Process to thwart denial of service attacks on the internet

Electrical computers and digital processing systems: multicomput – Computer network managing – Computer network access regulating

Reexamination Certificate

Rate now

[ 0.00 ] – not rated yet Voters 0 Comments 0

Details Process to thwart denial of service attacks on the internet Process to thwart denial of service attacks on the internet

: 2007-07-06
: 2009-12-01
: Kang, Paul H (Department: 2444)
: Electrical computers and digital processing systems: multicomput
: Computer network managing
: Computer network access regulating

: C709S232000, C709S238000
: Reexamination Certificate
: active
: 07627677
: ABSTRACT:
Coordinated SYN denial of service (CSDoS) attacks are reduced or eliminated by a process that instructs a switch to divert SYN rackets destined to a server to a TCP proxy which, when subject to a CSDoS attack, will not successfully establish a TCP connection with a host. CSDoS attacks are reduced or eliminated by a process that includes forwarding a sampling of packets destined to a server to a processor and, when packets in the sampling indicate an attack, arranging the switch to divert all packets destined to the server to the processor. CSDoS attacks are reduced or eliminated in a system including a switch, a server, and a processor, where the processor is adapted to control the network switch to divert all SYN packets destined to the server to the processor based on monitoring a number of timed-out connections between the processor and one or more clients.

REFERENCES:
patent: 5991881 (1999-11-01), Conklin et al.
patent: 6487204 (2002-11-01), Dacier et al.
patent: 6578147 (2003-06-01), Shanklin et al.
patent: 6609205 (2003-08-01), Bernhard et al.
patent: 2002/0031134 (2002-03-01), Poletto et al.
patent: 2002/0032871 (2002-03-01), Malan et al.
patent: 2002/0035698 (2002-03-01), Malan et al.
patent: 2003/0110394 (2003-06-01), Sharp et al.
The Internet Engineering Task Force (IETF) RFC 2827, “Network Ingress Filtering: Defeating Denial of Service Attacks Which Employ IP Source Address Spoofing”, May 2000, pp. 1-9.

Affiliated with

Raz Danny

Inventor

[ 0.00 ] – not rated yet Voters 0 Comments 0

Also associated with

Alcatel-Lucent USA Inc.

Corporate Assignee

[ 0.00 ] – not rated yet Voters 0 Comments 0

Kang Paul H

Examiner

[ 0.00 ] – not rated yet Voters 0 Comments 0

LandOfFree

Say what you really think

Search LandOfFree.com for the USA inventors and patents. Rate them and share your experience with other people.

Rating

Process to thwart denial of service attacks on the internet does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Process to thwart denial of service attacks on the internet, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Process to thwart denial of service attacks on the internet will most certainly appreciate the feedback.

Rate now

Comments { 0 }

Profile ID: LFUS-PAI-O-4124650

All data on this website is collected from public sources. Our data reflects the most accurate information available at the time of publication.

Canada

Charities
Companies
MP Candidates
Patents
Employee Salary Disclosure

World

Places of the World
Scientific Papers

United States

Banks
Companies
Counties
Patents
Employee Salary Disclosure