WO2005046178A3 - Method and apparatus for providing network security using security labeling - Google Patents

Method and apparatus for providing network security using security labeling Download PDF

Info

Publication number
WO2005046178A3
WO2005046178A3 PCT/US2004/035853 US2004035853W WO2005046178A3 WO 2005046178 A3 WO2005046178 A3 WO 2005046178A3 US 2004035853 W US2004035853 W US 2004035853W WO 2005046178 A3 WO2005046178 A3 WO 2005046178A3
Authority
WO
WIPO (PCT)
Prior art keywords
security
labeling
providing network
level information
security level
Prior art date
Application number
PCT/US2004/035853
Other languages
French (fr)
Other versions
WO2005046178A2 (en
Inventor
Michael R Smith
Original Assignee
Cisco Tech Ind
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Cisco Tech Ind filed Critical Cisco Tech Ind
Priority to EP04796670A priority Critical patent/EP1692840B1/en
Priority to CN2004800293191A priority patent/CN1864390B/en
Publication of WO2005046178A2 publication Critical patent/WO2005046178A2/en
Publication of WO2005046178A3 publication Critical patent/WO2005046178A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/102Entity profiles
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/105Multiple levels of security

Abstract

A method and apparatus for providing network security using security labeling is disclosed. The method includes comparing first security level information and second security level information (1010), and indicating processing to be performed on the packet based on the comparing (1040). The first security level information is stored in a security label (220) of a packet (200) received at a network node, while the second security level information is stored at the network node.
PCT/US2004/035853 2003-10-29 2004-10-28 Method and apparatus for providing network security using security labeling WO2005046178A2 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
EP04796670A EP1692840B1 (en) 2003-10-29 2004-10-28 Method and apparatus for providing network security using security labeling
CN2004800293191A CN1864390B (en) 2003-10-29 2004-10-28 Method and apparatus for providing network security using security labeling

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US10/696,629 US7836490B2 (en) 2003-10-29 2003-10-29 Method and apparatus for providing network security using security labeling
US10/696,629 2003-10-29

Publications (2)

Publication Number Publication Date
WO2005046178A2 WO2005046178A2 (en) 2005-05-19
WO2005046178A3 true WO2005046178A3 (en) 2005-12-15

Family

ID=34550152

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2004/035853 WO2005046178A2 (en) 2003-10-29 2004-10-28 Method and apparatus for providing network security using security labeling

Country Status (4)

Country Link
US (2) US7836490B2 (en)
EP (1) EP1692840B1 (en)
CN (1) CN1864390B (en)
WO (1) WO2005046178A2 (en)

