Registered METHOD OF BLOCKING NETWORK ATTACKS USING PACKET INFORMATION AND APPARATUS THEREOF

Inventors: Lim Jae Deok, Young Ho Kim, Chung Bo-Heung, Kim Ki Young, Ryu Seung Ho

Project Code: 05MK1100, The Development of High Performance Network Security System, Sohn Sung Won

Abstract: A method of blocking network attacks using information included in a packet, and an apparatus thereof are provided. The method includes: receiving a packet containing information on the packet including at least information on a source from which the packet is sent, and information on a destination to which the packet is sent; and extracting the information on the packet included in the packet, comparing the information with a predetermined access control condition, and blocking or passing the packet. By doing so, a packet being transferred with a routing header capable of bypassing a security device as in an Internet Protocol version 6 (IPv6) network can be appropriately blocked or passed. Accordingly, security problems caused by the routing header can be overcome, and as a result, usage of the routing header can be promoted. Also, since a routing header can be used for transmitting a packet along a desired path, the routing header can be widely used without security problems, and can ease network security concerns relating to IPv6 networks that are expected to come into increasingly wide use.

KSP Keywords: Desired path, IPv6 network, Internet Protocol(IP), Internet Protocol Version 6, Network Attack, Routing header, Security problems, Using information, access control, control condition, network Security, security concerns

패밀리 특허 목록
Status	Patent	Country	KIPRIS
Registered	패킷에 포함된 정보를 이용하여 네트워크 공격을 차단하는 방법 및 그 장치	KOREA