Claims
- 1. A telephony security system located within an enterprise, at one or more of said enterprise's locations, for monitoring and/or controlling calls, wherein said calls is understood to refer to an inbound call, an outbound call, or any combination thereof, between end-user stations within said enterprise and said end-user stations' respective circuits into a Public Switched Telephone Network (PSTN), said system comprising:
one or more rules controlled by a system administrator, said one or more rules designating one or more actions, said one or more actions to include allowing or denying a call, said one or more actions to be performed based upon at least one attribute of said call; one or more line sensors, said one or more line sensors including:
determining said at least one attribute of said call, and performing said one or more actions based upon said at least one attribute of said call; said one or more line sensors being constructed and arranged to not interrupt said call unless designated to do so in said one or more rules.
- 2. The system of claim 1 wherein said one or more rules designating said one or more actions further includes one or more actions selected from the group consisting of:
redirecting said call, logging said call, recording said call, encrypting said call, generating a report, providing an alert, removing a number, wherein said number is understood to refer to a source number of said call, a destination number of said call, an alias or identifier associated with said call, or any combination thereof, from a current group associated with said number and placing said number into a different group not previously associated with said number, monitoring said call, a plurality of said call, or any combination thereof, for one or more patterns of interest, monitoring said call for one or more data of interest, authenticating said call for remote access, and monitoring said call for one or more sequences of digital data.
- 3. The system of claim 1 wherein said determination of said at least one attribute of said call includes determining one or more attributes selected from the group consisting of:
direction of said call, source number of said call, destination number of said call, type of said call, PBX trunk group through which said call is processed, channel through which said call is processed, date said call starts, time said call starts, digits dialed before said call connects, digits dialed prior to a base phone number, digits dialed after said base phone number, caller ID identifier, time said call connects, sequences of digital data, protocol and/or characteristics of said protocol used for said call, host-based software used for said call, digits dialed after said call connects, date said call ends, and time said call ends.
- 4. The system of claim 1 wherein said determination of said at least one attribute of said call includes determining at least one type of said call selected from the group consisting of:
voice, fax, modem, STU-III, wideband, wideband video, busy, unanswered, and undetermined.
- 5. The system of claim 1 wherein said one or more actions includes generating at least one report selected from the group consisting of:
post-event report, schedule-generated report, ad hoc report, batch analysis report, trend report, and difference/comparison report.
- 6. The system of claim 1 wherein said one or more actions includes providing at least one alert selected from the group consisting of:
electronic mail notification, pager notification, console messaging, and network management protocol trap notification.
- 7. The system of claim 1 wherein said determination of said at least one attribute of said call includes one or more processes selected from the group consisting of:
monitoring call progress, decoding caller identification, decoding automatic number identification, reception of digital line protocol, decoding, demodulation, detection of pulse dial, detection of tone, matching patterns, recognition of spoken words, recognition of words spoken in foreign languages, voice decompression, detection of voice compression, detection of encryption, decryption, translation of call addresses, and detection of voice activity.
- 8. The system of claim 1 wherein said one or more line sensors are constructed and arranged so as to monitor and/or control said calls into and/or out of said enterprise on a per-call basis.
- 9. The system of claim 1 wherein said one or more actions includes redirecting said call and/or a copy of said call to an apparatus selected from the group consisting of:
listening station, honeypot, network intrusion detection system, recorder, said end-user station different from a caller's intended destination of said call, encrypter/decrypter, data of interest detector, pattern of interest detector, remote access authenticator, and digital data sequence detector.
- 10. A method of monitoring and/or controlling call access between an enterprise's end-user stations and said end-user stations' respective circuits into a Public Switched Telephone Network (PSTN), said method comprising the steps of:
using a system administrator for defining one or more rules, said one or more rules designating one or more actions, said one or more actions including at least allowing or denying said call access, said one or more actions to be performed based upon at least one attribute of a call, wherein said call is understood to refer to an inbound call, an outbound call, or any combination thereof;
determining said at least one attribute of said call; and performing said one or more actions based upon said at least one attribute of said call,
wherein said call is not interrupted unless said one or more actions designate to interrupt said call.
- 11. The method of claim 10 wherein said one or more rules designating said one or more actions further includes one or more actions selected from the group consisting of:
redirecting said call, logging said call, recording said call, encrypting said call, generating a report, providing an alert, removing a number, wherein said number is understood to refer to a source number of said call, a destination number of said call, an alias or identifier associated with said call, or any combination thereof, from a current group associated with said number and placing said number into a different group not previously associated with said number, monitoring said call, a plurality of said call, or any combination thereof, for one or more patterns of interest, monitoring said call for one or more data of interest, authenticating said call for remote access, and monitoring said call for one or more sequences of digital data.
