DE602006013752D1 - Vorrichtung und Verfahren zur Verringerung von Denial-of-service Angriffen in Kommunikationsgeräten - Google Patents
Vorrichtung und Verfahren zur Verringerung von Denial-of-service Angriffen in KommunikationsgerätenInfo
- Publication number
- DE602006013752D1 DE602006013752D1 DE602006013752T DE602006013752T DE602006013752D1 DE 602006013752 D1 DE602006013752 D1 DE 602006013752D1 DE 602006013752 T DE602006013752 T DE 602006013752T DE 602006013752 T DE602006013752 T DE 602006013752T DE 602006013752 D1 DE602006013752 D1 DE 602006013752D1
- Authority
- DE
- Germany
- Prior art keywords
- communication devices
- service attacks
- denial
- reducing
- reducing denial
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/02—Details
- H04L12/22—Arrangements for preventing the taking of data from a data transmission channel without authorisation
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0227—Filtering policies
- H04L63/0236—Filtering by address, protocol, port number or service, e.g. IP-address or URL
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0227—Filtering policies
- H04L63/0254—Stateful filtering
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0227—Filtering policies
- H04L63/0263—Rule management
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/1458—Denial of Service
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Business, Economics & Management (AREA)
- General Business, Economics & Management (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US11/157,880 US20060288411A1 (en) | 2005-06-21 | 2005-06-21 | System and method for mitigating denial of service attacks on communication appliances |
Publications (1)
Publication Number | Publication Date |
---|---|
DE602006013752D1 true DE602006013752D1 (de) | 2010-06-02 |
Family
ID=37036954
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
DE602006013752T Active DE602006013752D1 (de) | 2005-06-21 | 2006-06-21 | Vorrichtung und Verfahren zur Verringerung von Denial-of-service Angriffen in Kommunikationsgeräten |
Country Status (5)
Country | Link |
---|---|
US (1) | US20060288411A1 (de) |
EP (1) | EP1737189B1 (de) |
JP (1) | JP4638839B2 (de) |
KR (1) | KR100790331B1 (de) |
DE (1) | DE602006013752D1 (de) |
Families Citing this family (61)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7684317B2 (en) * | 2001-06-14 | 2010-03-23 | Nortel Networks Limited | Protecting a network from unauthorized access |
US20030009561A1 (en) * | 2001-06-14 | 2003-01-09 | Sollee Patrick N. | Providing telephony services to terminals behind a firewall and /or network address translator |
CN100370757C (zh) * | 2004-07-09 | 2008-02-20 | 国际商业机器公司 | 识别网络内分布式拒绝服务攻击和防御攻击的方法和系统 |
US8707419B2 (en) * | 2006-06-29 | 2014-04-22 | Avaya Inc. | System, method and apparatus for protecting a network or device against high volume attacks |
US8582567B2 (en) * | 2005-08-09 | 2013-11-12 | Avaya Inc. | System and method for providing network level and nodal level vulnerability protection in VoIP networks |
US7933985B2 (en) * | 2004-08-13 | 2011-04-26 | Sipera Systems, Inc. | System and method for detecting and preventing denial of service attacks in a communications system |
