Multiplex communications – Data flow congestion prevention or control – Control of data admission to the network
Reexamination Certificate
2004-10-22
2009-06-23
Pham, Brenda (Department: 2416)
Multiplex communications
Data flow congestion prevention or control
Control of data admission to the network
C370S389000
Reexamination Certificate
active
07551559
ABSTRACT:
Users are allowed to specify per-interface rate limits for inter-layer binding protocol traffic. If the user-specified rate limit is exceeded on a given interface, inter-layer binding protocol messages received via that interface are caused to be dropped (e.g., by selectively dropping ILBP messages, or by simply shutting down the interface). If the rate is not exceeded, inter-layer binding protocol messages received via that interface can be validated (e.g., by comparing an inter-layer binding included in the body of an inter-layer binding protocol message to protocol status information obtained by snooping protocol messages). If the inter-layer binding does not match the protocol status information, the inter-layer binding protocol message is dropped. If a match is found, the inter-layer binding protocol message is allowed to be forwarded normally. Such systems and methods may be used to inhibit various undesirable network behavior, such as man-in-the-middle attacks.
REFERENCES:
patent: 7346057 (2008-03-01), Foschiano et al.
patent: 7434254 (2008-10-01), Foschiano et al.
patent: 2004/0022253 (2004-02-01), Foschiano et al.
patent: 2008/0151887 (2008-06-01), Foschiano et al.
Cisco IOS Software Release 12.1 (19) EW for the Cisco Catalyst 4500 Series Supervisor Engines II-Plus, III, and IV, Jun. 23, 2003.
Chapter 34,Understanding And Configuring Dynamic ARP Inspection, Cisco Catalyst 4500 Series Switch Cisco IOS Software Configuration Guide—12.1(19)EW, pp. 31-1 thru 31-10, Jun. 23, 2003.
Huang et al., pending U. S. Patent Application entitled “System And Method for Maintaining Protocol Status Information In Network Device,” U.S. Appl. No. 10/654,388, filed Sep. 3, 2003, including Specification, Claims & Abstract: 40 pages, and Drawings: Figures 1-6.
Huang et al., pending U. S. Patent Application entitled “System And Method for Filtering Network Traffic,” U.S. Appl. No. 10/971,523, filed Oct. 22, 2004, including Specification, Claims & Abstract: 49 pages, and Drawings: Figures 1-10.
Dobrota Silviu
Foschiano Marco E.
Huang Dehua
Jonnala Premkumar
Sudame Pradeep S.
Brock Brenna A.
Campbell Stephenson LLP
Cisco Technology Inc.
Pham Brenda
LandOfFree
System and method for performing security actions for... does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with System and method for performing security actions for..., we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and System and method for performing security actions for... will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4139379