Appeal No. 2006-2430
Application No. 10/003,747
BACKGROUND
The invention relates to intrusion detection or prevention systems on
computer networks that are intended to avoid attacks on targeted networks or
devices. Representative claims 1 and 17 are reproduced below.
A method of preventing intrusions on a node of a network, comprising;
monitoring, by a first layer of an intrusion prevention system, application
data of applications running at on [sic] the node;
monitoring, by a second layer of the intrusion prevention system, transport
layer data of the node; and
monitoring, by a third layer of the intrusion prevention system, network
layer data of the node.
17. A node of a network, comprising:
a central processing unit;
a memory module for storing data in machine readable format for retrieval
and execution by the central processing unit; and
an operating system comprising a network stack comprising a protocol
driver, a media access control driver, the memory module storing an instance of
an intrusion protection system application operable to monitor application layer
data and an intrusion prevention system transport service provider layer, and the
operating system having an intrusion prevention system network filter service
provider bound to the media access control driver and the protocol driver.
The examiner relies on the following references:
Vaidya US 6,279,113 B1 Aug. 21, 2001
(filed Jun. 4, 1998)
Holland III, et al. (Holland) US 6,851,061 B1 Feb. 1, 2005
(filed Aug. 24, 2000)
-2-
Page: Previous 1 2 3 4 5 6 7 Next
Last modified: November 3, 2007