to said incoming or said outgoing call.
- View Dependent Claims (85, 86, 87, 88, 89, 90, 91, 92, 93, 94, 95, 96)
- - 85. The enterprise telephony system as defined in claim 84 wherein said access control device is connected to the enterprise telephony system by a line sensor, said line sensor being placed between said PBX and the PSTN.
  - 86. The enterprise telephony system as defined in claim 84 wherein said access control device is connected to the enterprise telephony system by a line sensor, said line sensor being placed between said PBX and said access control device.
  - 87. The enterprise telephony system as defined in claim 84 wherein said access control device is connected to the enterprise telephony system by a line sensor, said line sensor being placed between said PSTN and said access control device.
  - 88. The enterprise telephony system as defined in claim 84 wherein said access control device captures one or more call attributes selected from a group including:
    - line identification, inbound caller identification information, outbound number dialed, keywords via speech recognition or demodulated data, fax/modem data, date of call, time of call, and duration of call.
  - 89. The enterprise telephony system as defined in claim 84 wherein said security rules define one or more actions selected from a group including:
    - monitoring call content, recording call content, redirecting a call, reporting a call, logging a call, and providing an alert.
  - 90. The enterprise telephony system as defined in claim 89 wherein said action of providing an alert includes providing pager notification of a call, providing console message notification of a call, providing a Simple Network Management Protocol trap notification of a call.
  - 91. The enterprise telephony system as defined in claim 89 wherein said access control device is connected to a management station for consolidation, management, display, or printing of call logs, recorded call content or a call event record, or programming said security rules into said access control device.
  - 92. The enterprise telephony system as defined in claim 89 wherein said call log designates one or more of the following:
    - line identification, call number, call content, call direction, call-type, date and time of call, call duration, and call description.
  - 93. The enterprise telephony system as defined in claim 89 wherein said report includes post event or batch analysis.
  - 94. The enterprise telephony system as defined in claim 84 wherein one or more of said security rules are selected from a group including:
95. The enterprise telephony system as defined in claim 94 wherein said destination identified by a designated digital sequence is a Numbering Plan Area code.
96. The enterprise telephony system as defined in claim 84 wherein said access control device is complemented with computer telephony integration to said PBX.

97. A security breach alert system located in the connections between the end-user stations and the PBX of an enterprise or between the PBX of an enterprise and a Public Switched Telephone Network, to enable said security breach alert system to monitor both incoming and outgoing telecommunications directed to or originating from an enterprise, said security breach alert system comprising:
- an access control device located in the connections between the end-user stations and the PBX of an enterprise or between the PBX of the enterprise and the Public Switched Telephone Network;
  
  said access control device including a set of security rules defining one or more actions to be applied to the incoming and outgoing calls passing through said access control device wherein said one or more actions are based on the one or more designated attributes of the incoming and outgoing calls passing through said access control device;
  
  a computer telephony integration device, said computer telephony integration device being constructed and arranged for connection between said access control device and the PBX of the enterprise;
  
  whereby said one or more actions to be applied to said incoming and outgoing calls according to said set of security rules originate with said access control device and are passed to said computer telephony integration device for execution at the PBX of the enterprise;
  
  wherein said access control device includes means for periodically determining if an incoming call or an outgoing call is a voice, fax, or data transfer call and for determining at least one attribute of each call present on the line and wherein said access control device does not interrupt the incoming and outgoing calls unless specified in said security rules.
- View Dependent Claims (98, 99, 100, 101, 102, 103)
- - 98. The system as defined in claim 97 wherein said one or more actions are selected from a group including:
    - allowing a call, denying a call, reporting a call, redirecting a call, monitoring call content, recording call content, logging a call, and providing an alert.
  - 99. The system as defined in claim 97 wherein said one or more attributes are selected from a group including:
    - call-type, station extension identification, inbound caller identification, outbound number dialed, keywords in call content, date of call, time of call, and duration of call.
  - 100. The system as defined in claim 97 wherein said access control device is connected to a management station located nearby or at a very remote distance therefrom within the enterprise for consolidation, management, display or printing of call logs, recorded call content or reports, and programming said security rules into said access control device.
  - 101. The system as defined in claim 97 wherein one or more of said security rules are selected from a group including:
102. The system as defined in claim 97 wherein said security rules are programmed into said access control device at said access control device or from the management station located nearby or at a very remote distance therefrom within the enterprise.
103. The system as defined in claim 97 whereby said one or more attributes of said incoming and outgoing calls originate from said PBX and are passed from said computer telephony integration device to said access control device for selecting said one or more actions to be applied to said incoming and outgoing calls according to said set of security rules.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
SecureLogix Corporation
Original Assignee
SecureLogix Corporation
Inventors
Beebe, Todd, Heilmann, Craig
Primary Examiner(s)
Hong, Harry S.
Assistant Examiner(s)
BUI, BING Q

Application Number

US09/593,888
Time in Patent Office

524 Days
Field of Search

379/88.17, 379/93.03, 379/93.09, 379/93.11, 379/196, 379/265, 379/268, 379/189, 379/145, 379/114.4
US Class Current

379/189
CPC Class Codes

H04L 63/0218   Distributed architectures, ...

H04L 63/0263   Rule management

H04L 63/1408   by monitoring network traff...

H04L 63/20   for managing network securi...

H04M 2203/2066   Call type detection of indi...

H04M 3/22   Arrangements for supervisio...

H04M 3/38   Graded-service arrangements...

H04M 3/42314   in private branch exchanges

H04M 3/436   Arrangements for screening ...

H04M 7/0078   Security; Fraud detection; ...

Telephony security system

First Claim

5 Assignments

0 Petitions

Accused Products

Abstract

158 Citations

103 Claims

Specification

Solutions

Use Cases

Quick Links

Telephony security system

First Claim

5 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

158 Citations

103 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links