최소 단어 이상 선택하여야 합니다.
최대 10 단어까지만 선택 가능합니다.
다음과 같은 기능을 한번의 로그인으로 사용 할 수 있습니다.
NTIS 바로가기다음과 같은 기능을 한번의 로그인으로 사용 할 수 있습니다.
DataON 바로가기다음과 같은 기능을 한번의 로그인으로 사용 할 수 있습니다.
Edison 바로가기다음과 같은 기능을 한번의 로그인으로 사용 할 수 있습니다.
Kafe 바로가기국가/구분 | United States(US) Patent 등록 |
---|---|
국제특허분류(IPC7판) |
|
출원번호 | US-0328177 (1999-06-08) |
발명자 / 주소 |
|
출원인 / 주소 |
|
대리인 / 주소 |
|
인용정보 | 피인용 횟수 : 355 인용 특허 : 4 |
System and methodology providing automated or "proactive" network security ("active" firewall) are described. The system implements methodology for verifying or authenticating communications, especially between network security components thereby allowing those components to share information. In on
System and methodology providing automated or "proactive" network security ("active" firewall) are described. The system implements methodology for verifying or authenticating communications, especially between network security components thereby allowing those components to share information. In one embodiment, a system implementing an active firewall is provided which includes methodology for verifying or authenticating communications between network components (e.g., sensor(s), arbiter, and actor(s)), using cryptographic keys or digital certificates. Certificates may be used to digitally sign a message or file and, in a complementary manner, to verify a digital signature. At the outset, particular software components that may participate in authenticated communication are specified, including creating a digital certificate for each such software component. Upon detection by a sensor that an event of interest that has occurred in the computer network system, the system may initiate authenticated communication between the sensor component and a central arbiter (e.g., "event orchestrator") component, so that the sensor may report the event to the arbiter or "brain." Thereafter, the arbiter (if it chooses to act on that information) initiates authenticated communication between itself and a third software component, an "actor" component (e.g., "firewall"). The arbiter may indicate to the actor how it should handle the event. The actor or firewall, upon receiving the information, may now undertake appropriate action, such as dynamically creating or modifying rules for appropriately handling the event, or it may choose to simply ignore the information.
System and methodology providing automated or "proactive" network security ("active" firewall) are described. The system implements methodology for verifying or authenticating communications, especially between network security components thereby allowing those components to share information. In on
System and methodology providing automated or "proactive" network security ("active" firewall) are described. The system implements methodology for verifying or authenticating communications, especially between network security components thereby allowing those components to share information. In one embodiment, a system implementing an active firewall is provided which includes methodology for verifying or authenticating communications between network components (e.g., sensor(s), arbiter, and actor(s)), using cryptographic keys or digital certificates. Certificates may be used to digitally sign a message or file and, in a complementary manner, to verify a digital signature. At the outset, particular software components that may participate in authenticated communication are specified, including creating a digital certificate for each such software component. Upon detection by a sensor that an event of interest that has occurred in the computer network system, the system may initiate authenticated communication between the sensor component and a central arbiter (e.g., "event orchestrator") component, so that the sensor may report the event to the arbiter or "brain." Thereafter, the arbiter (if it chooses to act on that information) initiates authenticated communication between itself and a third software component, an "actor" component (e.g., "firewall"). The arbiter may indicate to the actor how it should handle the event. The actor or firewall, upon receiving the information, may now undertake appropriate action, such as dynamically creating or modifying rules for appropriately handling the event, or it may choose to simply ignore the information. 00, Yoshida; US-4855692, 19890800, Kennard et al.; US-4873701, 19891000, Tretter; US-4891806, 19900100, Farias et al.; US-4903125, 19900200, Parker; US-4937844, 19900600, Kao; US-4958360, 19900900, Sari; US-5038219, 19910800, Yamashita et al.; US-5050188, 19910900, Dirr; US-5086340, 19920200, Citta et al.; US-5087975, 19920200, Citta et al., 348/724; US-5105442, 19920400, Wei; US-5115453, 19920500, Calderbank et al.; US-5142353, 19920800, Kageyama et al.; US-5164963, 19921100, Lawrence et al., 375/039; US-5166924, 19921100, Moose; US-5168509, 19921200, Nakamura et al.; US-5197061, 19930300, Halbert-Lassalle et al.; US-5243629, 19930900, Wei; US-5267021, 19931100, Ramchandran et al.; US-5282019, 19940100, Basile et al.; US-5291289, 19940300, Hulyalkar et al.; US-5311547, 19940500, Wei; US-5311550, 19940500, Fouche et al.; US-5398073, 19950300, Wei; US-5452015, 19950900, Hulyalkar; US-5481412, 19960100, Bannai et al.; US-5555275, 19960900, Oshima; US-5565926, 19961000, Bryan et al., 348/426; US-5565932, 19961000, Gitta et al.; US-5600672, 19970200, Oshima et al., 375/219 nt information out of said memory means when said recording medium is brought close to said recording medium processing apparatus; and said method comprising the additional step of displaying said read event information as the maximum available record time. 6. The method according to claim 3, wherein a recording medium processing apparatus which records or reproduces events on said recording medium reads said event information out of said memory means when said recording medium is loaded to said recording medium processing apparatus; and said method comprising the additional step of displaying said read event information as the maximum available record time. 7. The method according to claim 3, wherein a recording medium processing apparatus which records or reproduces events on said recording medium reads said event information out of said memory means when said recording medium is loaded to said recording medium processing apparatus and a predetermined operation is carried out; and said method comprising the additional step of displaying said read event information as the maximum available record time. 8. The method according to claim 3, wherein said recording medium comprises a video tape and said memory means is provided on the video cassette which encloses said video tape. 9. The method according to claim 3, wherein said recording medium comprises a video tape and said memory means is formed inside the video cassette which encloses said video tape. 10. The method according to claim 3, wherein said recording medium comprises a magnetic disc and said memory means is formed on said disc. 11. The method according to claim 3, wherein when a new event is recorded over an event recorded on said recording medium, event information of said already recorded event is altered. 