Self modifying state graphs for quality of service classification
First Claim
1. A method for dynamically modifying a stateful inspection of FTP classified data being transmitted over a network, said method comprising the steps of:
- a) dynamically inspecting said data to determine state information for said data; and
b) modifying a state graph used in performing said stateful inspection of said data based upon said state information determined in step a) for said data; and
c) utilizing said modified state graph to perform continued stateful inspection by means of an intermediate device of said data.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and intermediate device for dynamically modifying a stateful inspection of data. In one embodiment, the present invention is comprised of an intermediate device such as, for example, a router. The intermediate device is adapted to perform a stateful inspection of data passing therethrough. In one approach, the intermediate device performs the stateful inspection by inspecting the data to determine state information for the data. Next, the intermediate device modifies a state graph used to perform the stateful inspection of the data based upon the state information found during the aforementioned inspection. The intermediate device then utilizes the modified state graph to perform continued stateful inspection of the data. In so doing, the present invention enables an enhanced use of Quality of Service (QoS) classification based upon the high level application of the data. The present invention further provides a classification engine which can readily be adapted to new protocols.
18 Citations
20 Claims
-
1. A method for dynamically modifying a stateful inspection of FTP classified data being transmitted over a network, said method comprising the steps of:
-
a) dynamically inspecting said data to determine state information for said data; and
b) modifying a state graph used in performing said stateful inspection of said data based upon said state information determined in step a) for said data; and
c) utilizing said modified state graph to perform continued stateful inspection by means of an intermediate device of said data. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. An intermediate device adapted to perform a stateful inspection of FTP classified data passing therethrough, said intermediate device further adapted to perform a method of dynamically modifying said stateful inspection of said data which passes through said intermediate device, said method comprising the steps of:
-
a) dynamically inspecting said data to determine state information for said data; and
b) modifying a state graph used in performing said stateful inspection of said data based upon said state information determined in step a) for said data; and
c) utilizing said modified state graph to perform continued stateful inspection by means of said intermediate device of said data. - View Dependent Claims (8, 9, 10, 11, 12, 13)
-
-
14. A computer readable medium adapted to be coupled to an intermediate device, said computer readable medium have computer readable code stored thereon for causing said intermediate device to perform a stateful inspection of FTP classified data passing therethrough, said computer readable code stored on said computer readable media further adapted to cause said intermediate device to perform a method of dynamically modifying said stateful inspection of said FTP classified data which passes through said intermediate device, said method comprising the steps of:
-
a) dynamically inspecting said data to determine state information for said data; and
b) modifying a state graph used in performing said stateful inspection of said data based upon said state information determined in step a) for said data; and
c) utilizing said modified state graph to perform continued stateful inspection by means of said intermediate device of said data. - View Dependent Claims (15, 16, 17, 18, 19, 20)
-
Specification