US20090094671A1 (en) * | 2004-08-13 | 2009-04-09 | Sipera Systems, Inc. | System, Method and Apparatus for Providing Security in an IP-Based End User Device |
US8862718B2 (en) * | 2006-07-12 | 2014-10-14 | Avaya Inc. | System, method and apparatus for troubleshooting an IP network |
US7860006B1 (en) * | 2005-04-27 | 2010-12-28 | Extreme Networks, Inc. | Integrated methods of performing network switch functions |
JP4557815B2 (ja) * | 2005-06-13 | 2010-10-06 | 富士通株式会社 | 中継装置および中継システム |
US7609625B2 (en) * | 2005-07-06 | 2009-10-27 | Fortinet, Inc. | Systems and methods for detecting and preventing flooding attacks in a network environment |
WO2007033344A2 (en) * | 2005-09-14 | 2007-03-22 | Sipera Systems, Inc. | System, method and apparatus for classifying communications in a communications system |
US8510833B2 (en) * | 2005-10-27 | 2013-08-13 | Hewlett-Packard Development Company, L.P. | Connection-rate filtering using ARP requests |
CN100563246C (zh) * | 2005-11-30 | 2009-11-25 | 华为技术有限公司 | 一种基于ip的语音通信边界安全控制系统及方法 |
US8255996B2 (en) | 2005-12-30 | 2012-08-28 | Extreme Networks, Inc. | Network threat detection and mitigation |
US7796590B1 (en) * | 2006-02-01 | 2010-09-14 | Marvell Israel (M.I.S.L.) Ltd. | Secure automatic learning in ethernet bridges |
US8024804B2 (en) * | 2006-03-08 | 2011-09-20 | Imperva, Inc. | Correlation engine for detecting network attacks and detection method |
WO2007117636A2 (en) * | 2006-04-06 | 2007-10-18 | Smobile Systems, Inc. | Malware detection system and method for comprssed data on mobile platforms |
US20070300304A1 (en) * | 2006-06-26 | 2007-12-27 | Nokia Corporation | SIP washing machine |
US8086732B1 (en) * | 2006-06-30 | 2011-12-27 | Cisco Technology, Inc. | Method and apparatus for rate limiting client requests |
WO2008008856A2 (en) * | 2006-07-12 | 2008-01-17 | Sipera Systems, Inc. | System, method and apparatus for securely exchanging security keys and monitoring links in an ip communications network |
ATE449484T1 (de) * | 2007-01-19 | 2009-12-15 | Alcatel Lucent | Rundfunk von dienstinformation an benutzergeräte, die an ein pstn angeschlossen sind, mit hilfe einer ngn-infrastruktur |
US8286244B2 (en) * | 2007-01-19 | 2012-10-09 | Hewlett-Packard Development Company, L.P. | Method and system for protecting a computer network against packet floods |
KR100838811B1 (ko) * | 2007-02-15 | 2008-06-19 | 한국정보보호진흥원 | 안전한 VoIP 서비스를 위한 보안 세션 제어 장치 |
US8533821B2 (en) * | 2007-05-25 | 2013-09-10 | International Business Machines Corporation | Detecting and defending against man-in-the-middle attacks |
KR101175081B1 (ko) * | 2007-08-21 | 2012-08-21 | 엔이씨 유럽 리미티드 | 멀티미디어 시스템들에 대한 공격을 검출하기 위한 방법 및 공격 검출 기능을 갖는 멀티미디어 시스템 |
US8037532B2 (en) * | 2007-12-11 | 2011-10-11 | International Business Machines Corporation | Application protection from malicious network traffic |
EP2081356A1 (de) * | 2008-01-18 | 2009-07-22 | Fraunhofer-Gesellschaft zur Förderung der angewandten Forschung e.V. | Telekommunikationsgerät zum Erkennen von SIP-Anomalitäten in IP-Netzen und Methode hierfür |
ATE505018T1 (de) * | 2008-03-31 | 2011-04-15 | Mitsubishi Electric Corp | Behandlung von empfangenen datennachrichten eines textbasierten protokolls |
