등록 패킷에 포함된 정보를 이용한 네트워크 공격을 차단하는 방법 및 그 장치

초록: A method of blocking network attacks using information included in a packet, and an apparatus thereof are provided. The method includes: receiving a packet containing information on the packet including at least information on a source from which the packet is sent, and information on a destination to which the packet is sent; and extracting the information on the packet included in the packet, comparing the information with a predetermined access control condition, and blocking or passing the packet. By doing so, a packet being transferred with a routing header capable of bypassing a security device as in an Internet Protocol version 6 (IPv6) network can be appropriately blocked or passed. Accordingly, security problems caused by the routing header can be overcome, and as a result, usage of the routing header can be promoted. Also, since a routing header can be used for transmitting a packet along a desired path, the routing header can be widely used without security problems, and can ease network security concerns relating to IPv6 networks that are expected to come into increasingly wide use.

KSP 제안 키워드: Desired path, IPv6 network, Internet Protocol Version 6, Internet protocol(IP), Network Attacks, Routing header, Security problems, Using information, access control, control condition, network security, security concerns

패밀리 특허 목록
구분	특허	출원국	KIPRIS
등록	패킷에 포함된 정보를 이용하여 네트워크 공격을 차단하는 방법 및 그 장치	대한민국