WO2005046178A3 - Method and apparatus for providing network security using security labeling - Google Patents
Method and apparatus for providing network security using security labeling Download PDFInfo
- Publication number
- WO2005046178A3 WO2005046178A3 PCT/US2004/035853 US2004035853W WO2005046178A3 WO 2005046178 A3 WO2005046178 A3 WO 2005046178A3 US 2004035853 W US2004035853 W US 2004035853W WO 2005046178 A3 WO2005046178 A3 WO 2005046178A3
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- security
- labeling
- providing network
- level information
- security level
- Prior art date
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/102—Entity profiles
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/083—Network architectures or network communication protocols for network security for authentication of entities using passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/105—Multiple levels of security
Abstract
Priority Applications (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
EP04796670A EP1692840B1 (en) | 2003-10-29 | 2004-10-28 | Method and apparatus for providing network security using security labeling |
CN2004800293191A CN1864390B (en) | 2003-10-29 | 2004-10-28 | Method and apparatus for providing network security using security labeling |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US10/696,629 US7836490B2 (en) | 2003-10-29 | 2003-10-29 | Method and apparatus for providing network security using security labeling |
US10/696,629 | 2003-10-29 |
Publications (2)
Publication Number | Publication Date |
---|---|
WO2005046178A2 WO2005046178A2 (en) | 2005-05-19 |
WO2005046178A3 true WO2005046178A3 (en) | 2005-12-15 |
Family
ID=34550152
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/US2004/035853 WO2005046178A2 (en) | 2003-10-29 | 2004-10-28 | Method and apparatus for providing network security using security labeling |
Country Status (4)
Country | Link |
---|---|
US (2) | US7836490B2 (en) |
EP (1) | EP1692840B1 (en) |
CN (1) | CN1864390B (en) |
WO (1) | WO2005046178A2 (en) |
Families Citing this family (70)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US9928508B2 (en) | 2000-08-04 | 2018-03-27 | Intellectual Ventures I Llc | Single sign-on for access to a central data repository |
US8862866B2 (en) | 2003-07-07 | 2014-10-14 | Certicom Corp. | Method and apparatus for providing an adaptable security level in an electronic communication |
GB2406484B (en) | 2003-08-19 | 2007-01-31 | Certicom Corp | Method and apparatus for synchronizing an adaptable security level in an electronic communication |
US7530112B2 (en) | 2003-09-10 | 2009-05-05 | Cisco Technology, Inc. | Method and apparatus for providing network security using role-based access control |
WO2005032042A1 (en) | 2003-09-24 | 2005-04-07 | Infoexpress, Inc. | Systems and methods of controlling network access |
US7836490B2 (en) | 2003-10-29 | 2010-11-16 | Cisco Technology, Inc. | Method and apparatus for providing network security using security labeling |
US8146148B2 (en) * | 2003-11-19 | 2012-03-27 | Cisco Technology, Inc. | Tunneled security groups |
US7568047B1 (en) * | 2004-04-30 | 2009-07-28 | Nortel Networks Limited | Method and apparatus for adaptive service label management |
US8527752B2 (en) * | 2004-06-16 | 2013-09-03 | Dormarke Assets Limited Liability | Graduated authentication in an identity management system |
US7669244B2 (en) | 2004-10-21 | 2010-02-23 | Cisco Technology, Inc. | Method and system for generating user group permission lists |
US8060650B2 (en) * | 2004-10-27 | 2011-11-15 | Hewlett-Packard Development Company, L.P. | Diagnosing a path in a storage network |
US7877796B2 (en) | 2004-11-16 | 2011-01-25 | Cisco Technology, Inc. | Method and apparatus for best effort propagation of security group information |
