发明名称 |
NETWORK SERVICE SECURITY |
摘要 |
<p>A system for use in a network that includes a plurality of clients and a plurality of servers configured to implement service applications includes at least one interface configured to communicate with the clients and the servers, a memory that contains computer-readable and computer-executable instructions and an access control list with sets of associated client identification and destination service identification, and a processor coupled to the at least one interface and to the memory and configured to read the instructions, the instructions being configured to cause the processor to: analyze an incoming service-access request, received by the at least one interface, for source identification associated with a source of the service-access request and destination service identification associated with an intended destination of the serveraccess request, the source identification comprising at least one of network source address and a source port number, and the destination service identification comprising at least one of a destination service address and a destination port number; and determine whether indicia of the source identification and of the destination service identification from the service-access request is included in the access control list in a manner that indicates that the source of the service-access request is authorized for access to a service associated with the destination service identification.</p> |
申请公布号 |
WO2004086726(A1) |
申请公布日期 |
2004.10.07 |
申请号 |
WO2004US08975 |
申请日期 |
2004.03.24 |
申请人 |
SAVANTIS SYSTEMS, INC.;DAR, SHAUL;KANTER, BOAZ;SHOCHAT, EDEN |
发明人 |
DAR, SHAUL;KANTER, BOAZ;SHOCHAT, EDEN |
分类号 |
H04L29/06;(IPC1-7):H04L29/06 |
主分类号 |
H04L29/06 |
代理机构 |
|
代理人 |
|
主权项 |
|
地址 |
|