Families Citing this family (70)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9928508B2 (en) 2000-08-04 2018-03-27 Intellectual Ventures I Llc Single sign-on for access to a central data repository
US8862866B2 (en) 2003-07-07 2014-10-14 Certicom Corp. Method and apparatus for providing an adaptable security level in an electronic communication
GB2406484B (en) 2003-08-19 2007-01-31 Certicom Corp Method and apparatus for synchronizing an adaptable security level in an electronic communication
US7530112B2 (en) 2003-09-10 2009-05-05 Cisco Technology, Inc. Method and apparatus for providing network security using role-based access control
WO2005032042A1 (en) 2003-09-24 2005-04-07 Infoexpress, Inc. Systems and methods of controlling network access
US7836490B2 (en) 2003-10-29 2010-11-16 Cisco Technology, Inc. Method and apparatus for providing network security using security labeling
US8146148B2 (en) * 2003-11-19 2012-03-27 Cisco Technology, Inc. Tunneled security groups
US7568047B1 (en) * 2004-04-30 2009-07-28 Nortel Networks Limited Method and apparatus for adaptive service label management
US8527752B2 (en) * 2004-06-16 2013-09-03 Dormarke Assets Limited Liability Graduated authentication in an identity management system
US7669244B2 (en) 2004-10-21 2010-02-23 Cisco Technology, Inc. Method and system for generating user group permission lists
US8060650B2 (en) * 2004-10-27 2011-11-15 Hewlett-Packard Development Company, L.P. Diagnosing a path in a storage network
US7877796B2 (en) 2004-11-16 2011-01-25 Cisco Technology, Inc. Method and apparatus for best effort propagation of security group information
US7886145B2 (en) * 2004-11-23 2011-02-08 Cisco Technology, Inc. Method and system for including security information with a packet
US7721323B2 (en) * 2004-11-23 2010-05-18 Cisco Technology, Inc. Method and system for including network security information in a frame
US7796614B1 (en) * 2004-11-30 2010-09-14 Symantec Corporation Systems and methods for message proxying
US7827402B2 (en) 2004-12-01 2010-11-02 Cisco Technology, Inc. Method and apparatus for ingress filtering using security group information
US7310669B2 (en) * 2005-01-19 2007-12-18 Lockdown Networks, Inc. Network appliance for vulnerability assessment auditing over multiple networks
US8520512B2 (en) 2005-01-26 2013-08-27 Mcafee, Inc. Network appliance for customizable quarantining of a node on a network
US20060164199A1 (en) * 2005-01-26 2006-07-27 Lockdown Networks, Inc. Network appliance for securely quarantining a node on a network
US7810138B2 (en) * 2005-01-26 2010-10-05 Mcafee, Inc. Enabling dynamic authentication with different protocols on the same port for a switch
US20070245413A1 (en) * 2005-07-05 2007-10-18 Viasat, Inc. Trusted Cryptographic Switch
CN100459579C (en) * 2005-12-15 2009-02-04 华为技术有限公司 Method for detecting superlong signaling message based text code
US8161529B1 (en) * 2006-03-02 2012-04-17 Rockwell Collins, Inc. High-assurance architecture for routing of information between networks of differing security level
US8311045B2 (en) * 2006-04-07 2012-11-13 Cisco Technology, Inc. System and method for selectively applying a service to a network packet using a preexisting packet header
WO2007118307A1 (en) 2006-04-13 2007-10-25 Certicom Corp. Method and apparatus for providing an adaptable security level in an electronic communication
CN100428731C (en) * 2006-06-02 2008-10-22 清华大学 Method for preventing star-shape network from invading and attacking based on intelligent exchanger
US8050560B2 (en) * 2006-12-01 2011-11-01 Electronics & Telecommunications Research Institute Distributed resource sharing method using weighted sub-domain in GMPLS network
US8156536B2 (en) * 2006-12-01 2012-04-10 Cisco Technology, Inc. Establishing secure communication sessions in a communication network
US8272042B2 (en) * 2006-12-01 2012-09-18 Verizon Patent And Licensing Inc. System and method for automation of information or data classification for implementation of controls
US7840708B2 (en) * 2007-08-13 2010-11-23 Cisco Technology, Inc. Method and system for the assignment of security group information using a proxy
US7979895B2 (en) * 2007-08-16 2011-07-12 International Business Machines Corporation System and method for partitioning a multi-level security namespace
US7954138B2 (en) * 2007-08-16 2011-05-31 International Business Machines Corporation Method and system for multiplexing multiple level security server applications on the same internet address and port
DE102009032465B4 (en) * 2008-07-16 2016-10-13 Infineon Technologies Ag Security in networks
US8688902B2 (en) * 2008-08-06 2014-04-01 Fujitsu Limited Method and system for processing access control lists using an exclusive-or sum-of-products evaluator