US7886145B2 (en) * | 2004-11-23 | 2011-02-08 | Cisco Technology, Inc. | Method and system for including security information with a packet |
US7721323B2 (en) * | 2004-11-23 | 2010-05-18 | Cisco Technology, Inc. | Method and system for including network security information in a frame |
US7796614B1 (en) * | 2004-11-30 | 2010-09-14 | Symantec Corporation | Systems and methods for message proxying |
US7827402B2 (en) | 2004-12-01 | 2010-11-02 | Cisco Technology, Inc. | Method and apparatus for ingress filtering using security group information |
US7310669B2 (en) * | 2005-01-19 | 2007-12-18 | Lockdown Networks, Inc. | Network appliance for vulnerability assessment auditing over multiple networks |
US8520512B2 (en) | 2005-01-26 | 2013-08-27 | Mcafee, Inc. | Network appliance for customizable quarantining of a node on a network |
US20060164199A1 (en) * | 2005-01-26 | 2006-07-27 | Lockdown Networks, Inc. | Network appliance for securely quarantining a node on a network |
US7810138B2 (en) * | 2005-01-26 | 2010-10-05 | Mcafee, Inc. | Enabling dynamic authentication with different protocols on the same port for a switch |
US20070245413A1 (en) * | 2005-07-05 | 2007-10-18 | Viasat, Inc. | Trusted Cryptographic Switch |
CN100459579C (en) * | 2005-12-15 | 2009-02-04 | 华为技术有限公司 | Method for detecting superlong signaling message based text code |
US8161529B1 (en) * | 2006-03-02 | 2012-04-17 | Rockwell Collins, Inc. | High-assurance architecture for routing of information between networks of differing security level |
US8311045B2 (en) * | 2006-04-07 | 2012-11-13 | Cisco Technology, Inc. | System and method for selectively applying a service to a network packet using a preexisting packet header |
WO2007118307A1 (en) | 2006-04-13 | 2007-10-25 | Certicom Corp. | Method and apparatus for providing an adaptable security level in an electronic communication |
CN100428731C (en) * | 2006-06-02 | 2008-10-22 | 清华大学 | Method for preventing star-shape network from invading and attacking based on intelligent exchanger |
US8050560B2 (en) * | 2006-12-01 | 2011-11-01 | Electronics & Telecommunications Research Institute | Distributed resource sharing method using weighted sub-domain in GMPLS network |
US8156536B2 (en) * | 2006-12-01 | 2012-04-10 | Cisco Technology, Inc. | Establishing secure communication sessions in a communication network |
US8272042B2 (en) * | 2006-12-01 | 2012-09-18 | Verizon Patent And Licensing Inc. | System and method for automation of information or data classification for implementation of controls |
US7840708B2 (en) * | 2007-08-13 | 2010-11-23 | Cisco Technology, Inc. | Method and system for the assignment of security group information using a proxy |
US7979895B2 (en) * | 2007-08-16 | 2011-07-12 | International Business Machines Corporation | System and method for partitioning a multi-level security namespace |
US7954138B2 (en) * | 2007-08-16 | 2011-05-31 | International Business Machines Corporation | Method and system for multiplexing multiple level security server applications on the same internet address and port |
DE102009032465B4 (en) * | 2008-07-16 | 2016-10-13 | Infineon Technologies Ag | Security in networks |
US8688902B2 (en) * | 2008-08-06 | 2014-04-01 | Fujitsu Limited | Method and system for processing access control lists using an exclusive-or sum-of-products evaluator |
US8595714B1 (en) * | 2009-03-04 | 2013-11-26 | Amazon Technologies, Inc. | User controlled environment updates in server cluster |
US10079716B2 (en) | 2009-03-04 | 2018-09-18 | Amazon Technologies, Inc. | User controlled environment updates in server cluster |
CN102082810B (en) * | 2009-11-30 | 2014-05-07 | 中国移动通信集团广西有限公司 | Method, system and device for user terminal to access internet |
