Multiplex communications – Data flow congestion prevention or control – Control of data admission to the network
Reexamination Certificate
2007-05-07
2009-02-17
Chan, Wing F (Department: 2419)
Multiplex communications
Data flow congestion prevention or control
Control of data admission to the network
C726S022000, C709S223000
Reexamination Certificate
active
07492713
ABSTRACT:
A network router includes a set of interface cards to receive packets from a network, and a set of accounting modules to calculate flow statistics for the packets. The router further includes a control unit to adaptively update routing information in response to the calculated flow statistics, and to route the packets in accordance with the routing information. The control unit identifies potentially malicious packet flows for the received packets based on the flow statistics, and applies an intercept filter to intercept the packets of the identified packet flows. The control unit analyzes the intercepted packets in real-time to determine the presence of a network event, and updates the routing information based on the determination, e.g., by terminating routing for packets associated with malicious packet flows. In this manner, the router may adaptively respond to network events, such as network security violations.
REFERENCES:
patent: 3962681 (1976-06-01), Requa et al.
patent: 4032899 (1977-06-01), Jenny et al.
patent: 4600319 (1986-07-01), Everett, Jr.
patent: 5408539 (1995-04-01), Finlay et al.
patent: 5490252 (1996-02-01), Macera et al.
patent: 5509123 (1996-04-01), Dobbins et al.
patent: 5568471 (1996-10-01), Hershey et al.
patent: 6011795 (2000-01-01), Varghese et al.
patent: 6018765 (2000-01-01), Durana et al.
patent: 6148335 (2000-11-01), Haggard et al.
patent: 6182146 (2001-01-01), Graham-Cumming, Jr.
patent: 6321338 (2001-11-01), Porras et al.
patent: 6392996 (2002-05-01), Hjalmtysson
patent: 6499088 (2002-12-01), Wexler et al.
patent: 6563796 (2003-05-01), Saito
patent: 6590898 (2003-07-01), Uzun
patent: 6594268 (2003-07-01), Aukia et al.
patent: 6598034 (2003-07-01), Kloth
patent: 6735201 (2004-05-01), Mahajan et al.
patent: 6751663 (2004-06-01), Farrell et al.
patent: 6826713 (2004-11-01), Beesley et al.
patent: 6870817 (2005-03-01), Dolinar et al.
patent: 6970943 (2005-11-01), Subramanian et al.
patent: 6975628 (2005-12-01), Johnson et al.
patent: 6983294 (2006-01-01), Jones et al.
patent: 6985956 (2006-01-01), Luke et al.
patent: 7114008 (2006-09-01), Jungck et al.
patent: 7185368 (2007-02-01), Copeland, III
patent: 7203740 (2007-04-01), Putzolu et al.
patent: 7362763 (2008-04-01), Wybenga et al.
patent: 2002/0126621 (2002-09-01), Johnson et al.
patent: 2002/0141343 (2002-10-01), Bays
patent: 2003/0005145 (2003-01-01), Bullard
patent: 2003/0120769 (2003-06-01), McCollom et al.
patent: 2003/0214913 (2003-11-01), Kan et al.
patent: WO 98/36532 (1998-08-01), None
patent: WO 02/84920 (2002-10-01), None
“The CAIDA Web Site,” www.caida.org.
“About Endace,” www.endace.com.
“Cisco IOS NetFlow,” www.cisco.com/warp/public/732/Tech
mp
etflow/index.shtml.
U.S. Appl. No. 10/188,567, entitled “Adaptive Network Flow Analysis”, filed Jul. 2, 2002, Scott Mackie.
U.S. Appl. No. 10/916,021, entitled “Stateful Firewall Protection For Control Plane Traffic Within A Network Device”, filed Aug. 11, 2004, Krohn et al.
U.S. Appl. No. 10/228,114, entitled “Network Router Having Integrated Flow Accounting and Packet Interception”, filed Aug. 26, 2002, Woo et al.
U.S. Appl. No. 10/241,785, entitled “Rate-Controlled Transmission of Traffic Flow Information”, filed Sep. 10, 2002, Sandeep Jain.
U.S. Appl. No. 10/228,150, entitled “Network Device Having Accounting Service Card,” filed Aug. 22, 2002, Woo, Hsien-Chung.
“Well-Known TCP Port Number,” www.webopedia.com, 2004, 3 pages.
“TCP Packet Field Descriptions,” www.ipanalyser.co.uk, Analyser Sales Ltd., Copyright 2003, 2 pages.
Michael Egan, “Decomposition of a TCP Packet,” www.passwall.com, 3 pages, Aug. 7, 2000.
Mark Gibbs, “A Guide to Original SYN,” www.nwfusion.com, Network World, Nov. 2000, 4 pages.
“Sample TCP/IP Packet,” www.passwall.com, Version 0.0.0 @ 03:55/Aug. 7, 2000, Copyright 2002, 6 pages.
D.J. Bernstein, “SYN Cookies,” http://cr.yp.to/syncookies.html, Oct. 2003, 3 pages.
Jonathan Lemon, “Resisting SYN Flood DoS Attacks with a SYN Cache,” http://people.freebsd.org/˜jlemon/papers/syncache.pdf, 9 pages.
Stuart Staniford, et al., “Practical Automated Detection of Stealthy Portscans,” http://downloads.securityfocus.com/library/spice-ccs2000.pdf, 16 pages.
Weaver, A.C. et al., “A Real-Time Monitor for Token Ring Networks,” Military Communications Conference, 1989. MILCOM '89, Oct. 1989, vol. 3, pp. 794-798.
Dini, P. et al., “Performance Evaluation for Distributed System Components,” Proceedings of IEEE Second International Workshop on Systems Management, Jun. 1996, pp. 20-29.
Integrated Services Adapter, 2000, Cisco Systems, Data Sheet, pp. 1-6, http://www.cisco.com/warp/public/cc/pd/ifaa/svaa/iasvaa/prodlit/ism2—ds.pdf.
Cartee Wendy R.
Joe Truman
Kalra Sanjay
Turner Stephen W.
Woo Hsien-Chung
Chan Wing F
Juniper Networks, Inc.
Shumaker & Sieffert P.A.
Smith Marcus R
LandOfFree
Adaptive network router does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Adaptive network router, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Adaptive network router will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4108825