| 发明名称 | Locked down network interface | ||
| 摘要 | A logic device and method are provided for intercepting a data flow from a network source to a network destination. A data store holds a set of compliance rules and corresponding actions wherein at least one of the set of compliance rules is a temporary compliance rule valid for a predetermined period. A packet inspector is configured to inspect the intercepted data flow and identify from the data store a temporary compliance rule associated with the inspected data flow. A packet filter is configured to when the data flow is identified as being associated with the temporary compliance rule, carry out an action with respect to the data flow corresponding to the temporary compliance rule while the temporary compliance rule is valid. | ||
| 申请公布号 | US9426124(B2) | 申请公布日期 | 2016.08.23 |
| 申请号 | US201414248082 | 申请日期 | 2014.04.08 |
| 申请人 | SOLARFLARE COMMUNICATIONS, INC. | 发明人 | Pope Steve L.;Roberts Derek;Riddoch David J. |
| 分类号 | G06F21/62;H04L29/06 | 主分类号 | G06F21/62 |
| 代理机构 | Haynes Beffel & Wolfeld LLP | 代理人 | Haynes Beffel & Wolfeld LLP ;Wolfeld Warren S. |
| 主权项 | 1. A logic device for intercepting a data flow from a network source to a network destination, the logic device comprising: a data store holding a set of compliance rules and corresponding actions wherein at least one of the set of compliance rules is a temporary compliance rule valid for a predetermined period; a packet inspector configured to inspect the intercepted data flow and identify from the data store a temporary compliance rule associated with the inspected data flow, wherein the temporary compliance rule is generated in response to the inspected data flow being associated with a compliance rule with a corresponding action comprising the generation of said temporary compliance rule; and a packet filter configured to when the data flow is identified as being associated with the temporary compliance rule, carry out an action with respect to the data flow corresponding to the temporary compliance rule while the temporary compliance rule is valid, wherein said logic device is further configured to when the data flow is identified as being associated with the temporary compliance rule, inform a compliance rule controller of the generation of a temporary compliance rule, the compliance rule controller being configured to audit the data flow and determine whether the temporary compliance rule is to be made permanent. | ||
| 地址 | Irvine CA US | ||