US8826366B2 (en) * | 2010-07-15 | 2014-09-02 | Tt Government Solutions, Inc. | Verifying access-control policies with arithmetic quantifier-free form constraints |
CN102347932B (en) * | 2010-07-27 | 2016-03-02 | 中兴通讯股份有限公司 | A kind of processing method of data message and system |
EP2700205A4 (en) * | 2011-04-18 | 2014-12-17 | Nec Corp | Terminal, control device, communication method,communication system, communication module, program, and information processing device |
CN102387225B (en) * | 2011-11-14 | 2018-01-09 | 中兴通讯股份有限公司 | Data flow sending method and device |
US8813210B2 (en) * | 2011-11-29 | 2014-08-19 | Samsung Electronics Co., Ltd. | Enhancing network controls in mandatory access control computing environments |
ES2639553T3 (en) * | 2012-03-16 | 2017-10-27 | Tyco Electronics Uk Ltd. | Smart wall plate and modular connectors for secure network access and / or VLAN configuration |
CN103023779B (en) * | 2012-08-13 | 2018-04-10 | 中兴通讯股份有限公司 | A kind of data message processing method and device |
US9124619B2 (en) | 2012-12-08 | 2015-09-01 | International Business Machines Corporation | Directing audited data traffic to specific repositories |
US9355279B1 (en) | 2013-03-29 | 2016-05-31 | Secturion Systems, Inc. | Multi-tenancy architecture |
US9317718B1 (en) | 2013-03-29 | 2016-04-19 | Secturion Systems, Inc. | Security device with programmable systolic-matrix cryptographic module and programmable input/output interface |
US9798899B1 (en) | 2013-03-29 | 2017-10-24 | Secturion Systems, Inc. | Replaceable or removable physical interface input/output module |
US9374344B1 (en) | 2013-03-29 | 2016-06-21 | Secturion Systems, Inc. | Secure end-to-end communication system |
US9524399B1 (en) * | 2013-04-01 | 2016-12-20 | Secturion Systems, Inc. | Multi-level independent security architecture |
EP3039897B1 (en) * | 2013-08-29 | 2021-09-22 | Nokia Technologies Oy | Adaptive security indicator for wireless devices |
US20150095479A1 (en) * | 2013-10-01 | 2015-04-02 | Broadcom Corporation | Industrial Security Provisioning |
US20150294119A1 (en) * | 2014-04-10 | 2015-10-15 | International Business Machines Corporation | Booting a multi-node computer system from a primary node dynamically selected based on security setting criteria |
US9590998B2 (en) | 2014-07-02 | 2017-03-07 | Calient Technologies, Inc. | Network switch with hierarchical security |
US9961076B2 (en) | 2015-05-11 | 2018-05-01 | Genesys Telecommunications Laboratoreis, Inc. | System and method for identity authentication |
JP2017053942A (en) * | 2015-09-08 | 2017-03-16 | 三菱化学株式会社 | Photosensitive coloring composition, cured product, colored spacer, and image display device |
US11283774B2 (en) | 2015-09-17 | 2022-03-22 | Secturion Systems, Inc. | Cloud storage using encryption gateway with certificate authority identification |
US10708236B2 (en) | 2015-10-26 | 2020-07-07 | Secturion Systems, Inc. | Multi-independent level secure (MILS) storage encryption |
US10999289B2 (en) * | 2015-10-30 | 2021-05-04 | Convida Wireless, Llc | System and methods for achieving end-to-end security for hop-by-hop services |
WO2018075930A1 (en) * | 2016-10-20 | 2018-04-26 | Idac Holdings, Inc. | Determining and communicating security posture attributes |
US10554493B2 (en) * | 2017-06-19 | 2020-02-04 | Cisco Technology, Inc. | Identifying mismatches between a logical model and node implementation |
WO2019153127A1 (en) * | 2018-02-06 | 2019-08-15 | Nokia Shanghai Bell Co., Ltd. | Method, apparatus, and computer readable medium for providing security service for data center |
US11212257B2 (en) * | 2018-06-22 | 2021-12-28 | Aeronix, Inc. | Multi-level secure ethernet switch |
US11178187B2 (en) * | 2019-06-11 | 2021-11-16 | Zscaler, Inc. | Identifying and providing network application security policies governing connections to and from hosts in a network |
