公开(公告)号：WO2004051440A3

公开(公告)日：2004-09-02

申请号：PCT/GB0304824

申请日：2003-11-07

Applicant: IBM ,  IBM UK

Inventor： MASTRIANNI STEVEN ,  CHEFALAS THOMAS ,  BANTZ DAVID FREDERICK

IPC: H04L29/06 ,  H04L12/28

CPC classification number: H04L63/105 ,  H04L63/20

Abstract: The system disclosed uses policy directives to establish and regulate connectivity on a computer system. A policy profile is applied to the computer system that determines how and when connections can be made, and the devices on which the connections can be made.

Abstract translation: 所公开的系统使用策略指令来建立和调节计算机系统上的连接性。 策略配置文件应用于计算机系统，该计算机系统确定可以进行连接以及何时进行连接以及可以进行连接的设备。

公开(公告)号：WO02084459B1

公开(公告)日：2002-12-12

申请号：PCT/US0211239

申请日：2002-04-09

Applicant: IBM

Inventor： CHEFALAS THOMAS ,  MASTRIANNI STEVEN ,  MOHINDRA AJAY

IPC: G06F21/22 ,  G06F1/00 ,  G06F21/00 ,  H04L29/06

CPC classification number: H04L63/145 ,  G06F21/56 ,  H04L63/1491

Abstract: A method, computer program product, and network data processing system (100) for identifying, locating, and deleting viruses is provided. In one embodiment, the network data processing system (100) includes a local server (104), several client data processing systems (108-112), and a bait server (150). The address of the bait server (150) is not published to the clients (108-112). Thus, any attempt to access the bait server (150) would indicate the presence of a virus on the client attempting access. The bait server (150) monitors itself (408) and, responsive to an attempt from a client to access the bait server (150), broadcasts an indication that a virus attack is underway to all devices within the network. The bait server (150) then ignores all further access requests by the offending client until it receives an indication that the offending client has been disinfected and directs the local server (104) to disconnects the offending client(s) from the network (412). The bait server (150) also notifies the local server and/or a network administrator of the problem and the identity of the offending client allowing appropriate action to be initiated to disinfect the offending client (410).

Abstract translation: 提供了一种用于识别，定位和删除病毒的方法，计算机程序产品和网络数据处理系统（100）。 在一个实施例中，网络数据处理系统（100）包括本地服务器（104），多个客户端数据处理系统（108-112）以及诱饵服务器（150）。 诱饵服务器（150）的地址不公开给客户端（108-112）。 因此，任何访问诱饵服务器（150）的尝试都会指示客户端尝试访问时存在病毒。 诱饵服务器（150）监视自身（408），并且响应于来自客户端的访问诱饵服务器（150）的尝试，向网络内的所有设备广播正在进行病毒攻击的指示。 然后诱饵服务器（150）忽略有问题的客户端的所有进一步的访问请求，直到它接收到有问题的客户端已被消毒并指示本地服务器（104）断开违规的客户端与网络（412）的指示为止， 。 诱饵服务器（150）还通知本地服务器和/或网络管理员该问题和违规客户端的身份，允许启动适当的动作以消毒违规客户端（410）。

公开(公告)号：DE60201430T8

公开(公告)日：2006-06-08

申请号：DE60201430

申请日：2002-04-09

Applicant: IBM

Inventor： CHEFALAS THOMAS ,  MASTRIANNI STEVEN ,  MOHINDRA AJAY

IPC: G06F1/00 ,  G06F21/22 ,  G06F21/00 ,  H04L29/06

Abstract: A method, computer program product, and network data processing system for identifying, locating, and deleting viruses is provided. In one embodiment, the network data processing system includes a local server, several client data processing systems, and a bait server. The address of the bait server is not published to the clients. Thus, any attempt to access the bait server would indicate the presence of a virus on the client attempting access. The bait server monitors itself and, responsive to an attempt from a client to access the bait server, broadcasts an indication that a virus attack is underway to all devices within the network. The bait server then ignores all further access requests by the offending client until it receives an indication that the offending client has been disinfected and directs the local server to disconnect the offending client(s) from the network. The bait server also notifies the local server and/or a network administrator of the problem and the identity of the offending client allowing appropriate action to be initiated to disinfect the offending client.