US8595714B1 (en) * 2009-03-04 2013-11-26 Amazon Technologies, Inc. User controlled environment updates in server cluster
US10079716B2 (en) 2009-03-04 2018-09-18 Amazon Technologies, Inc. User controlled environment updates in server cluster
CN102082810B (en) * 2009-11-30 2014-05-07 中国移动通信集团广西有限公司 Method, system and device for user terminal to access internet
US8826366B2 (en) * 2010-07-15 2014-09-02 Tt Government Solutions, Inc. Verifying access-control policies with arithmetic quantifier-free form constraints
CN102347932B (en) * 2010-07-27 2016-03-02 中兴通讯股份有限公司 A kind of processing method of data message and system
EP2700205A4 (en) * 2011-04-18 2014-12-17 Nec Corp Terminal, control device, communication method,communication system, communication module, program, and information processing device
CN102387225B (en) * 2011-11-14 2018-01-09 中兴通讯股份有限公司 Data flow sending method and device
US8813210B2 (en) * 2011-11-29 2014-08-19 Samsung Electronics Co., Ltd. Enhancing network controls in mandatory access control computing environments
ES2639553T3 (en) * 2012-03-16 2017-10-27 Tyco Electronics Uk Ltd. Smart wall plate and modular connectors for secure network access and / or VLAN configuration
CN103023779B (en) * 2012-08-13 2018-04-10 中兴通讯股份有限公司 A kind of data message processing method and device
US9124619B2 (en) 2012-12-08 2015-09-01 International Business Machines Corporation Directing audited data traffic to specific repositories
US9355279B1 (en) 2013-03-29 2016-05-31 Secturion Systems, Inc. Multi-tenancy architecture
US9317718B1 (en) 2013-03-29 2016-04-19 Secturion Systems, Inc. Security device with programmable systolic-matrix cryptographic module and programmable input/output interface
US9798899B1 (en) 2013-03-29 2017-10-24 Secturion Systems, Inc. Replaceable or removable physical interface input/output module
US9374344B1 (en) 2013-03-29 2016-06-21 Secturion Systems, Inc. Secure end-to-end communication system
US9524399B1 (en) * 2013-04-01 2016-12-20 Secturion Systems, Inc. Multi-level independent security architecture
EP3039897B1 (en) * 2013-08-29 2021-09-22 Nokia Technologies Oy Adaptive security indicator for wireless devices
US20150095479A1 (en) * 2013-10-01 2015-04-02 Broadcom Corporation Industrial Security Provisioning
US20150294119A1 (en) * 2014-04-10 2015-10-15 International Business Machines Corporation Booting a multi-node computer system from a primary node dynamically selected based on security setting criteria
US9590998B2 (en) 2014-07-02 2017-03-07 Calient Technologies, Inc. Network switch with hierarchical security
US9961076B2 (en) 2015-05-11 2018-05-01 Genesys Telecommunications Laboratoreis, Inc. System and method for identity authentication
JP2017053942A (en) * 2015-09-08 2017-03-16 三菱化学株式会社 Photosensitive coloring composition, cured product, colored spacer, and image display device
US11283774B2 (en) 2015-09-17 2022-03-22 Secturion Systems, Inc. Cloud storage using encryption gateway with certificate authority identification
US10708236B2 (en) 2015-10-26 2020-07-07 Secturion Systems, Inc. Multi-independent level secure (MILS) storage encryption
US10999289B2 (en) * 2015-10-30 2021-05-04 Convida Wireless, Llc System and methods for achieving end-to-end security for hop-by-hop services
WO2018075930A1 (en) * 2016-10-20 2018-04-26 Idac Holdings, Inc. Determining and communicating security posture attributes
US10554493B2 (en) * 2017-06-19 2020-02-04 Cisco Technology, Inc. Identifying mismatches between a logical model and node implementation
WO2019153127A1 (en) * 2018-02-06 2019-08-15 Nokia Shanghai Bell Co., Ltd. Method, apparatus, and computer readable medium for providing security service for data center
US11212257B2 (en) * 2018-06-22 2021-12-28 Aeronix, Inc. Multi-level secure ethernet switch
US11178187B2 (en) * 2019-06-11 2021-11-16 Zscaler, Inc. Identifying and providing network application security policies governing connections to and from hosts in a network
US11244058B2 (en) 2019-09-18 2022-02-08 Bank Of America Corporation Security tool
US11405426B2 (en) 2019-11-04 2022-08-02 Salesforce.Com, Inc. Comparing network security specifications for a network to implement a network security policy for the network
FR3112410B1 (en) * 2020-07-08 2022-06-24 Thales Sa Method for labeling objects in an environment for processing large volumes of data and associated labeling system
WO2022041186A1 (en) * 2020-08-31 2022-03-03 华为技术有限公司 Security protection method and device and storage medium
US20220286439A1 (en) * 2020-10-23 2022-09-08 Secturion Systems, Inc. Multi-independent level security for high performance computing and data storage systems
US11909739B2 (en) 2021-08-06 2024-02-20 Cisco Technology, Inc. Industrial security model as a SASE service

