Information security – Access control or authentication – Network
Reexamination Certificate
2008-04-22
2008-04-22
Jung, David-Y Au (Department: 2134)
Information security
Access control or authentication
Network
C726S023000, C726S027000
Reexamination Certificate
active
10613159
ABSTRACT:
The invention relates to a method for preventing TCP SYN package flood attack, and belongs to the computer network security field. First, the firewall receives a client a TCP SYN connection request package, and responses, as an agent of the server, an acknowledgement of the TCP SYN connection request package with zero window size to the client. Then, the firewall records information about the TCP SYN connection request package and checks whether the connection request is legal. When the firewall has received a TCP SYN response package from the server, it returns an acknowledgement of said TCP SYN response package. At the same time, the firewall, as an agent of the server, sends an acknowledgement packet with nonzero window size to the client for initiating data transmission from the client. After that, data packets are transferred between the client and the server forwarded by the firewall as an agent. With the invention method, it can guarantee that protected servers in a computer network will not be destroyed by TCP SYN package flood attack.
REFERENCES:
(http://www.cisco.com/univercd/cc/td/doc/product/software/ios112/intercpt.htm.
(http://www.cisco.com/univercd/cc/td/doc/product/software/ios112/intercpt.htm, no date.
A New Method to Resist Flooding Attacks in Ad Hoc Networks Shaomei Li; Qiang Liu; Hongchang Chen; Mantang Tan; Wireless Communications, Networking and Mobile Computing, 2006. WiCOM 2006.International Conference on Sep. 22-24, 2006 pp. 1-4.
A Detective Method for SYN Flooe Attacks Nakashima, T.; Ohsima, S.; Innovative Computing, Information and Control, 2006. ICICIC '06. First International Conference on vol. 1, Aug. 30-01, 2006 pp. 48-51.
An active detecting method against SYN flooding attack Bin Xiao; Wei Chen; Yanxiang He; Sha, E.H.-M.; Parallel and Distributed Systems, 2005. Proceedings. 11th International Conference on vol. 1, Jul. 20-22, 2005 pp. 709-715 vol. 1.
Guo Jingze
Jiang Hongzhou
Li Minglei
Qi Yan
Teng Xindong
Huawei Technologies Co. Ltd.
Jung David-Y Au
LandOfFree
Method for preventing transmission control protocol... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method for preventing transmission control protocol..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method for preventing transmission control protocol... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3926273