US11244058B2 (en) | 2019-09-18 | 2022-02-08 | Bank Of America Corporation | Security tool |
US11405426B2 (en) | 2019-11-04 | 2022-08-02 | Salesforce.Com, Inc. | Comparing network security specifications for a network to implement a network security policy for the network |
FR3112410B1 (en) * | 2020-07-08 | 2022-06-24 | Thales Sa | Method for labeling objects in an environment for processing large volumes of data and associated labeling system |
WO2022041186A1 (en) * | 2020-08-31 | 2022-03-03 | 华为技术有限公司 | Security protection method and device and storage medium |
US20220286439A1 (en) * | 2020-10-23 | 2022-09-08 | Secturion Systems, Inc. | Multi-independent level security for high performance computing and data storage systems |
US11909739B2 (en) | 2021-08-06 | 2024-02-20 | Cisco Technology, Inc. | Industrial security model as a SASE service |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
EP0465016A2 (en) * | 1990-06-25 | 1992-01-08 | Digital Equipment Corporation | Distributed multilevel computer security system and method |
EP0849680A2 (en) * | 1996-12-18 | 1998-06-24 | Sun Microsystems, Inc. | Multilevel security port methods, apparatuses, and computer program products |
EP1067745A2 (en) * | 1998-11-30 | 2001-01-10 | Sun Microsystems, Inc. | Multilevel security attribute passing methods, apparatuses, and computer program products in a stream |
US6304973B1 (en) * | 1998-08-06 | 2001-10-16 | Cryptek Secure Communications, Llc | Multi-level security network system |
Family Cites Families (81)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US700120A (en) * | 1897-03-12 | 1902-05-13 | David H Houston | Photographic-roll holder. |
US4136374A (en) * | 1976-12-30 | 1979-01-23 | Westinghouse Electric Corp. | Electrical switchboard apparatus including double-flanged vertical riser conductors |
US4922486A (en) * | 1988-03-31 | 1990-05-01 | American Telephone And Telegraph Company | User to network interface protocol for packet communications networks |
US5017917A (en) * | 1988-12-30 | 1991-05-21 | At&T Bell Laboratories | Restriction of communication service accessibility among subscriber communities |
US5113442A (en) * | 1989-03-06 | 1992-05-12 | Lachman Associates, Inc. | Method and apparatus for providing access control in a secure operating system |
US5251205A (en) * | 1990-09-04 | 1993-10-05 | Digital Equipment Corporation | Multiple protocol routing |
JP3168118B2 (en) * | 1994-07-21 | 2001-05-21 | キヤノン株式会社 | Image forming device |
EP0697662B1 (en) * | 1994-08-15 | 2001-05-30 | International Business Machines Corporation | Method and system for advanced role-based access control in distributed and centralized computer systems |
US5615264A (en) * | 1995-06-08 | 1997-03-25 | Wave Systems Corp. | Encrypted data package record for use in remote transaction metered data system |
US5941947A (en) * | 1995-08-18 | 1999-08-24 | Microsoft Corporation | System and method for controlling access to data entities in a computer network |
JP3688830B2 (en) * | 1995-11-30 | 2005-08-31 | 株式会社東芝 | Packet transfer method and packet processing apparatus |
US5787427A (en) * | 1996-01-03 | 1998-07-28 | International Business Machines Corporation | Information handling system, method, and article of manufacture for efficient object security processing by grouping objects sharing common control access policies |
US5913921A (en) * | 1996-07-12 | 1999-06-22 | Glenayre Electronics, Inc. | System for communicating information about nodes configuration by generating advertisements having era values for identifying time reference for which the configuration is operative |