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0465016A2 (en) * 1990-06-25 1992-01-08 Digital Equipment Corporation Distributed multilevel computer security system and method
EP0849680A2 (en) * 1996-12-18 1998-06-24 Sun Microsystems, Inc. Multilevel security port methods, apparatuses, and computer program products
EP1067745A2 (en) * 1998-11-30 2001-01-10 Sun Microsystems, Inc. Multilevel security attribute passing methods, apparatuses, and computer program products in a stream
US6304973B1 (en) * 1998-08-06 2001-10-16 Cryptek Secure Communications, Llc Multi-level security network system

Family Cites Families (81)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US700120A (en) * 1897-03-12 1902-05-13 David H Houston Photographic-roll holder.
US4136374A (en) * 1976-12-30 1979-01-23 Westinghouse Electric Corp. Electrical switchboard apparatus including double-flanged vertical riser conductors
US4922486A (en) * 1988-03-31 1990-05-01 American Telephone And Telegraph Company User to network interface protocol for packet communications networks
US5017917A (en) * 1988-12-30 1991-05-21 At&T Bell Laboratories Restriction of communication service accessibility among subscriber communities
US5113442A (en) * 1989-03-06 1992-05-12 Lachman Associates, Inc. Method and apparatus for providing access control in a secure operating system
US5251205A (en) * 1990-09-04 1993-10-05 Digital Equipment Corporation Multiple protocol routing
JP3168118B2 (en) * 1994-07-21 2001-05-21 キヤノン株式会社 Image forming device
EP0697662B1 (en) * 1994-08-15 2001-05-30 International Business Machines Corporation Method and system for advanced role-based access control in distributed and centralized computer systems
US5615264A (en) * 1995-06-08 1997-03-25 Wave Systems Corp. Encrypted data package record for use in remote transaction metered data system
US5941947A (en) * 1995-08-18 1999-08-24 Microsoft Corporation System and method for controlling access to data entities in a computer network
JP3688830B2 (en) * 1995-11-30 2005-08-31 株式会社東芝 Packet transfer method and packet processing apparatus
US5787427A (en) * 1996-01-03 1998-07-28 International Business Machines Corporation Information handling system, method, and article of manufacture for efficient object security processing by grouping objects sharing common control access policies
US5913921A (en) * 1996-07-12 1999-06-22 Glenayre Electronics, Inc. System for communicating information about nodes configuration by generating advertisements having era values for identifying time reference for which the configuration is operative
US6272538B1 (en) * 1996-07-30 2001-08-07 Micron Technology, Inc. Method and system for establishing a security perimeter in computer networks
US6023765A (en) * 1996-12-06 2000-02-08 The United States Of America As Represented By The Secretary Of Commerce Implementation of role-based access control in multi-level secure systems
US6212558B1 (en) * 1997-04-25 2001-04-03 Anand K. Antur Method and apparatus for configuring and managing firewalls and security devices
US6088659A (en) * 1997-09-11 2000-07-11 Abb Power T&D Company Inc. Automated meter reading system
US5968177A (en) * 1997-10-14 1999-10-19 Entrust Technologies Limited Method and apparatus for processing administration of a secured community
US6014666A (en) * 1997-10-28 2000-01-11 Microsoft Corporation Declarative and programmatic access control of component-based server applications using roles
US6202066B1 (en) * 1997-11-19 2001-03-13 The United States Of America As Represented By The Secretary Of Commerce Implementation of role/group permission association using object access type
US6052456A (en) 1997-12-23 2000-04-18 Alcatel Usa Sourcing, L.P. Graphical shelf navigator for a telecommunications switch management system
US6233618B1 (en) * 1998-03-31 2001-05-15 Content Advisor, Inc. Access control of networked data
US6449643B1 (en) * 1998-05-14 2002-09-10 Nortel Networks Limited Access control with just-in-time resource discovery
