Method and apparatus for verifying the integrity of computer networks and implementation of counter measures

US 20020099958A1
Filed: 01/25/2001
Published: 07/25/2002
Est. Priority Date: 01/25/2001
Status: Active Grant

First Claim

Patent Images

1. ) A security system for a computer connected to a network of computers comprising:

at least one security subsystem associated with said computer, said subsystem configured to detect attacks on said computer;

and a secure link between said security subsystem and a master system enabling data communication therebetween;

wherein said master system monitors said security subsystem through said secure link and registers information pertaining to attacks detected by said security subsystem.

View all claims

5 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method and apparatus for verifying the integrity of devices on a target network having two components: a subsystem connected to the target network, and a master system, isolated therefrom by a secure link. The topological and hierarchical relationship of the of the devices to each other improves stability of the apparatus. Random testing of target network devices by the subsystem and random testing of the subsystem by the master system provide verification and independent self-checking.

60 Citations

View as Search Results

12 Claims

1. ) A security system for a computer connected to a network of computers comprising:
- at least one security subsystem associated with said computer, said subsystem configured to detect attacks on said computer;
  
  and a secure link between said security subsystem and a master system enabling data communication therebetween;
  
  wherein said master system monitors said security subsystem through said secure link and registers information pertaining to attacks detected by said security subsystem.
- View Dependent Claims (2, 3, 4)
- - 2. ) The security system of claim 1 further comprising a pseudo attack generator associated with said master system for generating attacks on said computer detectable by said security subsystem wherein said master system monitors said security subsystem by comparing said pseudo-attacks to said attacks detected by the security subsystem.
  - 3. ) The security system of claim 1 wherein said master system is hierarchically independent from said security subsystem.
  - 4. ) The security system of claim 1 wherein said security subsystem is hierarchically subordinate to said master system.

5. ) A network security system for a target network of computers comprising:
- at least one security subsystem associated with said target network, said subsystem configured to detect attacks on said network; and
  
  a secure link between said security subsystem and a master system enabling data communication therebetween;
  
  wherein said master system monitors said security subsystem through said secure link and registers information pertaining to the attacks detected by said security subsystem.
- View Dependent Claims (6, 7)
- - 6. ) The network security system of claim 5 wherein said master system is hierarchically independent from said security subsystem.
  - 7. ) The network security system of claim 5 wherein said security subsystem is hierarchically subordinate to said master system.

8. ) A network security system for a target network of computers comprising:
- at least one security subsystem associated with said target network and configured to detect and register attacks on said target network;
  
  a secure link for data communication between said security subsystem and said master system; and
  
  testing means associated with said master system for generating pseudo-attacks on said target network initiated by said master system and detectable by said security subsystem;
  
  wherein said master system monitors said security subsystem through said secure link by comparing the pseudo-attacks generated by said testing means to the detected attacks registered by said security subsystem.
- View Dependent Claims (9, 10)
- - 9. ) The network security system of claim 8 wherein said master system is hierarchically independent from said security subsystem.
  - 10. ) The network security system of claim 8 wherein said security subsystem is hierarchically subordinate to said master system.

11. ) A method for monitoring the integrity of a security subsystem associated with a target network of computers and configured to detect attacks on said network of computers comprising:
- establishing a secure link for the transfer of data between said security subsystem and a master system hierarchically independent from said security subsystem;
  
  monitoring the status of said security subsystem through said secure link; and
  
  registering information pertaining to the status of said security subsystem.
- View Dependent Claims (12)
- - 12. ) The method for monitoring the integrity of a security system of claim 11 including the steps of:
    - connecting said master system and said target network separately to an open network of computers;
      
      generating at least one pseudo-attack in said master system, said pseudo attack being detectable by said security subsystem;
      
      generating in said master system a list of expected responses to said at least one pseudo-attack;
      
      delivering said at least one pseudo-attack over said open network to said target network; and
      
      comparing the response of said security subsystem to said pseudo-attack to the list of expected responses thereto.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
NTT Security (US) Inc. (Nippon Telegraph and Telephone Corporation)
Original Assignee
Hercules Technology II LP (Hercules Capital)
Inventors
Hrabik, Michael, Guilfoyle, Jeffrey J., Beaver, Edward Mac

Granted Patent

US 7,168,093 B2
Time in Patent Office

Days
Field of Search
US Class Current

726/22
CPC Class Codes

H04L 63/1416   Event detection, e.g. attac...

H04L 63/1433   Vulnerability analysis

H04L 63/20   for managing network securi...

Method and apparatus for verifying the integrity of computer networks and implementation of counter measures

First Claim

5 Assignments

0 Petitions

Accused Products

Abstract

60 Citations

12 Claims

Specification

Solutions

Use Cases

Quick Links

Method and apparatus for verifying the integrity of computer networks and implementation of counter measures

First Claim

5 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

60 Citations

12 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links