US6272538B1 (en) * | 1996-07-30 | 2001-08-07 | Micron Technology, Inc. | Method and system for establishing a security perimeter in computer networks |
US6023765A (en) * | 1996-12-06 | 2000-02-08 | The United States Of America As Represented By The Secretary Of Commerce | Implementation of role-based access control in multi-level secure systems |
US6212558B1 (en) * | 1997-04-25 | 2001-04-03 | Anand K. Antur | Method and apparatus for configuring and managing firewalls and security devices |
US6088659A (en) * | 1997-09-11 | 2000-07-11 | Abb Power T&D Company Inc. | Automated meter reading system |
US5968177A (en) * | 1997-10-14 | 1999-10-19 | Entrust Technologies Limited | Method and apparatus for processing administration of a secured community |
US6014666A (en) * | 1997-10-28 | 2000-01-11 | Microsoft Corporation | Declarative and programmatic access control of component-based server applications using roles |
US6202066B1 (en) * | 1997-11-19 | 2001-03-13 | The United States Of America As Represented By The Secretary Of Commerce | Implementation of role/group permission association using object access type |
US6052456A (en) | 1997-12-23 | 2000-04-18 | Alcatel Usa Sourcing, L.P. | Graphical shelf navigator for a telecommunications switch management system |
US6233618B1 (en) * | 1998-03-31 | 2001-05-15 | Content Advisor, Inc. | Access control of networked data |
US6449643B1 (en) * | 1998-05-14 | 2002-09-10 | Nortel Networks Limited | Access control with just-in-time resource discovery |
US6292798B1 (en) * | 1998-09-09 | 2001-09-18 | International Business Machines Corporation | Method and system for controlling access to data resources and protecting computing system resources from unauthorized access |
JP2002526830A (en) * | 1998-09-28 | 2002-08-20 | アーガス システムズ グループ,インク. | Compartmentalized trust computer operating system |
US6405259B1 (en) * | 1998-12-08 | 2002-06-11 | International Business Machines Corporation | Data processing system and method for transmission of a network packet specifying a group identifier identifying a selected plurality of clients |
US6271946B1 (en) * | 1999-01-25 | 2001-08-07 | Telcordia Technologies, Inc. | Optical layer survivability and security system using optical label switching and high-speed optical header generation and detection |
US6973057B1 (en) * | 1999-01-29 | 2005-12-06 | Telefonaktiebolaget L M Ericsson (Publ) | Public mobile data communications network |
US7881477B2 (en) * | 1999-02-05 | 2011-02-01 | Avaya Inc. | Method for key distribution in a hierarchical multicast traffic security system for an internetwork |
US6678827B1 (en) * | 1999-05-06 | 2004-01-13 | Watchguard Technologies, Inc. | Managing multiple network security devices from a manager device |
US6754214B1 (en) * | 1999-07-19 | 2004-06-22 | Dunti, Llc | Communication network having packetized security codes and a system for detecting security breach locations within the network |
US6711172B1 (en) * | 1999-08-02 | 2004-03-23 | Nortel Networks Corp. | Network packet routing |
US7072343B1 (en) * | 1999-09-27 | 2006-07-04 | Cisco Technology, Inc. | Methods and apparatus for controlling a data stream using a host agent acting on behalf of a host computer |
US7023863B1 (en) | 1999-10-29 | 2006-04-04 | 3Com Corporation | Apparatus and method for processing encrypted packets in a computer network device |
US7000120B1 (en) | 1999-12-23 | 2006-02-14 | Nokia Corporation | Scheme for determining transport level information in the presence of IP security encryption |
US6985948B2 (en) * | 2000-03-29 | 2006-01-10 | Fujitsu Limited | User's right information and keywords input based search query generating means method and apparatus for searching a file |
US20020026592A1 (en) | 2000-06-16 | 2002-02-28 | Vdg, Inc. | Method for automatic permission management in role-based access control systems |