US6292798B1 (en) * 1998-09-09 2001-09-18 International Business Machines Corporation Method and system for controlling access to data resources and protecting computing system resources from unauthorized access
JP2002526830A (en) * 1998-09-28 2002-08-20 アーガス システムズ グループ,インク. Compartmentalized trust computer operating system
US6405259B1 (en) * 1998-12-08 2002-06-11 International Business Machines Corporation Data processing system and method for transmission of a network packet specifying a group identifier identifying a selected plurality of clients
US6271946B1 (en) * 1999-01-25 2001-08-07 Telcordia Technologies, Inc. Optical layer survivability and security system using optical label switching and high-speed optical header generation and detection
US6973057B1 (en) * 1999-01-29 2005-12-06 Telefonaktiebolaget L M Ericsson (Publ) Public mobile data communications network
US7881477B2 (en) * 1999-02-05 2011-02-01 Avaya Inc. Method for key distribution in a hierarchical multicast traffic security system for an internetwork
US6678827B1 (en) * 1999-05-06 2004-01-13 Watchguard Technologies, Inc. Managing multiple network security devices from a manager device
US6754214B1 (en) * 1999-07-19 2004-06-22 Dunti, Llc Communication network having packetized security codes and a system for detecting security breach locations within the network
US6711172B1 (en) * 1999-08-02 2004-03-23 Nortel Networks Corp. Network packet routing
US7072343B1 (en) * 1999-09-27 2006-07-04 Cisco Technology, Inc. Methods and apparatus for controlling a data stream using a host agent acting on behalf of a host computer
US7023863B1 (en) 1999-10-29 2006-04-04 3Com Corporation Apparatus and method for processing encrypted packets in a computer network device
US7000120B1 (en) 1999-12-23 2006-02-14 Nokia Corporation Scheme for determining transport level information in the presence of IP security encryption
US6985948B2 (en) * 2000-03-29 2006-01-10 Fujitsu Limited User's right information and keywords input based search query generating means method and apparatus for searching a file
US20020026592A1 (en) 2000-06-16 2002-02-28 Vdg, Inc. Method for automatic permission management in role-based access control systems
ES2312483T3 (en) * 2000-07-14 2009-03-01 Irdeto Access B.V. ARCHITECTURE OF SECURE DATA DISSEMINATION BY PACKAGES.
US6823462B1 (en) * 2000-09-07 2004-11-23 International Business Machines Corporation Virtual private network with multiple tunnels associated with one group name
EP1209644A1 (en) * 2000-11-23 2002-05-29 Telefonaktiebolaget L M Ericsson (Publ) Traffic management system including a layered management structure
JP4183379B2 (en) 2000-11-27 2008-11-19 富士通株式会社 Network and edge router
US7032243B2 (en) * 2000-12-15 2006-04-18 Hewlett-Packard Development Company, L.P. System and method for a group-based network access control for computer
US7284271B2 (en) 2001-03-14 2007-10-16 Microsoft Corporation Authorizing a requesting entity to operate upon data structures
US7136374B1 (en) 2001-03-19 2006-11-14 Juniper Networks, Inc. Transport networks supporting virtual private networks, and configuring such networks
US7380271B2 (en) 2001-07-12 2008-05-27 International Business Machines Corporation Grouped access control list actions
US7207062B2 (en) * 2001-08-16 2007-04-17 Lucent Technologies Inc Method and apparatus for protecting web sites from distributed denial-of-service attacks
US7207061B2 (en) * 2001-08-31 2007-04-17 International Business Machines Corporation State machine for accessing a stealth firewall
US8713185B2 (en) * 2001-12-07 2014-04-29 Rockstar Bidco, LP Methods of establishing virtual circuits and of providing a virtual private network service through a shared network, and provider edge device for such network
US7591020B2 (en) 2002-01-18 2009-09-15 Palm, Inc. Location based security modification system and method
US7743415B2 (en) * 2002-01-31 2010-06-22 Riverbed Technology, Inc. Denial of service attacks characterization
