Information security – Access control or authentication – Network
Reexamination Certificate
2003-03-12
2009-02-10
Zand, Kambiz (Department: 2134)
Information security
Access control or authentication
Network
C726S022000
Reexamination Certificate
active
07490351
ABSTRACT:
A method of preventing ARP broadcast flooding of subscriber access links where an ARP packet is received at a subscriber network edge device and the source and destination information contained within the ARP packet is compared to address lease information for subscribers of a subscriber network. If the destination information obtained from the ARP packet is not associated with an address lease assigned to one of the subscribers, the network device only broadcasts the ARP packet to network uplinks. The method further includes preventing subscribers of a subscriber network from spoofing ARP responses by responding to an ARP request packet with an ARP response packet containing false information. The ARP response packet information is compared to address lease information for the transmitting subscriber. If the source information obtained from the ARP response packet corresponds to address lease information of the transmitting subscriber the ARP response packet is accordingly forwarded.
REFERENCES:
patent: 6717944 (2004-04-01), Bryden et al.
patent: 6847649 (2005-01-01), Sutanto
patent: 2001/0042200 (2001-11-01), Lamberton et al.
patent: 2002/0010869 (2002-01-01), Kim
patent: 2003/0037163 (2003-02-01), Kitada et al.
patent: 2003/0043853 (2003-03-01), Doyle et al.
patent: 2003/0152067 (2003-08-01), Richmond et al.
Computer Dictionary, 1997, Microsoft Press, 3rd edition, p. 30.
Plummer, David C., An Ethernet Address Resolution Protocol—or—Converting Network Protocol Addresses to 48.bit Ethernet Address for Transmission on Ethernet Hardware, Nov. 1982, pp. 1-10.
Ferguson, P. et al, Network Ingress Filtering: Defeating Denial of Service Attacks which employ IP Source Address Spoofing, May 2000, pp. 1-10.
Patrick, M., DHCP Relay Agent Information Option, Jan. 2001, pp. 1-14.
Wikipedia, “Address Resolution Protocol”, 4 pages. Downloaded Jun. 13, 2007 from http://en.wikipedia.org/Address—Resolution—Protocol.
Altarac Henri
Caves Evan John
Ilgun Koral
Blakely , Sokoloff, Taylor & Zafman LLP
Lipman Jacob
Occam Networks
Zand Kambiz
LandOfFree
Controlling ARP traffic to enhance network security and... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Controlling ARP traffic to enhance network security and..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Controlling ARP traffic to enhance network security and... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4106176