Apparatus and method for performing dynamic security in internet protocol (IP) system
First Claim
1. An apparatus for performing dynamic security in an Internet Protocol (IP) system comprising at least one of a Network Address Translation (NAT) module and a firewall module, the apparatus comprising:
- a resource pool for storing information on resources related to IP services, and authentication information; and
a security module for receiving a request to use resources for the IP services, requesting address translation according to the corresponding resource information stored in the resource pool, or resource reservation for the address translation or operation of a firewall, and requesting interruption of the resource use when the use of the corresponding resources is terminated.
1 Assignment
0 Petitions
Accused Products
Abstract
An apparatus and method for performing dynamic security in an Internet Protocol (IP) system. The apparatus includes: a resource pool for storing information on resources related to IP services, and authentication information; and a security module for receiving a request to use resources for the IP services, requesting address translation according to the corresponding resource information stored in the resource pool, or resource reservation for the address translation or operation of a firewall, and requesting interruption of the resource use when the use of the corresponding resources is terminated.
30 Citations
19 Claims
-
1. An apparatus for performing dynamic security in an Internet Protocol (IP) system comprising at least one of a Network Address Translation (NAT) module and a firewall module, the apparatus comprising:
-
a resource pool for storing information on resources related to IP services, and authentication information; and a security module for receiving a request to use resources for the IP services, requesting address translation according to the corresponding resource information stored in the resource pool, or resource reservation for the address translation or operation of a firewall, and requesting interruption of the resource use when the use of the corresponding resources is terminated. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. An apparatus for performing dynamic security in an Internet Protocol (IP) system, comprising:
-
a Network Address Translation (NAT) database (DB) for matching a public IP address and port with a private IP address and port, and storing the matched result; a firewall database for storing information on whether or not to allow transmission of a packet accessing each resource; a resource pool for storing information on resources related to IP services, and authentication information; a security module for receiving a request to use resources for the IP services, requesting resource reservation for address translation or operation of a firewall according to the corresponding resource information stored in the resource pool, and requesting interruption of the resource use when the use of the corresponding resources is terminated; a Network Address Translation (NAT) module for receiving a request from the security module, and performing address translation on the requested resources according to the matched information stored in the Network Address Translation (NAT) database (DB); and a firewall module for receiving a request from the security module, and performing packet forwarding on the requested resources according to information stored in the firewall database. - View Dependent Claims (10, 11, 12)
-
-
13. A method for performing dynamic security in an Internet Protocol (IP) system, the method comprising steps of:
-
generating a resource pool storing information on resources related to IP services, and authentication information; requesting resource use for operation of Network Address Translation (NAT) or a firewall according to resource information stored in the resource pool with respect to an externally received request for the IP services; and requesting interruption of the resources when the IP services are terminated. - View Dependent Claims (14, 15, 16, 17, 18)
-
-
19. A method for performing dynamic security in an Internet Protocol (IP) system, the method comprising steps of:
-
generating a resource pool storing information on resources related to IP services, and authentication information; requesting to use resources for operation of Network Address Translation (NAT) or a firewall according to resource information stored in the resource pool in response to an externally received request for the IP services; receiving the request for resource use, and performing address translation on the requested resource according to the address translation matching information; receiving the request for resource use, and performing packet forwarding on the requested resource according to the firewall information; and requesting interruption of the resource when the IP services are terminated.
-
Specification