US7574735B2 (en) 2002-02-13 2009-08-11 Nokia Corporation Method and network element for providing secure access to a packet data network
US7305704B2 (en) * 2002-03-16 2007-12-04 Trustedflow Systems, Inc. Management of trusted flow system
US20030196108A1 (en) * 2002-04-12 2003-10-16 Kung Kenneth C. System and techniques to bind information objects to security labels
US8910241B2 (en) * 2002-04-25 2014-12-09 Citrix Systems, Inc. Computer security system
US7284269B2 (en) * 2002-05-29 2007-10-16 Alcatel Canada Inc. High-speed adaptive structure of elementary firewall modules
US7548541B2 (en) * 2002-06-04 2009-06-16 Alcatel-Lucent Usa Inc. Managing VLAN traffic in a multiport network node using customer-specific identifiers
US7415723B2 (en) * 2002-06-11 2008-08-19 Pandya Ashish A Distributed network security system and a hardware processor therefor
US7594262B2 (en) * 2002-09-04 2009-09-22 Secure Computing Corporation System and method for secure group communications
US7350077B2 (en) * 2002-11-26 2008-03-25 Cisco Technology, Inc. 802.11 using a compressed reassociation exchange to facilitate fast handoff
US7417950B2 (en) * 2003-02-03 2008-08-26 Ciena Corporation Method and apparatus for performing data flow ingress/egress admission control in a provider network
US7567510B2 (en) * 2003-02-13 2009-07-28 Cisco Technology, Inc. Security groups
US20040223497A1 (en) * 2003-05-08 2004-11-11 Onvoy Inc. Communications network with converged services
US7397922B2 (en) 2003-06-27 2008-07-08 Microsoft Corporation Group security
US20040268123A1 (en) * 2003-06-27 2004-12-30 Nokia Corporation Security for protocol traversal
US7734844B2 (en) * 2003-08-19 2010-06-08 General Dynamics Advanced Information Systems, Inc. Trusted interface unit (TIU) and method of making and using the same
US7530112B2 (en) 2003-09-10 2009-05-05 Cisco Technology, Inc. Method and apparatus for providing network security using role-based access control
US7836490B2 (en) 2003-10-29 2010-11-16 Cisco Technology, Inc. Method and apparatus for providing network security using security labeling
US8146148B2 (en) 2003-11-19 2012-03-27 Cisco Technology, Inc. Tunneled security groups
US7624431B2 (en) 2003-12-04 2009-11-24 Cisco Technology, Inc. 802.1X authentication technique for shared media
US20050177717A1 (en) * 2004-02-11 2005-08-11 Grosse Eric H. Method and apparatus for defending against denial on service attacks which employ IP source spoofing
US20050190758A1 (en) * 2004-03-01 2005-09-01 Cisco Technology, Inc. Security groups for VLANs
US7882544B2 (en) * 2004-07-12 2011-02-01 International Business Machines Corporation Inherited role-based access control system, method and program product
US7660259B1 (en) 2004-10-20 2010-02-09 Extreme Networks, Inc. Methods and systems for hybrid hardware- and software-base media access control (MAC) address learning
US7669244B2 (en) 2004-10-21 2010-02-23 Cisco Technology, Inc. Method and system for generating user group permission lists
US7877796B2 (en) 2004-11-16 2011-01-25 Cisco Technology, Inc. Method and apparatus for best effort propagation of security group information
US7721323B2 (en) 2004-11-23 2010-05-18 Cisco Technology, Inc. Method and system for including network security information in a frame
US7886145B2 (en) 2004-11-23 2011-02-08 Cisco Technology, Inc. Method and system for including security information with a packet
US7827402B2 (en) * 2004-12-01 2010-11-02 Cisco Technology, Inc. Method and apparatus for ingress filtering using security group information
US7437755B2 (en) * 2005-10-26 2008-10-14 Cisco Technology, Inc. Unified network and physical premises access control server
US7506102B2 (en) * 2006-03-28 2009-03-17 Cisco Technology, Inc. Method and apparatus for local access authorization of cached resources
US7840708B2 (en) * 2007-08-13 2010-11-23 Cisco Technology, Inc. Method and system for the assignment of security group information using a proxy