公开(公告)号：DE60201430T2

公开(公告)日：2006-03-02

申请号：DE60201430

申请日：2002-04-09

Applicant: IBM

Inventor： CHEFALAS THOMAS ,  MASTRIANNI STEVEN ,  MOHINDRA AJAY

IPC: G06F21/22 ,  G06F1/00 ,  G06F21/00 ,  H04L29/06

Abstract: A method, computer program product, and network data processing system for identifying, locating, and deleting viruses is provided. In one embodiment, the network data processing system includes a local server, several client data processing systems, and a bait server. The address of the bait server is not published to the clients. Thus, any attempt to access the bait server would indicate the presence of a virus on the client attempting access. The bait server monitors itself and, responsive to an attempt from a client to access the bait server, broadcasts an indication that a virus attack is underway to all devices within the network. The bait server then ignores all further access requests by the offending client until it receives an indication that the offending client has been disinfected and directs the local server to disconnect the offending client(s) from the network. The bait server also notifies the local server and/or a network administrator of the problem and the identity of the offending client allowing appropriate action to be initiated to disinfect the offending client.

公开(公告)号：AU2003282220A1

公开(公告)日：2004-06-23

申请号：AU2003282220

申请日：2003-11-07

Applicant: IBM

Inventor： MASTRIANNI STEVEN ,  CHEFALAS THOMAS ,  BANTZ DAVID FREDERICK

IPC: H04L29/06 ,  G06F1/00

Abstract: The system disclosed uses policy directives to establish and regulate connectivity on a computer system. A policy profile is applied to the computer system that determines how and when connections can be made, and the devices on which the connections can be made.

公开(公告)号：DE60201430D1

公开(公告)日：2004-11-04

申请号：DE60201430

申请日：2002-04-09

Applicant: IBM

Inventor： CHEFALAS THOMAS ,  MASTRIANNI STEVEN ,  MOHINDRA AJAY

IPC: G06F21/22 ,  G06F1/00 ,  G06F21/00 ,  H04L29/06

Abstract: A method, computer program product, and network data processing system for identifying, locating, and deleting viruses is provided. In one embodiment, the network data processing system includes a local server, several client data processing systems, and a bait server. The address of the bait server is not published to the clients. Thus, any attempt to access the bait server would indicate the presence of a virus on the client attempting access. The bait server monitors itself and, responsive to an attempt from a client to access the bait server, broadcasts an indication that a virus attack is underway to all devices within the network. The bait server then ignores all further access requests by the offending client until it receives an indication that the offending client has been disinfected and directs the local server to disconnect the offending client(s) from the network. The bait server also notifies the local server and/or a network administrator of the problem and the identity of the offending client allowing appropriate action to be initiated to disinfect the offending client.

公开(公告)号：AT278212T

公开(公告)日：2004-10-15

申请号：AT02717796

申请日：2002-04-09

Applicant: IBM

Inventor： CHEFALAS THOMAS ,  MASTRIANNI STEVEN ,  MOHINDRA AJAY

IPC: G06F21/22 ,  G06F1/00 ,  G06F21/00 ,  H04L29/06

Abstract: A method, computer program product, and network data processing system for identifying, locating, and deleting viruses is provided. In one embodiment, the network data processing system includes a local server, several client data processing systems, and a bait server. The address of the bait server is not published to the clients. Thus, any attempt to access the bait server would indicate the presence of a virus on the client attempting access. The bait server monitors itself and, responsive to an attempt from a client to access the bait server, broadcasts an indication that a virus attack is underway to all devices within the network. The bait server then ignores all further access requests by the offending client until it receives an indication that the offending client has been disinfected and directs the local server to disconnect the offending client(s) from the network. The bait server also notifies the local server and/or a network administrator of the problem and the identity of the offending client allowing appropriate action to be initiated to disinfect the offending client.

公开(公告)号：AU2003282220A8

公开(公告)日：2004-06-23

申请号：AU2003282220

申请日：2003-11-07

Applicant: IBM

Inventor： CHEFALAS THOMAS ,  MASTRIANNI STEVEN ,  BANTZ DAVID FREDERICK

IPC: H04L29/06 ,  H04L12/28

Abstract: The system disclosed uses policy directives to establish and regulate connectivity on a computer system. A policy profile is applied to the computer system that determines how and when connections can be made, and the devices on which the connections can be made.