Data processing: artificial intelligence – Knowledge processing system – Knowledge representation and reasoning technique
Reexamination Certificate
2007-10-09
2009-11-10
Vincent, David R (Department: 2129)
Data processing: artificial intelligence
Knowledge processing system
Knowledge representation and reasoning technique
Reexamination Certificate
active
07617170
ABSTRACT:
A system and method to detect and mitigate denial of service and distributed denial of service HTTP “page” flood attacks. Detection of attack/anomaly is made according to multiple traffic parameters including rate-based and rate-invariant parameters in both traffic directions. Prevention is done according to HTTP traffic parameters that are analyzed once a traffic anomaly is detected. This protection includes a differential adaptive mechanism that tunes the sensitivity of the anomaly detection engine. The decision engine is based on a combination between fuzzy logic inference systems and statistical thresholds. A “trap buffer” characterizes the attack to allow an accurate mitigation according to the source IP(s) and the HTTP request URL's that are used as part of the attack. Mitigation is controlled through a feedback mechanism that tunes the level of rate limit factors that are needed in order to mitigate the attack effectively while letting legitimate traffic to pass.
REFERENCES:
patent: 2003/0065943 (2003-04-01), Geis et al.
patent: 2006/0095569 (2006-05-01), O'Sullivan
patent: 2007/0214505 (2007-09-01), Stavrou et al.
A Multilayer Approach of Anomaly Detection for Email Systems, Ye Wang; Abdel-Wahab, H.; Computers and Communications, 2006. ISCC '06. Proceedings. 11th IEEE Symposium on , Jun. 26-29, 2006 pp. 48-53, Digital Object Identifier 10.1109/ISCC.2006.10.
A hybrid intelligent intrusion detection system to recognize novel attacks, Dwen-Ren Tsai; Wen-Pin Tai; Chi-Fang Chang; Security Technology, 2003. Proceedings. IEEE 37th Annual 2003 International Carnahan Conference on Oct. 14-16, 2003 pp. 428-434, Digital Object Identifier 10.1109/CCST.2003.1297598.
Myers Wolin LLC
Olude-Afolabi Ola
Radware Ltd.
Vincent David R
LandOfFree
Generated anomaly pattern for HTTP flood protection does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Generated anomaly pattern for HTTP flood protection, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Generated anomaly pattern for HTTP flood protection will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-4127606