Processing

Please wait...

Settings

Settings

Goto Application

1. WO2020065234 - METHODS FOR PROTECTING A CLIENT DOMAIN, CORRESPONDING CLIENT NODE, SERVER AND COMPUTER PROGRAMS

Publication Number WO/2020/065234
Publication Date 02.04.2020
International Application No. PCT/FR2019/052281
International Filing Date 26.09.2019
IPC
H04L 29/06 2006.01
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
29Arrangements, apparatus, circuits or systems, not covered by a single one of groups H04L1/-H04L27/136
02Communication control; Communication processing
06characterised by a protocol
H04L 12/801 2013.01
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
12Data switching networks
70Packet switching systems
801Flow control or congestion control
CPC
H04L 47/10
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
47Traffic regulation in packet switching networks
10Flow control or congestion control
H04L 63/0263
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
63Network architectures or network communication protocols for network security
02for separating internal from external traffic, e.g. firewalls
0227Filtering policies
0263Rule management
H04L 63/1408
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
63Network architectures or network communication protocols for network security
14for detecting or protecting against malicious traffic
1408by monitoring network traffic
H04L 63/1458
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
63Network architectures or network communication protocols for network security
14for detecting or protecting against malicious traffic
1441Countermeasures against malicious traffic
1458Denial of Service
H04L 63/20
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
63Network architectures or network communication protocols for network security
20for managing network security; network security policies in general
Applicants
  • ORANGE [FR]/[FR]
Inventors
  • BOUCADAIR, Mohamed
  • JACQUENET, Christian
Priority Data
185904528.09.2018FR
Publication Language French (FR)
Filing Language French (FR)
Designated States
Title
(EN) METHODS FOR PROTECTING A CLIENT DOMAIN, CORRESPONDING CLIENT NODE, SERVER AND COMPUTER PROGRAMS
(FR) PROCÉDÉS DE PROTECTION D'UN DOMAINE CLIENT, NŒUD CLIENT, SERVEUR ET PROGRAMMES D'ORDINATEUR CORRESPONDANTS
Abstract
(EN)
The invention relates to a method for protecting a client domain, for example against a computing attack, implemented in a client node of the client domain, said method comprising: - the discovery (21) of at least one other client node of said client domain, so-called discovered node; - the detection (22) of a conflict between at least two management rules for the traffic associated with said client domain; and - the resolution (23) of the detected conflict, comprising: o if one of said rules has been installed by a said discovered node, the modification of said rule or of a state associated with said discovered node; o otherwise, the obtaining, originating from a said discovered node, of an identification information item in respect of at least one node of the client domain that has installed one of said rules; the detection and/or the resolution of said conflict using information items obtained during the discovery of said at least one other node of the client domain.
(FR)
L'invention concerne un procédé de protection d'un domaine client, par exemple contre une attaque informatique, mis en œuvre dans un nœud client du domaine client, ledit procédé comprenant : - la découverte (21) d'au moins un autre nœud client dudit domaine client, dit nœud découvert; - la détection (22) d'un conflit entre au moins deux règles de gestion du trafic associé audit domaine client; et - la résolution (23) du conflit détecté, comprenant : o si une desdites règles a été installée par un dit nœud découvert, la modification de ladite règle ou d'un état associé audit nœud découvert; o sinon, l'obtention, en provenance d'un dit nœud découvert, d'une information d'identification d'au moins un nœud du domaine client ayant installé une desdites règles; la détection et/ou la résolution dudit conflit utilisant des informations obtenues lors de la découverte dudit au moins un autre nœud du domaine client.
Latest bibliographic data on file with the International Bureau