Transparent network traffic inspection
First Claim
1. A network monitoring method, comprising:
- filtering network traffic as a function of a set of filter criteria stored in a filter criteria data store;
receiving, with a computer and from an inspection data requester and over a communication network, an inspection data request for requested inspection data stored in an inspection data store associated with at least one subscriber, the inspection data store being accessible via the communication network;
determining with the computer, whether the inspection data requester is authorized to access the requested inspection data; and
when the inspection data requester is authorized to access the requested inspection data, providing, by the computer, the inspection data requester with access to the requested inspection data over the communication network.
1 Assignment
0 Petitions
Accused Products
Abstract
Methods and systems are disclosed for providing parties with levels of transparency into filtering functionality of network traffic inspection implementations. Embodiments include receiving a filter change request from a subscriber over a network that defines a modification to a set of filter criteria for filtering network traffic, the filter criteria being stored in association with the subscriber in a filter criteria data store; updating the set of filter criteria in the filter criteria data store as a function of the filter change request; receiving a content dataset relating to the network traffic; identifying the content dataset as being associated with the subscriber; retrieving the set of filter criteria associated with the subscriber from the data store; and filtering the network traffic as a function of the set of filter criteria. Embodiments further provide layers of access for different entities to the filtered traffic.
-
Citations
20 Claims
-
1. A network monitoring method, comprising:
-
filtering network traffic as a function of a set of filter criteria stored in a filter criteria data store; receiving, with a computer and from an inspection data requester and over a communication network, an inspection data request for requested inspection data stored in an inspection data store associated with at least one subscriber, the inspection data store being accessible via the communication network; determining with the computer, whether the inspection data requester is authorized to access the requested inspection data; and when the inspection data requester is authorized to access the requested inspection data, providing, by the computer, the inspection data requester with access to the requested inspection data over the communication network. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A network monitoring system, comprising:
-
a filter module, in operative communication with a traffic inspection module and a filter criteria data store, that filters network traffic as a function of a set of filter criteria stored in the filter criteria data store; an extraction layer module, in operative communication with an inspection data store, that receives, from an inspection data requester and over a communication network, an inspection data request for requested inspection data stored in the inspection data store associated with at least one subscriber, the inspection data store being accessible via the communication network; and an access control module, in operative communication with the filter module and the extraction layer module, that determines whether the inspection data requester is authorized to access the requested inspection data, wherein, when the inspection data requester is authorized to access the requested inspection data, the extraction layer module provides the inspection data requester with access to the requested inspection data over the communication network. - View Dependent Claims (10, 11, 12, 13)
-
-
14. An apparatus, comprising a non-transitory computer-readable storage medium having a computer-readable program embodied therein for monitoring a network, the computer-readable program including a set of instructions that, when executed by a computer system, causes the computer system to perform one or more functions, the set of instructions comprising:
-
instructions to filter network traffic as a function of a set of filter criteria stored in a filter criteria data store; instructions to receive, from an inspection data requester and over a communication network, an inspection data request for requested inspection data stored in an inspection data store associated with at least one subscriber, the inspection data store being accessible via the communication network; instructions to determine whether the inspection data requester is authorized to access the requested inspection data; and instructions, when the inspection data requester is authorized to access the requested inspection data, to provide the inspection data requester with access to the requested inspection data over the communication network. - View Dependent Claims (15, 16, 17, 18, 19, 20)
-
Specification