ES2312483T3 (en) * | 2000-07-14 | 2009-03-01 | Irdeto Access B.V. | ARCHITECTURE OF SECURE DATA DISSEMINATION BY PACKAGES. |
US6823462B1 (en) * | 2000-09-07 | 2004-11-23 | International Business Machines Corporation | Virtual private network with multiple tunnels associated with one group name |
EP1209644A1 (en) * | 2000-11-23 | 2002-05-29 | Telefonaktiebolaget L M Ericsson (Publ) | Traffic management system including a layered management structure |
JP4183379B2 (en) | 2000-11-27 | 2008-11-19 | 富士通株式会社 | Network and edge router |
US7032243B2 (en) * | 2000-12-15 | 2006-04-18 | Hewlett-Packard Development Company, L.P. | System and method for a group-based network access control for computer |
US7284271B2 (en) | 2001-03-14 | 2007-10-16 | Microsoft Corporation | Authorizing a requesting entity to operate upon data structures |
US7136374B1 (en) | 2001-03-19 | 2006-11-14 | Juniper Networks, Inc. | Transport networks supporting virtual private networks, and configuring such networks |
US7380271B2 (en) | 2001-07-12 | 2008-05-27 | International Business Machines Corporation | Grouped access control list actions |
US7207062B2 (en) * | 2001-08-16 | 2007-04-17 | Lucent Technologies Inc | Method and apparatus for protecting web sites from distributed denial-of-service attacks |
US7207061B2 (en) * | 2001-08-31 | 2007-04-17 | International Business Machines Corporation | State machine for accessing a stealth firewall |
US8713185B2 (en) * | 2001-12-07 | 2014-04-29 | Rockstar Bidco, LP | Methods of establishing virtual circuits and of providing a virtual private network service through a shared network, and provider edge device for such network |
US7591020B2 (en) | 2002-01-18 | 2009-09-15 | Palm, Inc. | Location based security modification system and method |
US7743415B2 (en) * | 2002-01-31 | 2010-06-22 | Riverbed Technology, Inc. | Denial of service attacks characterization |
US7574735B2 (en) | 2002-02-13 | 2009-08-11 | Nokia Corporation | Method and network element for providing secure access to a packet data network |
US7305704B2 (en) * | 2002-03-16 | 2007-12-04 | Trustedflow Systems, Inc. | Management of trusted flow system |
US20030196108A1 (en) * | 2002-04-12 | 2003-10-16 | Kung Kenneth C. | System and techniques to bind information objects to security labels |
US8910241B2 (en) * | 2002-04-25 | 2014-12-09 | Citrix Systems, Inc. | Computer security system |
US7284269B2 (en) * | 2002-05-29 | 2007-10-16 | Alcatel Canada Inc. | High-speed adaptive structure of elementary firewall modules |
US7548541B2 (en) * | 2002-06-04 | 2009-06-16 | Alcatel-Lucent Usa Inc. | Managing VLAN traffic in a multiport network node using customer-specific identifiers |
US7415723B2 (en) * | 2002-06-11 | 2008-08-19 | Pandya Ashish A | Distributed network security system and a hardware processor therefor |
US7594262B2 (en) * | 2002-09-04 | 2009-09-22 | Secure Computing Corporation | System and method for secure group communications |
US7350077B2 (en) * | 2002-11-26 | 2008-03-25 | Cisco Technology, Inc. | 802.11 using a compressed reassociation exchange to facilitate fast handoff |
US7417950B2 (en) * | 2003-02-03 | 2008-08-26 | Ciena Corporation | Method and apparatus for performing data flow ingress/egress admission control in a provider network |
US7567510B2 (en) * | 2003-02-13 | 2009-07-28 | Cisco Technology, Inc. | Security groups |
US20040223497A1 (en) * | 2003-05-08 | 2004-11-11 | Onvoy Inc. | Communications network with converged services |
US7397922B2 (en) | 2003-06-27 | 2008-07-08 | Microsoft Corporation | Group security |
US20040268123A1 (en) * | 2003-06-27 | 2004-12-30 | Nokia Corporation | Security for protocol traversal |
US7734844B2 (en) * | 2003-08-19 | 2010-06-08 | General Dynamics Advanced Information Systems, Inc. | Trusted interface unit (TIU) and method of making and using the same |
