| 发明名称 | Hardware based detection devices for detecting network traffic content and methods of using the same | ||
| 摘要 | A device for detecting network traffic content is provided. The device includes a first input port configured to receive one or more signatures, each of the one or more signatures associated with content desired to be detected, a second input port configured to receive data associated with network traffic content. The device also includes a processor configured to process the one or more signatures and the data to determine whether the network traffic content matches the content desired to be detected, and an output port configured to couple the device to a computer system of an intended recipient of the network traffic content. The output port passes the network traffic content to the computer system when it is determined that the network traffic content does not match the content desired to be detected. | ||
| 申请公布号 | US8788650(B1) | 申请公布日期 | 2014.07.22 |
| 申请号 | US200310624914 | 申请日期 | 2003.07.21 |
| 申请人 | Fortinet, Inc. | 发明人 | Xie Michael |
| 分类号 | G06F15/173 | 主分类号 | G06F15/173 |
| 代理机构 | Schwegman Lundberg & Woessner, P.A. | 代理人 | Schwegman Lundberg & Woessner, P.A. |
| 主权项 | 1. A device for detecting network traffic content, the device comprising: a housing, and a first network input port and a second network input port associated with the housing and a transmitter connected to the first network input port, wherein the first network input port is configured and dedicated to receiving via the transmitter connected to the first network input port one or more signatures, each of the one or more signatures is encoded in a first language and associated with content desired to be detected, andwherein the second network input port is configured and dedicated to receiving data associated with network traffic content; a compiler for compiling the one or more signatures from the first language into a byte stream that controls the logic of a processor to determine whether network traffic content matches content desired to be detected based on the compiled one or more signatures; the processor located within the housing, the processor configured to process the compiled one or more signatures and the data to determine whether the network traffic content matches the content desired to be detected, wherein at least one of the compiled one or more signatures is a compiled byte stream of a codification using one or more predicates which prescribe one or more functions to be executed by the processor to detect the network traffic content; a network output port configured to couple the device to a computer system of an intended recipient of the network traffic content, the network output port dedicated to passing the network traffic content to the computer system when it is determined that the network traffic content does not match the content desired to be detected; and wherein the first network input port, the second network input port, and the network output port are each distinct network ports. | ||
| 地址 | Sunnyvale CA US | ||