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0465016A2 (en) * 1990-06-25 1992-01-08 Digital Equipment Corporation Distributed multilevel computer security system and method
EP0849680A2 (en) * 1996-12-18 1998-06-24 Sun Microsystems, Inc. Multilevel security port methods, apparatuses, and computer program products
US6304973B1 (en) * 1998-08-06 2001-10-16 Cryptek Secure Communications, Llc Multi-level security network system
EP1067745A2 (en) * 1998-11-30 2001-01-10 Sun Microsystems, Inc. Multilevel security attribute passing methods, apparatuses, and computer program products in a stream

Also Published As

Publication number Publication date
WO2005046178A2 (en) 2005-05-19
EP1692840B1 (en) 2012-09-05
CN1864390B (en) 2010-10-27
EP1692840A2 (en) 2006-08-23
CN1864390A (en) 2006-11-15
US20110283339A1 (en) 2011-11-17
US8539571B2 (en) 2013-09-17
US7836490B2 (en) 2010-11-16
US20050097357A1 (en) 2005-05-05

Similar Documents

Publication Publication Date Title
WO2005046178A3 (en) Method and apparatus for providing network security using security labeling
WO2004092924A3 (en) Method and system for locating a wireless access device in a wireless network
AU4482500A (en) Method and apparatus for processing a punctured pilot channel
WO2004027561A3 (en) Client-based message protocol translation
GB0301159D0 (en) System and method for searching,finding and contacting dates on the internet in instant messaging networks and/or in other metods
WO2002079949A3 (en) Internet security system
AU2002953500A0 (en) A system and method of requesting, viewing and acting on search results in a time-saving manner
AU2003217479A1 (en) Content playback apparatus, method, and program, and key management apparatus and system
AU2003236284A1 (en) Communication system, information processing device, and method
AU2003275550A1 (en) Information acquisition method, information providing method, and information acquisition device
WO2004021626A3 (en) System and method for handling out-of-order frames
EP1473628A4 (en) Information processing apparatus, memory management apparatus, memory management method, and information processing method
WO2007050818A3 (en) A method and apparatus for processing connectionopenresponse message in wireless communication systems
AU2002224333A1 (en) Method and apparatus for structuring, maintaining, and using families of data
WO2005041503A3 (en) Method and apparatus for two-stage packet classification using most specific filter matching and transport level sharing
WO2000052604A8 (en) System and method for on-line health monitoring and education
AU2003201867A1 (en) Information processing device, network printing system and program
HK1067821A1 (en) Method, apparatus and computer program for the decapsulation and encapsulation of packets with multiple headers
AU2002245542A1 (en) System, method and apparatus for discovering phrases in a database
AU2003277508A1 (en) Learning/thinking machine and learning/thinking method based on structured knowledge, computer system, and information generation method
WO2007038462A9 (en) Method for dynamic sensor network processing
DE60126119D1 (en) CONTENT MANAGEMENT METHOD, CONTENT PROCESS AND APPARATUS
AU2001294222A1 (en) Information processing device, information processing method, and storage medium
AU2003267510A1 (en) Method for protocol recognition and analysis in data networks
WO2003017155A1 (en) Transferring system, transferring apparatus, transferring method, terminal and recorded medium

Legal Events

Date Code Title Description
WWE Wipo information: entry into national phase

Ref document number: 200480029319.1

Country of ref document: CN

AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BW BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE EG ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NA NI NO NZ OM PG PH PL PT RO RU SC SD SE SG SK SL SY TJ TM TN TR TT TZ UA UG US UZ VC VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GM KE LS MW MZ NA SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IT LU MC NL PL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
WWE Wipo information: entry into national phase

Ref document number: 2004796670

Country of ref document: EP

WWP Wipo information: published in national office

Ref document number: 2004796670

Country of ref document: EP