US8375453B2 (en) * | 2008-05-21 | 2013-02-12 | At&T Intellectual Property I, Lp | Methods and apparatus to mitigate a denial-of-service attack in a voice over internet protocol network |
US8413250B1 (en) * | 2008-06-05 | 2013-04-02 | A9.Com, Inc. | Systems and methods of classifying sessions |
US20100269162A1 (en) | 2009-04-15 | 2010-10-21 | Jose Bravo | Website authentication |
US8683609B2 (en) * | 2009-12-04 | 2014-03-25 | International Business Machines Corporation | Mobile phone and IP address correlation service |
US9202049B1 (en) | 2010-06-21 | 2015-12-01 | Pulse Secure, Llc | Detecting malware on mobile devices |
KR101107741B1 (ko) * | 2010-09-02 | 2012-01-20 | 한국인터넷진흥원 | Sip 기반 비정상 트래픽 차단 시스템 및 그 차단 방법 |
CN102088368A (zh) * | 2010-12-17 | 2011-06-08 | 天津曙光计算机产业有限公司 | 一种通过软件管理硬件中的报文分类规则生存期的方法 |
US8838988B2 (en) | 2011-04-12 | 2014-09-16 | International Business Machines Corporation | Verification of transactional integrity |
WO2013039083A1 (ja) * | 2011-09-13 | 2013-03-21 | 日本電気株式会社 | 通信システム、制御装置および通信方法 |
US10044582B2 (en) | 2012-01-28 | 2018-08-07 | A10 Networks, Inc. | Generating secure name records |
US8726338B2 (en) | 2012-02-02 | 2014-05-13 | Juniper Networks, Inc. | Dynamic threat protection in mobile networks |
US8917826B2 (en) | 2012-07-31 | 2014-12-23 | International Business Machines Corporation | Detecting man-in-the-middle attacks in electronic transactions using prompts |
US9722918B2 (en) | 2013-03-15 | 2017-08-01 | A10 Networks, Inc. | System and method for customizing the identification of application or content type |
WO2014176461A1 (en) | 2013-04-25 | 2014-10-30 | A10 Networks, Inc. | Systems and methods for network access control |
US9906422B2 (en) | 2014-05-16 | 2018-02-27 | A10 Networks, Inc. | Distributed system to determine a server's health |
US9621575B1 (en) | 2014-12-29 | 2017-04-11 | A10 Networks, Inc. | Context aware threat protection |
US9787581B2 (en) | 2015-09-21 | 2017-10-10 | A10 Networks, Inc. | Secure data flow open information analytics |
US10021130B2 (en) * | 2015-09-28 | 2018-07-10 | Verizon Patent And Licensing Inc. | Network state information correlation to detect anomalous conditions |
US10834110B1 (en) * | 2015-12-18 | 2020-11-10 | F5 Networks, Inc. | Methods for preventing DDoS attack based on adaptive self learning of session and transport layers and devices thereof |
JP6470201B2 (ja) * | 2016-02-16 | 2019-02-13 | 日本電信電話株式会社 | 攻撃検知装置、攻撃検知システムおよび攻撃検知方法 |
US10812348B2 (en) | 2016-07-15 | 2020-10-20 | A10 Networks, Inc. | Automatic capture of network data for a detected anomaly |
US10341118B2 (en) | 2016-08-01 | 2019-07-02 | A10 Networks, Inc. | SSL gateway with integrated hardware security module |
CN106375281B (zh) * | 2016-08-25 | 2018-12-25 | 杭州数梦工场科技有限公司 | 一种报文控制方法和装置 |
US10382562B2 (en) | 2016-11-04 | 2019-08-13 | A10 Networks, Inc. | Verification of server certificates using hash codes |
US10250475B2 (en) | 2016-12-08 | 2019-04-02 | A10 Networks, Inc. | Measurement of application response delay time |
US10397270B2 (en) | 2017-01-04 | 2019-08-27 | A10 Networks, Inc. | Dynamic session rate limiter |
