INTRUSION DETECTION SYSTEM/INTRUSION PREVENTION SYSTEM WITH ENHANCED PERFORMANCE

INTRUSION DETECTION SYSTEM/INTRUSION PREVENTION SYSTEM WITH ENHANCED PERFORMANCE

A traffic inspection and filtering system (100) monitors traffic across a protected interface. In the case of monitoring incoming traffic, the incoming packets (102) are directed via a mandatory path (104) to a packet capture process (106) associated with a kernel (110) of an operating system. The p...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: BROWN JAMES, DOCTOR BRAD
Format: Patent
Sprache:eng
Schlagworte:
CALCULATING
COMPUTING
COUNTING
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRIC DIGITAL DATA PROCESSING
ELECTRICITY
PHYSICS
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:A traffic inspection and filtering system (100) monitors traffic across a protected interface. In the case of monitoring incoming traffic, the incoming packets (102) are directed via a mandatory path (104) to a packet capture process (106) associated with a kernel (110) of an operating system. The packets are then stored in shared memory (112) of the kernel (112) for access by a user space application (108) that makes a filtering decision without requiring copying of the packet to user space and back.