| 发明名称 |
EVALUATING A QUESTIONABLE NETWORK COMMUNICATION |
| 摘要 |
Techniques for evaluating a questionable network communication are disclosed. In some implementations, an evaluation module determines whether a network communication is allowable based on one or more factors, including the listening port, a geographic location, time of day, or the like. In some cases, utilization of a listening port may be limited, such as by restricting the number of network connections that can be opened via the listening port. |
| 申请公布号 |
US2016248795(A1) |
申请公布日期 |
2016.08.25 |
| 申请号 |
US201615014906 |
申请日期 |
2016.02.03 |
| 申请人 |
Chien Daniel |
发明人 |
Chien Daniel |
| 分类号 |
H04L29/06;H04L29/08;H04L12/26;H04L29/12 |
主分类号 |
H04L29/06 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A method in a computing system for controlling communication, comprising:
in a computing system, evaluating a network communication that is transported at least in part by network packets each having a header section and a payload section, by:
receiving one or more indications of allowable communication properties;receiving an indication that a listening port has been opened on the computing system;receiving an indication that the network communication has been established via the listening port; anddetermining a first communication property that is associated with the network communication;determining a second communication property that is one of the one or more allowable communication properties;determining whether the network communication is allowable based on whether the first communication property is encompassed by the second communication property, including one or more of:
a property of a program that is using the listening port, including the identity of the program and/or whether the program is an interactive program, a batch program, or a system service;a first IP address and/or port associated with the network communication;a geographic location associated with the first IP address;a connection limit based on the first IP address or the geographic location, the first IP address being a source or destination IP address;a time of day; anda network interface that is associated with the network communication; andin response to determining that the network communication is not allowable, setting an indicator that the network communication is not allowed. |
| 地址 |
Seattle WA US |
