Ex Parte Tarquini - Page 2


                      Appeal No. 2006-2430                                                                                     
                      Application No. 10/003,747                                                                               
                                                          BACKGROUND                                                           
                             The invention relates to intrusion detection or prevention systems on                             
                      computer networks that are intended to avoid attacks on targeted networks or                             
                      devices.  Representative claims 1 and 17 are reproduced below.                                           
                             A method of preventing intrusions on a node of a network, comprising;                             

                             monitoring, by a first layer of an intrusion prevention system, application                       
                      data of applications running at on [sic] the node;                                                       
                             monitoring, by a second layer of the intrusion prevention system, transport                       
                      layer data of the node; and                                                                              
                             monitoring, by a third layer of the intrusion prevention system, network                          
                      layer data of the node.                                                                                  
                      17. A node of a network, comprising:                                                                     
                             a central processing unit;                                                                        
                             a memory module for storing data in machine readable format for retrieval                         
                      and execution by the central processing unit; and                                                        
                             an operating system comprising a network stack comprising a protocol                              
                      driver, a media access control driver, the memory module storing an instance of                          
                      an intrusion protection system application operable to monitor application layer                         
                      data and an intrusion prevention system transport service provider layer, and the                        
                      operating system having an intrusion prevention system network filter service                            
                      provider bound to the media access control driver and the protocol driver.                               
                      The examiner relies on the following references:                                                         
              Vaidya    US 6,279,113 B1   Aug. 21, 2001                                                                        
                                                                                   (filed Jun.   4, 1998)                      
              Holland III, et al. (Holland)  US 6,851,061 B1   Feb.   1, 2005                                                  
                                                                                   (filed Aug. 24, 2000)                       

                                                                 -2-                                                           



Page:  Previous  1  2  3  4  5  6  7  Next 

Last modified: November 3, 2007