Trust based application filtering
First Claim
Patent Images
1. A method, comprising:
- determining a trust level for a connection established between a communication device and an enterprise server;
caching, at a socket layer module, the trust level for the connection;
receiving, at the socket layer module, a packet, the packet being received over the connection; and
tagging, by the socket layer module, the packet with the cached trust level for the connection.
20 Assignments
0 Petitions
Accused Products
Abstract
Methods, devices, and systems are provided for filtering packets and other communication messages or portions thereof. Particularly, mechanisms are provided for efficiently determining and applying a set of trust-based filtering rules. Trust scores may be assigned to various connections and packets received on a particular connection may have filtering rules applied thereto in accordance with the trust score of the connection.
16 Citations
22 Claims
-
1. A method, comprising:
-
determining a trust level for a connection established between a communication device and an enterprise server; caching, at a socket layer module, the trust level for the connection; receiving, at the socket layer module, a packet, the packet being received over the connection; and tagging, by the socket layer module, the packet with the cached trust level for the connection. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 11, 12)
-
-
9. A method, comprising:
-
determining a trust level for a connection established between a communication device and an enterprise server; caching, at a socket layer module, the trust level for the connection; receiving, at the socket layer module, a packet, the packet being received over the connection; tagging, by the socket layer module, the packet with the cached trust level for the connection; passing the tagged packet to a packet filtering module; receiving the tagged packet at the packet filtering module; analyzing, by the packet filtering module, the tag of the received packet; identifying, based on the tag of the packet, a trust-based filtering policy to be applied to the packet; and applying the identified trust-based filtering policy to the packet. - View Dependent Claims (10)
-
-
13. A server, comprising:
-
a sessions table comprising a mapping of connections established at the server to trust levels associated with each connection; a socket layer module adapted to retrieve a trust level for a connection and further adapted to tag a packet received over the connection with the trust level of the connection; and a filtering module adapted to apply trust-based filtering rules to the packet based on trust-level information contained in the tag of the packet. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20)
-
-
21. A server, comprising:
-
a sessions table comprising a mapping of connections established at the server to trust levels associated with each connection; a socket layer module adapted to retrieve a trust level for a connection and further adapted to tag a packet received over the connection with the trust level of the connection; a filtering module adapted to apply trust-based filtering rules to the packet based on trust-level information contained in the tag of the packet, wherein the sessions table is adapted to be dynamically changed after the connection has been established and before the connection has been terminated, wherein a change to the sessions table results in a change to a trust level of the connection and wherein the change to the trust level of the connection results in packets received prior to the change being assigned a first trust level and packets received after the change being assigned a second trust level different from the first trust level.
-
-
22. A computer program product comprising computer executable instructions stored onto a non-transitory computer readable medium which, when executed by a processor of a computer, cause the processor to execute a method, the method comprising:
-
determining a trust level for a connection established at an enterprise server; receiving a packet over the connection; tagging the packet with the trust level for the connection; and forwarding the tagged packet to a filtering module for filtering in accordance with the trust level of the connection.
-
Specification