Prevention of denial of service attacks

Details Prevention of denial of service attacks Prevention of denial of service attacks

2007-08-07

2007-08-07

Duong, Frank (Department: 2616)

Multiplex communications

Pathfinding or routing

Switching a message which includes an address header

C709S228000

Reexamination Certificate

active

10196541

ABSTRACT:
Denial of service type attacks are attacks where the nature of a system used to establish communication sessions is exploited to prevent the establishment of sessions. For example, to establish a Transmission Control Protocol (TCP)/Internet Protocol (IP) communication session, a three-way handshake is performed between communication endpoints. When a connection request is received, resources are allocated towards establishing the communication session. Malicious entities can attack the handshake by repeatedly only partially completing the handshake, causing the receiving endpoint to run out of resources for allocating towards establishing sessions, thus preventing legitimate connections. Illustrated embodiments overcome such attacks by delaying allocating resources until after the three-way handshake is successfully completed.

REFERENCES:
patent: 5884033 (1999-03-01), Duvall et al.
patent: 5991881 (1999-11-01), Conklin et al.
patent: 6598081 (2003-07-01), Coile et al.
patent: 6725378 (2004-04-01), Schuba et al.
patent: 6772334 (2004-08-01), Glawitsch
patent: 6779033 (2004-08-01), Watson et al.
patent: 6789203 (2004-09-01), Belissent
patent: 6944663 (2005-09-01), Schuba et al.
patent: 7058718 (2006-06-01), Fontes et al.
patent: 2002/0032871 (2002-03-01), Malan et al.
patent: 2004/0008681 (2004-01-01), Govindarajan et al.
patent: 2005/0276228 (2005-12-01), Yavatkar et al.
patent: 2006/0005245 (2006-01-01), Durham et al.
patent: 2006/0095961 (2006-05-01), Govindarajan et al.
patent: 2006/0095970 (2006-05-01), Rajagopal et al.
Schuba et al, Analysis of a Denial of Service Attack on TCP, IEEE, pp. 208-223, 1997.
Osman et al, A Stateful Inspection Module Architecture, IEEE, pp. 259-265, 2000.
Bernstein, SYN cookies, pp. 1-3, 2001.
Bernstein, e-mail message Re: SYN Flooding [info], p. 1, 2001.
Matthew M. Williamson, “Throttling Viruses: Restricting Propogation to Defeat Malicious Mobile Code”, Information Infrastructure Laboratory, HP Laboratories Bristol, HPL-2002-172, Jun. 17, 2002, 7 pages, Hewlett-Packard Company.
Matthew M. Williamson, “Throttling Viruses: Restricting Propogation to Defeat Malicious Mobile Code”, Information Infrastructure Laboratory, HP Laboratories Bristol, HPL-2002-172 (R.1), Dec. 10, 2002, ACSAC Conference, Dec. 2002, Las Vegas, NV, 9 pages, Hewlett-Packard Company.
Jamie Twycross et al., “Implementing and Testing a Virus Throttle”, Trusted Systems Laboratory, HP Laboratories Bristol, HPL-2003-103, May 21, 2003, Proceedings 12th USENIX Security Symposium, Aug. 4-8, 2003, Washington, DC, 11 pages, Hewlett-Packard Company.
Matthew M. Williamson, “Design, Implementation and Test of an Email Virus Throttle”, Information Infrastructure Laboratory, HP Laboratories Bristol, HPL-2003-118, Jun. 30, 2003, 10 pages, Hewlett-Packard Company.
Matthew M. Williamson et al., “Virus Throttling”, Virus Bulletin, Mar. 2003, Research Feature 1, p. 8-11, Virus Bulletin Ltd, The Pentagon, Abingdon, Oxfordshire, OX14 3YP, England.
Matthew M. Williamson et al., “Virus Throttling for Instant Messaging”, Digital Media Systems Laboratory, HP Laboratories Bristol, HPL-2004-81, May 5, 2004, Virus Bulletin Conference, Sep. 2004, Chicago, IL, 10 pages, Hewlett-Packard Company.

Affiliated with

Also associated with

Rating

Prevention of denial of service attacks does not yet have a rating. At this time, there are no reviews or comments for this patent.

If you have personal experience with Prevention of denial of service attacks, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Prevention of denial of service attacks will most certainly appreciate the feedback.

Rate now

Comments { 0 }

Profile ID: LFUS-PAI-O-3888314