- 12. The method of claim 10 wherein said determination of said at least one attribute of said call includes determining one or more attributes selected from the group consisting of:
direction of said call, source number of said call, destination number of said call, type of said call, PBX trunk group through which said call is processed, channel through which said call is processed, date said call starts, time said call starts, digits dialed before said call connects, digits dialed prior to a base phone number, digits dialed after said base phone number, caller ID identifier, time said call connects, sequences of digital data, protocol and/or characteristics of said protocol used for said call, host-based software used for said call, digits dialed after said call connects, date said call ends, and time said call ends.
- 13. The method of claim 10 wherein said determination of said at least one attribute of said call includes determining at least one type of said call selected from the group consisting of:
voice, fax, modem, STU-III, wideband, wideband video, busy, unanswered, and undetermined.
- 14. The method of claim 10 wherein said definition of said one or more rules further includes said designation of one or more actions to be performed based on at least one determined result of said one or more actions previously performed in association with said call, said one or more actions to be performed based on at least one determined result includes one or more actions selected from the group consisting of:
allowing said call, denying said call, redirecting said call, logging said call, recording said call, encrypting said call, generating a report, providing an alert, removing a number, wherein said number is understood to refer to a source number of said call, a destination number of said call, an alias or identifier associated with said call, or any combination thereof, from a current group associated with said number and placing said number into a different group not previously associated with said number, monitoring said call, a plurality of said call, or any combination thereof, for one or more patterns of interest, monitoring said call for one or more data of interest, authenticating said call for remote access, and monitoring said call for one or more sequences of digital data.
- 15. The method of claim 10 wherein a management server, one or more peripheral devices, or any combination thereof, performs one or more actions selected from the group consisting of:
logging said call, recording said call, generating a report, providing an alert, removing a number, wherein said number is understood to refer to a source number of said call, a destination number of said call, an alias or identifier associated with said call, or any combination thereof, from a current group associated with said number and placing said number into a different group not previously associated with said number, monitoring said call, a plurality of said call, or any combination thereof, for one or more patterns of interest, monitoring said call for one or more data of interest, and monitoring said call for one or more sequences of digital data.
- 16. The method of claim 10 wherein said performance of said one or more actions may be preempted and/or complemented by said system administrator with one or more actions selected from the group consisting of:
allowing said call, denying said call, redirecting said call, logging said call, recording said call, encrypting said call, generating a report, providing an alert, removing a number, wherein said number is understood to refer to a source number of said call, a destination number of said call, an alias or identifier associated with said call, or any combination thereof, from a current group associated with said number and placing said number into a different group not previously associated with said number, monitoring said call, a plurality of said call, or any combination thereof, for one or more patterns of interest, monitoring said call for one or more data of interest, authenticating said call for remote access, and monitoring said call for one or more sequences of digital data.
- 17. The method of claim 10 wherein said one or more actions includes generation of at least one report selected from the group consisting of:
post-event report, schedule-generated report, ad hoc report, batch analysis report, trend report, and difference/comparison report.
- 18. The method of claim 11 wherein said one or more actions includes provision of at least one alert selected from the group consisting of:
electronic mail notification, pager notification, console messaging, and network management protocol trap notification.
- 19. The method of claim 10 wherein said determination of said at least one attribute of said call includes one or more processes selected from the group consisting of:
monitoring call progress, decoding caller identification, decoding automatic number identification, reception of digital line protocol, decoding, demodulation, detection of pulse dial, detection of tone, matching patterns, recognition of spoken words, recognition of words spoken in foreign languages, voice decompression, detection of voice compression, detection of encryption, decryption, translation of call addresses, and detection of voice activity.
- 20. The method of claim 10 wherein said determination of said at least one attribute of said call and said performance of said one or more actions is executed on a per-call basis.
- 21. The method of claim 10 wherein said one or more actions includes redirecting said call and/or a copy of said call to an apparatus selected from the group consisting of:
listening station, honeypot, network intrusion detection system, recorder, said end-user station different from a caller's intended destination of said call, encrypter/decrypter, data of interest detector, pattern of interest detector, remote access authenticator, and digital data sequence detector.
- 22. A system for monitoring and/or controlling call access between an enterprise's end-user stations and said end-user stations' respective circuits into a Public Switched Telephone Network (PSTN), said system comprising:
means for defining one or more rules, said one or more rules designating one or more actions to include allowing or denying said call access, said one or more actions to be performed based upon at least one attribute of a call, wherein said call is understood to refer to an inbound call, an outbound call, or any combination thereof, means for determining said at least one attribute of said call; and means for performing said one or more actions based upon said at least one attribute of said call,
wherein said means for performing said one or more actions does not interrupt said call unless designated to do so in said one or more rules.
- 23. The system of claim 22 wherein said one or more rules designating said one or more actions further includes one or more actions selected from the group consisting of:
redirecting said call, logging said call, recording said call, encrypting said call, generating a report, providing an alert, ‘removing a number, wherein said number is understood to refer to a source number of said call, a destination number of said call, an alias or identifier associated with said call, or any combination thereof, from a current group associated with said number and placing said number into a different group not previously associated with said number, monitoring said call, a plurality of said call, or any combination thereof, for one or more patterns of interest, monitoring said call for one or more data of interest, authenticating said call for remote access, and monitoring said call for one or more sequences of digital data.