12. The method according to claim 11, wherein when said already recorded event is shortened below a predetermined time due to the overwriting, event information of said already recorded event is deleted from said memory means. 13. The method according to claim 7, wherein said predetermined operation is to commence the search of an event. 14. The method according to claim 5, wherein said recording medium processing apparatus has a standard recording mode and a long-time recording mode, and calculates and displays the maximum available record time depending on the selected mode. 15. The method according to claim 14, wherein said recording medium processing apparatus displays the selected mode together with the maximum available record time. 16. The method according to claim 5, wherein said recording medium processing apparatus displays the maximum available record time on the front display section. 17. The method according to claim 6, wherein said recording medium processing apparatus has a standard recording mode and a long-time recording mode, and calculates and displays the maximum available record time depending on the selected mode. 18. The method according to claim 17, wherein said recording medium processing apparatus displays the selected mode together with the maximum available record time. 19. The method according to claim 6, wherein said recording medium processing apparatus displays the event record positions and the blank sections in a bar graph fashion. 20. The method according to claim 19, wherein said recording medium processing apparatus displays the blank section corresponding to the maximum available record time in a fashion different from that of other blank sections. 21. The method according to claim 7, wherein said recording medium processing apparatus has a standard recording mode and a long-time recording mode, and calculates and displays the maximum available record time depending on the selected mode. 22. The method according to claim 21, wherein said recording medium processing apparatus displays the selected mode together with the maximum available record time. 23. The method according to claim 7, wherein said recording medium processin g apparatus displays the event record positions and the blank sections in a bar graph fashion. 24. The method according to claim 23, wherein said recording medium processing apparatus displays the blank section corresponding to the maximum available record time in a fashion different from that of other blank sections. 25. A recording medium processing apparatus for recording or reproducing events on a recording medium, comprising: control means for: calculating the lengths of a plurality of blank sections, including blank sections interspersed with recorded sections, if any, on said recording medium; comparing the calculated lengths to determine which section is the longest; and, determining a record time for the longest section; and display means for displaying the record time determined for the longest section as the maximum available continuous record time of the recording medium; whereby the display of the maximum available continuous record time enables a user to rapidly determine if the recording medium has enough continuous blank recording space anywhere on the recording medium to record a desired program of a known duration. 26. The apparatus according to claim 25, wherein said control means treats as blank sections the positions where no events are recorded and the positions where events that have been judged to be negligible are recorded. 27. The apparatus according to claim 26 comprising further communication means, said communication means communicating the event information inclusive of information on the record positions of events recorded on said recording medium with memory means which stores the event information; and wherein said control means determines the blank sections based on the event information read out of said memory means. 28. The apparatus according to claim 27, wherein said memory means is integrated on said recording medium or the casing enclosing said recording medium. 29. The apparatus according to claim 27, wherein when the event recorded on said recording medium is judged to be negligible, said apparatus deletes the event information of said event from said memory means. 30. The apparatus according to claim 27, wherein said communication means implements the communication in a non-conduct manner. 31. The apparatus according to claim 30, wherein said apparatus includes in the front interior thereof an antenna for the communication, said communication means communicating with said memory means when said recording medium is brought close to said antenna. 32. The apparatus according to claim 30 comprising further an antenna for the communication located in the interior of the insertion port for loading said recording medium; and wherein said communication means communicates with said memory means when said recording medium is put into said insertion port. 33. The apparatus according to claim 30 further comprising: a first antenna for the communication in the front interior thereof; and a second antenna for the communication inside the insertion port for loading said recording medium; wherein said communication means communicates with said memory means by using said first antenna when said recording medium is brought close to said first antenna; wherein said communication means communicates with said memory means by using said second antenna when said recording medium is put into said insertion port, with the communication by use of said first antenna being inhibited during the communication by use of said second antenna. 34. The apparatus according to claim 31 comprising further detection means for detecting the state of power supply to said apparatus; and wherein said apparatus turns on the power supply when said detection means detects that the power supply is turned off in the case that said recording medium is brought close to said antenna. 35. The apparatus according to claim 25 comprising further mode setting means for setting a recording mode of said record
Copyright KISTI. All Rights Reserved.
※ AI-Helper는 부적절한 답변을 할 수 있습니다.