US10187377B2 (en) | 2017-02-08 | 2019-01-22 | A10 Networks, Inc. | Caching network generated security certificates |
US11038869B1 (en) | 2017-05-12 | 2021-06-15 | F5 Networks, Inc. | Methods for managing a federated identity environment based on application availability and devices thereof |
US11050650B1 (en) * | 2019-05-23 | 2021-06-29 | Juniper Networks, Inc. | Preventing traffic outages during address resolution protocol (ARP) storms |
US11284330B2 (en) * | 2019-06-24 | 2022-03-22 | Comcast Cable Communications, Llc | Systems, methods, and apparatuses for device routing management |
US11349981B1 (en) | 2019-10-30 | 2022-05-31 | F5, Inc. | Methods for optimizing multimedia communication and devices thereof |
US20230343193A1 (en) * | 2022-04-21 | 2023-10-26 | Motorola Solutions, Inc. | Generation of follow-up action based on information security risks |
Family Cites Families (17)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6594268B1 (en) * | 1999-03-11 | 2003-07-15 | Lucent Technologies Inc. | Adaptive routing system and method for QOS packet networks |
US6678827B1 (en) * | 1999-05-06 | 2004-01-13 | Watchguard Technologies, Inc. | Managing multiple network security devices from a manager device |
US20020138643A1 (en) * | 2000-10-19 | 2002-09-26 | Shin Kang G. | Method and system for controlling network traffic to a network computer |
JP4082858B2 (ja) * | 2000-10-30 | 2008-04-30 | 富士通株式会社 | ネットワークアクセス制御方法及びそれを用いたネットワークシステム及びそれを構成する装置 |
JP4067757B2 (ja) * | 2000-10-31 | 2008-03-26 | 株式会社東芝 | プログラム配布システム |
JP4307747B2 (ja) * | 2001-01-25 | 2009-08-05 | インターナショナル・ビジネス・マシーンズ・コーポレーション | 接続受付システム、受付サーバ、クライアント端末、接続受付管理方法、記憶媒体、コンピュータプログラム |
JP4330342B2 (ja) * | 2001-02-19 | 2009-09-16 | 富士通株式会社 | 通信のセキュリティを確保するためのパケットフィルタリング方法およびパケット通信システム |
GB0113902D0 (en) * | 2001-06-07 | 2001-08-01 | Nokia Corp | Security in area networks |
US7684317B2 (en) * | 2001-06-14 | 2010-03-23 | Nortel Networks Limited | Protecting a network from unauthorized access |
US7047303B2 (en) * | 2001-07-26 | 2006-05-16 | International Business Machines Corporation | Apparatus and method for using a network processor to guard against a “denial-of-service” attack on a server or server cluster |
JP4503934B2 (ja) * | 2002-09-26 | 2010-07-14 | 株式会社東芝 | サーバ計算機保護装置、サーバ計算機保護方法、サーバ計算機保護プログラム及びサーバ計算機 |
JP2004248185A (ja) * | 2003-02-17 | 2004-09-02 | Nippon Telegr & Teleph Corp <Ntt> | ネットワークベース分散型サービス拒否攻撃防御システムおよび通信装置 |
JP3760919B2 (ja) * | 2003-02-28 | 2006-03-29 | 日本電気株式会社 | 不正アクセス防止方法、装置、プログラム |
JP2004341922A (ja) * | 2003-05-16 | 2004-12-02 | Canon Inc | 受信装置、設定装置、接続要求装置、方法、及び、プログラム |
JP3704134B2 (ja) * | 2003-05-29 | 2005-10-05 | 日本電信電話株式会社 | パケット転送装置、ネットワーク制御サーバ、およびパケット通信ネットワーク |
US7526803B2 (en) * | 2003-11-17 | 2009-04-28 | Alcatel Lucent | Detection of denial of service attacks against SIP (session initiation protocol) elements |
US7536573B2 (en) * | 2005-07-29 | 2009-05-19 | Hewlett-Packard Development Company, L.P. | Power budgeting for computers |
-
2005
- 2005-06-21 US US11/157,880 patent/US20060288411A1/en not_active Abandoned
-
2006
- 2006-06-21 KR KR1020060055835A patent/KR100790331B1/ko not_active IP Right Cessation
- 2006-06-21 DE DE602006013752T patent/DE602006013752D1/de active Active
