Multiplex communications – Data flow congestion prevention or control – Flow control of data transmission through a network
Reexamination Certificate
2004-01-21
2008-10-14
Kizou, Hassan (Department: 2619)
Multiplex communications
Data flow congestion prevention or control
Flow control of data transmission through a network
C726S023000
Reexamination Certificate
active
07436770
ABSTRACT:
The packet rate limiting method and system is used for detecting and blocking the effects of DoS attacks on IP networks. The method uses an ACL counter that stores an action parameter in the first 3 most significant bits and uses 13 bits as a packet counter. A rate limit is enforced by setting the packet counter to an initial value, and resetting this value at given intervals of time. The action parameter enables the ACL to accept or deny packets based on this rate limit. If the number of packets in the incoming flow saturates the packet counter before the reset time, the packets are denied access to the network until the counter is next reset. The denied packets may be just discarded or may be extracted for further examination.
REFERENCES:
patent: 5432784 (1995-07-01), Ozveren
patent: 6643256 (2003-11-01), Shimojo et al.
patent: 6728270 (2004-04-01), Meggers et al.
patent: 6851008 (2005-02-01), Hao
patent: 7177311 (2007-02-01), Hussain et al.
patent: 7269850 (2007-09-01), Govindarajan et al.
patent: 2002/0009079 (2002-01-01), Jungck et al.
patent: 2003/0023733 (2003-01-01), Lingafelt et al.
patent: 2003/0070096 (2003-04-01), Pazi et al.
patent: 2004/0003284 (2004-01-01), Campbell et al.
patent: 2004/0062200 (2004-04-01), Kesavan
patent: 2004/0066746 (2004-04-01), Matsunaga
patent: 2004/0193892 (2004-09-01), Tamura et al.
patent: 2004/0252693 (2004-12-01), Cheriton et al.
patent: 2005/0050358 (2005-03-01), Lin
patent: 2006/0143709 (2006-06-01), Brooks et al.
Williamson, M.M., “Throttling viruses: restricting propagation to defeat malicious mobile code,” Computer Security Applications Conference, 2002. Proceedings. 18th Annual , vol., No., pp. 61-68, 2002.
Gordeev, “Intrusion Detection: Techniques and Approaches”, Aug. 22, 2003, all pages.
Heinanen, J., RFC 2697—A Single Rate Three Color Marker, The Internet Society, Sep. 1999.
Heinanen, J., RFC 2698—A Two Rate Three Color Marker, The Internet Society Sep. 1999.
Grah Adrian
Kostic Predrag
Liu Herman Ho Ming
Nahum Shay
Sterne Jason
Alcatel Lucent
Kizou Hassan
Rutkowski Jeffrey M
LandOfFree
Metering packet flows for limiting effects of denial of... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Metering packet flows for limiting effects of denial of..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Metering packet flows for limiting effects of denial of... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4014784