US7530112B2 (en) | 2003-09-10 | 2009-05-05 | Cisco Technology, Inc. | Method and apparatus for providing network security using role-based access control |
US7836490B2 (en) | 2003-10-29 | 2010-11-16 | Cisco Technology, Inc. | Method and apparatus for providing network security using security labeling |
US8146148B2 (en) | 2003-11-19 | 2012-03-27 | Cisco Technology, Inc. | Tunneled security groups |
US7624431B2 (en) | 2003-12-04 | 2009-11-24 | Cisco Technology, Inc. | 802.1X authentication technique for shared media |
US20050177717A1 (en) * | 2004-02-11 | 2005-08-11 | Grosse Eric H. | Method and apparatus for defending against denial on service attacks which employ IP source spoofing |
US20050190758A1 (en) * | 2004-03-01 | 2005-09-01 | Cisco Technology, Inc. | Security groups for VLANs |
US7882544B2 (en) * | 2004-07-12 | 2011-02-01 | International Business Machines Corporation | Inherited role-based access control system, method and program product |
US7660259B1 (en) | 2004-10-20 | 2010-02-09 | Extreme Networks, Inc. | Methods and systems for hybrid hardware- and software-base media access control (MAC) address learning |
US7669244B2 (en) | 2004-10-21 | 2010-02-23 | Cisco Technology, Inc. | Method and system for generating user group permission lists |
US7877796B2 (en) | 2004-11-16 | 2011-01-25 | Cisco Technology, Inc. | Method and apparatus for best effort propagation of security group information |
US7721323B2 (en) | 2004-11-23 | 2010-05-18 | Cisco Technology, Inc. | Method and system for including network security information in a frame |
US7886145B2 (en) | 2004-11-23 | 2011-02-08 | Cisco Technology, Inc. | Method and system for including security information with a packet |
US7827402B2 (en) * | 2004-12-01 | 2010-11-02 | Cisco Technology, Inc. | Method and apparatus for ingress filtering using security group information |
US7437755B2 (en) * | 2005-10-26 | 2008-10-14 | Cisco Technology, Inc. | Unified network and physical premises access control server |
US7506102B2 (en) * | 2006-03-28 | 2009-03-17 | Cisco Technology, Inc. | Method and apparatus for local access authorization of cached resources |
US7840708B2 (en) * | 2007-08-13 | 2010-11-23 | Cisco Technology, Inc. | Method and system for the assignment of security group information using a proxy |
-
2003
- 2003-10-29 US US10/696,629 patent/US7836490B2/en active Active
-
2004
- 2004-10-28 EP EP04796670A patent/EP1692840B1/en active Active
- 2004-10-28 WO PCT/US2004/035853 patent/WO2005046178A2/en active Application Filing
- 2004-10-28 CN CN2004800293191A patent/CN1864390B/en active Active
-
2010
- 2010-11-15 US US12/946,427 patent/US8539571B2/en not_active Expired - Lifetime
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
EP0465016A2 (en) * | 1990-06-25 | 1992-01-08 | Digital Equipment Corporation | Distributed multilevel computer security system and method |
EP0849680A2 (en) * | 1996-12-18 | 1998-06-24 | Sun Microsystems, Inc. | Multilevel security port methods, apparatuses, and computer program products |
US6304973B1 (en) * | 1998-08-06 | 2001-10-16 | Cryptek Secure Communications, Llc | Multi-level security network system |
EP1067745A2 (en) * | 1998-11-30 | 2001-01-10 | Sun Microsystems, Inc. | Multilevel security attribute passing methods, apparatuses, and computer program products in a stream |
Also Published As
Publication number | Publication date |
---|---|
WO2005046178A2 (en) | 2005-05-19 |
EP1692840B1 (en) | 2012-09-05 |
CN1864390B (en) | 2010-10-27 |
EP1692840A2 (en) | 2006-08-23 |
CN1864390A (en) | 2006-11-15 |
US20110283339A1 (en) | 2011-11-17 |
US8539571B2 (en) | 2013-09-17 |
US7836490B2 (en) | 2010-11-16 |
