Method and apparatus for semantic processing engine
원문보기
IPC분류정보
국가/구분
United States(US) Patent
등록
국제특허분류(IPC7판)
G06F-007/00
G06F-015/16
G06F-017/27
G06F-017/28
출원번호
UP-0753846
(2004-01-07)
등록번호
US-7548848
(2009-07-01)
발명자
/ 주소
Deb, Alak
Chatterjee, Debashis
출원인 / 주소
Xambala, Inc.
대리인 / 주소
Martine, Penilla & Gencarella, LLP
인용정보
피인용 횟수 :
22인용 특허 :
6
초록▼
A method for evaluating contents of a message is provided. The method initiates with characterizing a message segment. Then, the message is scanned to define tokens associated with the message segment. Next, the tokens are parsed to define substructures. Then, the rules associated with the tokens
A method for evaluating contents of a message is provided. The method initiates with characterizing a message segment. Then, the message is scanned to define tokens associated with the message segment. Next, the tokens are parsed to define substructures. Then, the rules associated with the tokens are determined, wherein the rules define actions. At the same time determining the session or meta session associated with the communication. Then, the actions associated with the message are executed. Next, the message is queued to be sent out. A method for providing content based security, a computer readable media, an adapter card and a network device configured to provide content based security and an intrusion protection system are provided.
대표청구항▼
What is claimed is: 1. A method for evaluating contents of a message, comprising: characterizing a message segment, wherein the message segment further comprises a packet in a packet-switched network; scanning the message segment to define a stream of tokens associated with the message segment; ass
What is claimed is: 1. A method for evaluating contents of a message, comprising: characterizing a message segment, wherein the message segment further comprises a packet in a packet-switched network; scanning the message segment to define a stream of tokens associated with the message segment; associating the message segment with a meta session through the stream of tokens, wherein the meta session is made persistent across message transactions and different HTTP sessions by storing data generated by the meta session on a persistent storage medium; parsing the token stream to extract substructures according to a grammar; determining rules associated with the tokens, the rules when executed defining actions for intrusion detection and prevention; executing the actions associated with the message segment; and queuing the message segment for transmission to a destination, wherein each of the operations in the method is executed by an integrated circuit. 2. The method of claim 1, further including: retrieving meta session state information related to the message, wherein the meta session state information is invariant across different connections and a service context common to the different connections associates the different HTTP sessions of a user. 3. The method of claim 1, wherein the message segment is received from a sender, the sender using a network to send a message associated with the message segment, and the message associated with the message segment is identified as a suspect message which is quarantined. 4. The method of claim 1, wherein the method operation of parsing the tokens to extract substructures includes, creating a parse tree. 5. The method of claim 1, wherein the method operation of determining rules associated with the tokens includes, defining an object oriented scheme to associate the message segment with at least one of the rules. 6. The method of claim 5, wherein the method operation of defining an object oriented scheme to associate the message segment with at least one of the rules is enabled through grammar based access. 7. The method of claim 1, wherein the method operation of parsing the tokens to extract substructures includes, searching a list of keywords; and inferring semantics of sub-strings between the key words. 8. The method of claim 1, wherein the message is composed of multiple segments. 9. The method of claim 8, wherein the substructures span multiple message segments. 10. A computer readable media having stored computer program instructions for evaluating the contents of a message, comprising computer program instructions for characterizing a message segment, wherein the message segment further comprises a packet in a packet-switched network; computer program instructions for scanning the message segment to define a stream of tokens associated with the message segment; computer program instructions for associating the message segment with a meta session through the stream of tokens, wherein the meta session is made persistent across message transactions and different HTTP sessions by storing data generated by the meta session on a persistent storage medium; computer program instructions for parsing the token stream to extract substructures according to a grammar; computer program instructions for determining rules associated with the tokens, the rules defining actions for intrusion detection and prevention; computer program instructions for executing the actions associated with the message segment; and computer program instructions for queuing the message segments for transmission, wherein the each of the computer program instructions in the computer readable media are executed by an integrated circuit. 11. The computer readable media of claim 10, further including: computer program instructions for retrieving meta session state information related to the message, wherein the meta session state information is invariant across different connections and a service context common to the different connections associates the different HTTP sessions of a user. 12. The computer readable media of claim 10, wherein the computer program instruction for characterizing a message segment includes, computer program instructions for determining a grammar type of the message. 13. The computer readable media of claim 10, wherein the computer program instructions for parsing the tokens to extract substructures includes, computer program instructions for creating a parse tree. 14. The computer readable media of claim 10, wherein the message is configured to be sent in multiple segments through a packet based network. 15. The computer readable media of claim 10, wherein the computer program instructions for parsing the tokens to extract substructures includes, computer program instructions for searching a list of keywords; and computer program instructions for inferring semantics of sub-strings between the key words. 16. A network device configured to provide content based security, comprising: circuitry for scanning a message segment to define a stream of tokens associated with the message segment, wherein the message segment further comprises a packet in a packet-switched network; circuitry for extracting substructures from the stream of tokens, according to a grammar; circuitry for associating the message with a meta session, wherein the meta session is made persistent across message transactions and different HTTP sessions by storing data generated by the meta session on a persistent storage medium; circuitry for identifying rules associated with the tokens, wherein the rules define actions for intrusion detection and prevention; and circuitry for executing the identified rules. 17. The network device of claim 16, wherein the circuitry for extracting substructures from the tokens includes, circuitry for retrieving meta session state information related to the message, wherein the meta session state information is invariant across different connections and a service context common to the different connections associates the different HTTP sessions of a user. 18. The network device of claim 16, wherein the circuitry for scanning a message to define tokens associated with the message includes, circuitry for searching a list of keywords; and circuitry for inferring semantics of sub-strings between the key words. 19. The network device of claim 16, further comprising: circuitry for determining a grammar type of the message. 20. The network device of claim 16, wherein the circuitry for scanning a message to define tokens associated with the message includes, circuitry for building a data structure from the defined tokens.
연구과제 타임라인
LOADING...
LOADING...
LOADING...
LOADING...
LOADING...
이 특허에 인용된 특허 (6)
Raz Uri, Information transfer systems and method with dynamic distribution of data, control and management of information.
Davis,Andrew T.; Parikh,Jay G.; Thirumalai,Srikanth; Weihl,William E.; Tsimelzon,Mark, Managing web tier session state objects in a content delivery network (CDN).
Keen, Jr., Thomas R.; Shen, Richard, System and method for processing securities trading instructions and communicating order status via a messaging interface.
Keen, Jr., Thomas R.; Shen, Richard, System and method for processing securities trading instructions and communicating order status via a messaging interface.
Keen, Thomas R.; Shen, Richard, System and method for processing securities trading instructions and communicating order status via a messaging interface.
※ AI-Helper는 부적절한 답변을 할 수 있습니다.