发明名称 |
Method and apparatus for security engine management in network nodes |
摘要 |
In a security engine management apparatus in network nodes, a security instruction and library subsystem processes every application program and utility. A policy decision subsystem determines a filtering policy, an intrusion detection policy and an access control policy. An authentication and access control subsystem blocks an unauthorized user to access to a system and allows an authorized user to access thereto according to the access control policy. A policy application subsystem applies the policies. A packet filtering subsystem receives an allowed packet and denies a disallowed packet according to the filtering policy. An intrusion analysis and audit trail subsystem analyzes the intrusion according to the intrusion detection policy. A security management subsystem manages a security engine. |
申请公布号 |
US2005071650(A1) |
申请公布日期 |
2005.03.31 |
申请号 |
US20030743460 |
申请日期 |
2003.12.23 |
申请人 |
JO SU HYUNG;KIM JEONG NYEO;SOHN SUNG WON |
发明人 |
JO SU HYUNG;KIM JEONG NYEO;SOHN SUNG WON |
分类号 |
G06F15/00;G06F21/00;H04L9/32;H04L29/06;(IPC1-7):H04L9/32 |
主分类号 |
G06F15/00 |
代理机构 |
|
代理人 |
|
主权项 |
|
地址 |
|