- 2006-06-21 JP JP2006171389A patent/JP4638839B2/ja not_active Expired - Fee Related
- 2006-06-21 EP EP06253214A patent/EP1737189B1/de not_active Not-in-force
Also Published As
Publication number | Publication date |
---|---|
US20060288411A1 (en) | 2006-12-21 |
KR100790331B1 (ko) | 2008-01-02 |
EP1737189A3 (de) | 2007-03-21 |
JP2007006490A (ja) | 2007-01-11 |
JP4638839B2 (ja) | 2011-02-23 |
EP1737189B1 (de) | 2010-04-21 |
KR20060133921A (ko) | 2006-12-27 |
EP1737189A2 (de) | 2006-12-27 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
DE602006013752D1 (de) | Vorrichtung und Verfahren zur Verringerung von Denial-of-service Angriffen in Kommunikationsgeräten | |
DE602005007310D1 (de) | Verfahren und Vorrichtung zur verschlüsselten Ende-zu-Ende Kommunikation | |
DE602006003500D1 (de) | Verfahren und Vorrichtung zur Initialisierung von 10BASE-T Netzwerken | |
DE602005022123D1 (de) | Vorrichtung und verfahren zur beförderung von bohrklein | |
DE602006006952D1 (de) | Vorrichtung und Verfahren zur Personenidentifizierung | |
DE60314367D1 (de) | Verfahren und Vorrichtung zur gleichrangigen Kommunikation | |
DE602005012015D1 (de) | Vorrichtung und Verfahren zur Verarbeitung von Verkehrsinformationen | |
DE602005009884D1 (de) | Verfahren und Vorrichtung zur Entfernung von Stickstoff aus Abwasser | |
DE602006007458D1 (de) | Verfahren und vorrichtung zur bohrlochfluidanalyse | |
DE602005005753D1 (de) | Vorrichtung und Verfahren zur Entschärfung von DoS-Attacken in einem Diensterkennungssystem | |
DE112006004263A5 (de) | Verfahren und Vorrichtung zum Stapeln von DRAMS | |
DE602006006454D1 (de) | Verfahren und Vorrichtung zur Authentifizierung | |
DE602006007415D1 (de) | Vorrichtung und Verfahren zum Entdecken von Netzwerksresourcen | |
DE602005000512D1 (de) | Verfahren und vorrichtung zum montieren von bauelementen | |
DE602004021522D1 (de) | Verfahren zur Entnahme von Mikroorganismen und Vorrichtung zur Entnahme von Mikroorganismen | |
DE602006002058D1 (de) | Vorrichtung und Verfahren zur Packetverarbeitung in einem IPv4/IPv6 Kombinationsnetzwerk | |
DE602006009790D1 (de) | Vorrichtung und verfahren zur frequenzübersetzung | |
DE602006004529D1 (de) | Verfahren und Vorrichtung zur Kontrolle von Objekten | |
DE602005022150D1 (de) | Verfahren und Gerät zur Vorbereitung von Proben | |
DE602006004829D1 (de) | Vorrichtung und Verfahren zur Wärmeisolation | |
DE602007004365D1 (de) | Vorrichtung und Verfahren zur Zuordnung von Unterkanälen in einem drahtlosen Kommunikationssystem | |
DE602005010071D1 (de) | Verfahren und Vorrichtung zur drahtlosen Kommunikation | |
DE602006000332D1 (de) | Verfahren und Vorrichtung zur Verbesserung von doppelpolarisierten optischen Übertragungsleistung | |
DE602007008026D1 (de) | Vorrichtung und Verfahren zur Bereitstellung und zur Verarbeitung von Dokumenten | |
DE602006020007D1 (de) | Verfahren und Vorrichtung zum Bearbeiten von zurückgeschicktem Postgut |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
8328 | Change in the person/name/address of the agent |
Representative=s name: PAGE WHITE & FARRER, LONDON, GB |
|
8364 | No opposition during term of opposition |