- 24. The system of claim 22 wherein said means for determining said at least one attribute of said call includes determining one or more attributes selected from the group consisting of:
direction of said call, source number of said call, destination number of said call, type of said call, PBX trunk group through which said call is processed, channel through which said call is processed, date said call starts, time said call starts, digits dialed before said call connects, digits dialed prior to a base phone number, digits dialed after said base phone number, caller ID identifier, time said call connects, sequences of digital data, protocol and/or characteristics of said protocol used for said call, host-based software used for said call, digits dialed after said call connects, date said call ends, and time said call ends.
- 25. The system of claim 22 wherein said means for determining said at least one attribute of said call includes determining at least one type of said call selected from the group consisting of:
voice, fax, modem, STU-III, wideband, wideband video, busy, unanswered, and undetermined.
- 26. The system of claim 22 wherein said means for defining said one or more rules further includes designating one or more actions to be performed based on at least one determined result of said one or more actions previously performed in association with said call, said one or more actions to be performed based on at least one determined result includes one or more actions selected from the group consisting of:
allowing said call, denying said call, redirecting said call, logging said call, recording said call, encrypting said call, generating a report, providing an alert, removing a number, wherein said number is understood to refer to a source number of said call, a destination number of said call, an alias or identifier associated with said call, or any combination thereof, from a current group associated with said number and placing said number into a different group not previously associated with said number, monitoring said call, a plurality of said call, or any combination thereof, for one or more patterns of interest, monitoring said call for one or more data of interest, authenticating said call for remote access, and monitoring said call for one or more sequences of digital data.
- 27. The system of claim 22 wherein a management server, one or more peripheral devices, or any combination thereof, performs one or more actions selected from the group consisting of:
logging said call, recording said call, generating a report, providing an alert, removing a number, wherein said number is understood to refer to a source number of said call, a destination number of said call, an alias or identifier associated with said call, or any combination thereof, from a current group associated with said number and placing said number into a different group not previously associated with said number, monitoring said call, a plurality of said call, or any combination thereof, for one or more patterns of interest, monitoring said call for one or more data of interest, and monitoring said call for one or more sequences of digital data.
- 28. The system of claim 22 further including means for preempting and/or complementing performance of said one or more actions with one or more actions selected from the group consisting of:
allowing said call, denying said call, redirecting said call, logging said call, recording said call, encrypting said call, generating a report, providing an alert, removing a number, wherein said number is understood to refer to a source number of said call, a destination number of said call, an alias or identifier associated with said call, or any combination thereof, from a current group associated with said number and placing said number into a different group not previously associated with said number, monitoring said call, a plurality of said call, or any combination thereof, for one or more patterns of interest, monitoring said call for one or more data of interest, authenticating said call for remote access, and monitoring said call for one or more sequences of digital data.
- 29. The system of claim 22 wherein said one or more actions includes generating at least one report selected from the group consisting of:
post-event report, schedule-generated report, ad hoc report, batch analysis report, trend report, and difference/comparison report.
- 30. The system of claim 22 wherein said one or more actions includes providing at least one alert selected from the group consisting of:
electronic mail notification, pager notification, console messaging, and network management protocol trap notification.
- 31. The system of claim 22 wherein said means for determining said at least one attribute of said call includes means for one or more processes selected from the group consisting of:
monitoring call progress, decoding caller identification, decoding automatic number identification, reception of digital line protocol, decoding, demodulation, detection of pulse dial, detection of tone, matching patterns, recognition of spoken words, recognition of words spoken in foreign languages, voice decompression, detection of voice compression, detection of encryption, decryption, translation of call addresses, and detection of voice activity.
- 32. The system of claim 22 wherein said means for determining said at least one attribute of said call and said means for performing said one or more actions is constructed and arranged so as to monitor and/or control said call access into and/or out of said enterprise on a per-call basis.
- 33. The system of claim 22 wherein said one or more actions includes redirecting said call and/or a copy of said call to an apparatus selected from the group consisting of:
listening station, honeypot, network intrusion detection system, recorder, said end-user station different from a caller's intended destination of said call, encrypter/decrypter, data of interest detector, pattern of interest detector, remote access authenticator, and digital data sequence detector.
CROSS-REFERENCE TO RELATED APPLICATION
[0001] This application is a continuation of U.S. patent application Ser. No. 09/907,089 entitled TELEPHONY SECURITY SYSTEM filed Jul. 17, 2001, assigned to the assignee of the present application and incorporated by reference herein.
Continuations (1)
|
Number |
Date |
Country |
Parent |
09907089 |
Jul 2001 |
US |
Child |
10870395 |
Jun 2004 |
US |