Invention Grant
US07793348B2 Protecting a data processing system from attack by a vandal who uses a vulnerability scanner
失效
保护数据处理系统免受使用漏洞扫描程序的破坏者的攻击
- Patent Title: Protecting a data processing system from attack by a vandal who uses a vulnerability scanner
- Patent Title (中): 保护数据处理系统免受使用漏洞扫描程序的破坏者的攻击
-
Application No.: US11759040Application Date: 2007-06-06
-
Publication No.: US07793348B2Publication Date: 2010-09-07
- Inventor: Charles Steven Lingafelt , Nigel Birkbeck Yell
- Applicant: Charles Steven Lingafelt , Nigel Birkbeck Yell
- Applicant Address: US NY Armonk
- Assignee: International Business Machines Corporation
- Current Assignee: International Business Machines Corporation
- Current Assignee Address: US NY Armonk
- Agency: Schmeiser, Olsen & Watts
- Agent David R. Irvin
- Main IPC: G08B23/00
- IPC: G08B23/00 ; G06F11/30
Abstract:
Method and apparatus for protecting a data processing system such as an Internet server from attack by a vandal who uses an offensive vulnerability scanner to find an externally visible vulnerability of the data processing system. The method includes determining an externally visible vulnerability using a defensive vulnerability scanner, configuring an intrusion detection system to detect a network flow associated with the vulnerability, and blocking that flow by a firewall or a router. The apparatus includes a defensive vulnerability scanner that finds an externally visible vulnerability and provides a description of the vulnerability, an intrusion detection system that detects a network flow that satisfies the description, and a firewall or a router that blocks the flow responsive to detection of the flow by the intrusion detection system.
Public/Granted literature
- US20070245421A1 PROTECTING A DATA PROCESSING SYSTEM FROM ATTACK BY A VANDAL WHO USES A VULNERABILITY SERVER Public/Granted day:2007-10-18
Information query
