Appeal No. 2006-2430 Application No. 10/003,747 BACKGROUND The invention relates to intrusion detection or prevention systems on computer networks that are intended to avoid attacks on targeted networks or devices. Representative claims 1 and 17 are reproduced below. A method of preventing intrusions on a node of a network, comprising; monitoring, by a first layer of an intrusion prevention system, application data of applications running at on [sic] the node; monitoring, by a second layer of the intrusion prevention system, transport layer data of the node; and monitoring, by a third layer of the intrusion prevention system, network layer data of the node. 17. A node of a network, comprising: a central processing unit; a memory module for storing data in machine readable format for retrieval and execution by the central processing unit; and an operating system comprising a network stack comprising a protocol driver, a media access control driver, the memory module storing an instance of an intrusion protection system application operable to monitor application layer data and an intrusion prevention system transport service provider layer, and the operating system having an intrusion prevention system network filter service provider bound to the media access control driver and the protocol driver. The examiner relies on the following references: Vaidya US 6,279,113 B1 Aug. 21, 2001 (filed Jun. 4, 1998) Holland III, et al. (Holland) US 6,851,061 B1 Feb. 1, 2005 (filed Aug. 24, 2000) -2-Page: Previous 1 2 3 4 5 6 7 NextLast modified: November 3, 2007