US20050097357A1 (en) | 2005-05-05 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
WO2005046178A3 (en) | Method and apparatus for providing network security using security labeling | |
WO2004092924A3 (en) | Method and system for locating a wireless access device in a wireless network | |
AU4482500A (en) | Method and apparatus for processing a punctured pilot channel | |
WO2004027561A3 (en) | Client-based message protocol translation | |
GB0301159D0 (en) | System and method for searching,finding and contacting dates on the internet in instant messaging networks and/or in other metods | |
WO2002079949A3 (en) | Internet security system | |
AU2002953500A0 (en) | A system and method of requesting, viewing and acting on search results in a time-saving manner | |
AU2003217479A1 (en) | Content playback apparatus, method, and program, and key management apparatus and system | |
AU2003236284A1 (en) | Communication system, information processing device, and method | |
AU2003275550A1 (en) | Information acquisition method, information providing method, and information acquisition device | |
WO2004021626A3 (en) | System and method for handling out-of-order frames | |
EP1473628A4 (en) | Information processing apparatus, memory management apparatus, memory management method, and information processing method | |
WO2007050818A3 (en) | A method and apparatus for processing connectionopenresponse message in wireless communication systems | |
AU2002224333A1 (en) | Method and apparatus for structuring, maintaining, and using families of data | |
WO2005041503A3 (en) | Method and apparatus for two-stage packet classification using most specific filter matching and transport level sharing | |
WO2000052604A8 (en) | System and method for on-line health monitoring and education | |
AU2003201867A1 (en) | Information processing device, network printing system and program | |
HK1067821A1 (en) | Method, apparatus and computer program for the decapsulation and encapsulation of packets with multiple headers | |
AU2002245542A1 (en) | System, method and apparatus for discovering phrases in a database | |
AU2003277508A1 (en) | Learning/thinking machine and learning/thinking method based on structured knowledge, computer system, and information generation method | |
WO2007038462A9 (en) | Method for dynamic sensor network processing | |
DE60126119D1 (en) | CONTENT MANAGEMENT METHOD, CONTENT PROCESS AND APPARATUS | |
AU2001294222A1 (en) | Information processing device, information processing method, and storage medium | |
AU2003267510A1 (en) | Method for protocol recognition and analysis in data networks | |
WO2003017155A1 (en) | Transferring system, transferring apparatus, transferring method, terminal and recorded medium |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
WWE | Wipo information: entry into national phase |
Ref document number: 200480029319.1 Country of ref document: CN |
|
AK | Designated states |
Kind code of ref document: A2 Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BW BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE EG ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NA NI NO NZ OM PG PH PL PT RO RU SC SD SE SG SK SL SY TJ TM TN TR TT TZ UA UG US UZ VC VN YU ZA ZM ZW |
|
AL | Designated countries for regional patents |
Kind code of ref document: A2 Designated state(s): GM KE LS MW MZ NA SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IT LU MC NL PL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG |
|
121 | Ep: the epo has been informed by wipo that ep was designated in this application | ||
WWE | Wipo information: entry into national phase |
Ref document number: 2004796670 Country of ref document: EP |
|
WWP | Wipo information: published in national office |
Ref document number: 2004796670 Country of ref document: EP |