Firewall control via remote system information
First Claim
1. A method for controlling a firewall for a user computer system, said method comprising:
- one or more processors of the user computer system receiving a control request to control a program of the user computer system by the firewall, said control request comprising a condition pertaining to at least one process of a remote computer system, said at least one process configured to be executed on the remote computer system, said firewall configured to protect the user computer system from external threats, said condition pertaining to the at least one process comprising a condition of the at least one process utilizing less than a specified percentage of CPU resources of the remote computer system;
said one or more processors storing a remote system condition associated with the program of the user computer system, said remote system condition comprising the condition pertaining to the at least one process;
said one or more processors receiving a data request for a transmission of data from or to the program of the user computer system to or from the remote computer system, respectively;
in response to said receiving the data request, said one or more processors requesting, from the remote computer system, information indicating a current state of the at least one process of the remote computer system;
said one or more processors ascertaining whether the remote system condition is satisfied based on a comparison of the information indicating the current state of the at least one process with the condition pertaining to the at least one process; and
said one or more processors directing the firewall to allow or block the transmission of data if said ascertaining ascertains that the remote system condition is satisfied or not satisfied, respectively.
1 Assignment
0 Petitions
Accused Products
Abstract
Generally speaking, systems, methods and media for implementing a firewall control system responsive to remote system information are disclosed. Embodiments of a method may include receiving a data request at a firewall where the data request is associated with a program and determining whether a remote system condition exists for the associated program, where the remote system condition includes a condition to be satisfied based on information received from a particular remote system. Embodiments may also include, in response to determining that a remote system condition exists, determining whether the remote system condition is satisfied based on information received from the particular remote system. Embodiments may also include, in response to determining whether the remote system condition is satisfied, performing one or more firewall actions.
37 Citations
12 Claims
-
1. A method for controlling a firewall for a user computer system, said method comprising:
-
one or more processors of the user computer system receiving a control request to control a program of the user computer system by the firewall, said control request comprising a condition pertaining to at least one process of a remote computer system, said at least one process configured to be executed on the remote computer system, said firewall configured to protect the user computer system from external threats, said condition pertaining to the at least one process comprising a condition of the at least one process utilizing less than a specified percentage of CPU resources of the remote computer system; said one or more processors storing a remote system condition associated with the program of the user computer system, said remote system condition comprising the condition pertaining to the at least one process; said one or more processors receiving a data request for a transmission of data from or to the program of the user computer system to or from the remote computer system, respectively; in response to said receiving the data request, said one or more processors requesting, from the remote computer system, information indicating a current state of the at least one process of the remote computer system; said one or more processors ascertaining whether the remote system condition is satisfied based on a comparison of the information indicating the current state of the at least one process with the condition pertaining to the at least one process; and said one or more processors directing the firewall to allow or block the transmission of data if said ascertaining ascertains that the remote system condition is satisfied or not satisfied, respectively. - View Dependent Claims (2, 3, 4)
-
-
5. A computer program product, comprising one or more computer-readable tangible storage devices and computer-readable program instructions which are stored on the one or more storage devices and are configured to be executed by one or more processors of a user computer system to perform a method for controlling a firewall for the user computer system, said method comprising:
-
said one or more processors of the user computer system receiving a control request to control a program of the user computer system by the firewall, said control request comprising a condition pertaining to at least one process of a remote computer system, said at least one process configured to be executed on the remote computer system, said firewall configured to protect the user computer system from external threats, said condition pertaining to the at least one process comprising a condition of the at least one process utilizing less than a specified percentage of CPU resources of the remote computer system; said one or more processors storing a remote system condition associated with the program of the user computer system, said remote system condition comprising the condition pertaining to the at least one process; said one or more processors receiving a data request for a transmission of data from or to the program of the user computer system to or from the remote computer system, respectively; in response to said receiving the data request, said one or more processors requesting, from the remote computer system, information indicating a current state of the at least one process of the remote computer system; said one or more processors ascertaining whether the remote system condition is satisfied based on a comparison of the information indicating the current state of the at least one process with the condition pertaining to the at least one process; and said one or more processors directing the firewall to allow or block the transmission of data if said ascertaining ascertains that the remote system condition is satisfied or not satisfied, respectively. - View Dependent Claims (6, 7, 8)
-
-
9. A user computer system, comprising one or more processors, one or more computer-readable memories, one or more computer-readable tangible storage devices, and program instructions which are stored on the one or more storage devices for execution by the one or more processors via the one or more memories to perform a method for controlling a firewall for the user computer system, said method comprising:
-
said one or more processors of the user computer system receiving a control request to control a program of the user computer system by the firewall, said control request comprising a condition pertaining to at least one process of a remote computer system, said at least one process configured to be executed on the remote computer system, said firewall configured to protect the user computer system from external threats, said condition pertaining to the at least one process comprising a condition of the at least one process utilizing less than a specified percentage of CPU resources of the remote computer system; said one or more processors storing a remote system condition associated with the program of the user computer system, said remote system condition comprising the condition pertaining to the at least one process; said one or more processors receiving a data request for a transmission of data from or to the program of the user computer system to or from the remote computer system, respectively; in response to said receiving the data request, said one or more processors requesting, from the remote computer system, information indicating a current state of the at least one process of the remote computer system; said one or more processors ascertaining whether the remote system condition is satisfied based on a comparison of the information indicating the current state of the at least one process with the condition pertaining to the at least one process; and said one or more processors directing the firewall to allow or block the transmission of data if said ascertaining ascertains that the remote system condition is satisfied or not satisfied, respectively. - View Dependent Claims (10, 11, 12)
-
Specification