Pre-Grant Publication Number: 20070271363
Please help the USPTO examine the application by evaluating the relevance of the publicly submitted prior art to the patent application.
Peer To Patent forwards the Top 10 most relevant prior art submissions and their annotations to the USPTO.
Review this prior art and click on the thumbs up (or down) to indicate whether this submission should be forwarded to the USPTO.
If you login then you can add an annotation by typing in the box at the bottom of the screen to comment on the relevance of the prior art to the claims of the patent application.
Review this prior art and click on the thumbs up (or down) to indicate whether this submission should be forwarded to the USPTO.
If you login then you can add an annotation by typing in the box at the bottom of the screen to comment on the relevance of the prior art to the claims of the patent application.
Prior Art Detail
Summary / Description
| Summary / Description | The reference describes a system and method for providing distributed security of a network. The system includes several device profilers (corresponding to network scanners claimed in ‘363), which are placed at different locations of a network to assess vulnerabilities. Each device profiler identifies the hosts on the network, and characteristics such as operating system and applications running on the hosts. The system includes a centralized correlation server, which stores the determined vulnerabilities of the network. |
Basic Information
| Type of Prior Art | Issued Patents - US |
| Country | United States of America |
| Patent/Application # | 7,181,769 |
| Kind Code | United States (US) - United STATES Patent - A |
| Patentee Name | nCircle Network Security, Inc. |
| Relevant Pages, Columns, or Lines | |
| URL | |
| Filing Date | June 6, 2003 |
| Additional Information | I am quoting the filing date of this patent reference in the drop-down for publication date. [Continued in notes section because of the word limit restriction] |
Notes / To Do
| Notes | This is because this patent was filed with a non-publication request on June 6, 2003. Therefore, the ususal 18-month publication did not happen. Still, it may be considered as prior art under 102(e). |
Excerpt
Excerpt [Abstract] Several device profilers are placed at different locations of a network to assess vulnerabilities from different perspectives.
[Column 6, lines 42-44] The device profiler 165 preferably comprises an I/O module 310, a control module 320, and an identification subsystem 330.
[Column 6, lines 56-67] In operation, the control module 320 identifies hosts 191 on the network and characteristics of the hosts 191 and use the characteristics to determine the host's vulnerabilities. In one embodiment, the control module 320 uses ping requests to identify hosts on the network and TCP connection attempts to identify open ports of the hosts. Based on this information, the control module 320 sends messages to the identification subsystem 330 instructing it to carry out various analyses to identify and verify vulnerabilities of hosts 191 on the network. Ultimately, the control module 320 generates and sends a list of these vulnerabilities to the centralized correlation server 175. |
Relevance
Claims
1
Relevance
The following text describes the use of multiple device profilers (corresponding to first and second network scanners in claim 1 of '363). The text below also describes the scanning of network using ping requests to identify hosts, and storage of vulnerabilities in a centralized repository. It may be inferred by anybody skilled in the art that the vulnerabilities will be stored along with the MAC/IP address of the identified host in the centralized repository. [Abstract] Several device profilers are placed at different locations of a network to assess vulnerabilities from different perspectives. [Column 6, lines 42-44] The device profiler 165 preferably comprises an I/O module 310, a control module 320, and an identification subsystem 330. [Column 6, lines 56-67] In operation, the control module 320 identifies hosts 191 on the network and characteristics of the hosts 191 and use the characteristics to determine the host's vulnerabilities. In one embodiment, the control module 320 uses ping requests to identify hosts on the network and TCP connection attempts to identify open ports of the hosts. Based on this information, the control module 320 sends messages to the identification subsystem 330 instructing it to carry out various analyses to identify and verify vulnerabilities of hosts 191 on the network. Ultimately, the control module 320 generates and sends a list of these vulnerabilities to the centralized correlation server 175.
The following text describes the use of multiple device profilers (corresponding to first and second network scanners in claim 1 of '363). The text below also describes the scanning of network using ping requests to identify hosts, and storage of vulnerabilities in a centralized repository. It may be inferred by anybody skilled in the art that the vulnerabilities will be stored along with the MAC/IP address of the identified host in the centralized repository. [Abstract] Several device profilers are placed at different locations of a network to assess vulnerabilities from different perspectives. [Column 6, lines 42-44] The device profiler 165 preferably comprises an I/O module 310, a control module 320, and an identification subsystem 330. [Column 6, lines 56-67] In operation, the control module 320 identifies hosts 191 on the network and characteristics of the hosts 191 and use the characteristics to determine the host's vulnerabilities. In one embodiment, the control module 320 uses ping requests to identify hosts on the network and TCP connection attempts to identify open ports of the hosts. Based on this information, the control module 320 sends messages to the identification subsystem 330 instructing it to carry out various analyses to identify and verify vulnerabilities of hosts 191 on the network. Ultimately, the control module 320 generates and sends a list of these vulnerabilities to the centralized correlation server 175.
Claim Chart
All
