WO2002025402A3 - Systemes et procedes de protection de reseaux et dispositifs contre les attaques de deni de services - Google Patents

Systemes et procedes de protection de reseaux et dispositifs contre les attaques de deni de services Download PDF

Info

Publication number
WO2002025402A3
WO2002025402A3 PCT/US2001/029336 US0129336W WO0225402A3 WO 2002025402 A3 WO2002025402 A3 WO 2002025402A3 US 0129336 W US0129336 W US 0129336W WO 0225402 A3 WO0225402 A3 WO 0225402A3
Authority
WO
WIPO (PCT)
Prior art keywords
systems
methods
packets
devices against
against denial
Prior art date
Application number
PCT/US2001/029336
Other languages
English (en)
Other versions
WO2002025402A2 (fr
Inventor
Robert J Donaghey
Original Assignee
Bbnt Solutions Llc
Robert J Donaghey
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Bbnt Solutions Llc, Robert J Donaghey filed Critical Bbnt Solutions Llc
Priority to AU2002211242A priority Critical patent/AU2002211242A1/en
Publication of WO2002025402A2 publication Critical patent/WO2002025402A2/fr
Publication of WO2002025402A3 publication Critical patent/WO2002025402A3/fr

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1441Countermeasures against malicious traffic
    • H04L63/1458Denial of Service

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Computer And Data Communications (AREA)

Abstract

L'invention concerne un système qui protège des dispositifs et des réseaux de communication d'attaques de déni de services. Un fournisseur de services (116) reçoit un signal indiquant qu'une attaque de déni de services a été détectée, ainsi qu'au moins un paquet destiné à un dispositif victime (420), il transmet alors le ou les paquet(s) à un dispositif de tri (140). Ce dernier détermine si chacun des paquets fait partie de ladite attaque et ne fait suivre que les paquets qui sont supposés ne pas concernés cette attaque du dispositif victime (420).
PCT/US2001/029336 2000-09-20 2001-09-19 Systemes et procedes de protection de reseaux et dispositifs contre les attaques de deni de services WO2002025402A2 (fr)

Priority Applications (1)

Application Number Priority Date Filing Date Title
AU2002211242A AU2002211242A1 (en) 2000-09-20 2001-09-19 Systems and methods that protect networks and devices against denial of service attacks

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US66611400A 2000-09-20 2000-09-20
US09/666,114 2000-09-20

Publications (2)

Publication Number Publication Date
WO2002025402A2 WO2002025402A2 (fr) 2002-03-28
WO2002025402A3 true WO2002025402A3 (fr) 2002-08-01

Family

ID=24672884

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2001/029336 WO2002025402A2 (fr) 2000-09-20 2001-09-19 Systemes et procedes de protection de reseaux et dispositifs contre les attaques de deni de services

Country Status (2)

Country Link
AU (1) AU2002211242A1 (fr)
WO (1) WO2002025402A2 (fr)

Families Citing this family (20)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7707305B2 (en) 2000-10-17 2010-04-27 Cisco Technology, Inc. Methods and apparatus for protecting against overload conditions on nodes of a distributed network
KR20030009887A (ko) * 2001-07-24 2003-02-05 주식회사 케이티 서비스거부 공격 차단시스템 및 방법
US8438241B2 (en) 2001-08-14 2013-05-07 Cisco Technology, Inc. Detecting and protecting against worm traffic on a network
CN100414532C (zh) * 2003-04-09 2008-08-27 思科技术公司 用于通信流量的选择性转移和注入的方法和装置
US7464404B2 (en) 2003-05-20 2008-12-09 International Business Machines Corporation Method of responding to a truncated secure session attack
US7617526B2 (en) 2003-05-20 2009-11-10 International Business Machines Corporation Blocking of spam e-mail at a firewall
US7308716B2 (en) 2003-05-20 2007-12-11 International Business Machines Corporation Applying blocking measures progressively to malicious network traffic
US6985920B2 (en) * 2003-06-23 2006-01-10 Protego Networks Inc. Method and system for determining intra-session event correlation across network address translation devices
US7925766B2 (en) * 2004-02-18 2011-04-12 At&T Intellectual Property Ii, L.P. Method for distributed denial-of-service attack mitigation by selective black-holing in MPLS VPNS
US7444417B2 (en) 2004-02-18 2008-10-28 Thusitha Jayawardena Distributed denial-of-service attack mitigation by selective black-holing in IP networks
US8176126B2 (en) 2004-08-26 2012-05-08 International Business Machines Corporation System, method and program to limit rate of transferring messages from suspected spammers
KR100777751B1 (ko) 2004-10-12 2007-11-19 니폰덴신뎅와 가부시키가이샤 서비스 불능 공격 방어 시스템, 서비스 불능 공격 방어방법 및 서비스 불능 공격 방어 프로그램
EP1844596B1 (fr) * 2005-01-28 2012-10-17 Broadcom Corporation Procede et systeme d'attenuation de denis de services dans un reseau de communication
US8346960B2 (en) 2005-02-15 2013-01-01 At&T Intellectual Property Ii, L.P. Systems, methods, and devices for defending a network
US8089871B2 (en) * 2005-03-25 2012-01-03 At&T Intellectual Property Ii, L.P. Method and apparatus for traffic control of dynamic denial of service attacks within a communications network
EP1744516A1 (fr) * 2005-07-15 2007-01-17 AT&T Corp. Procédé de mitigation des attaques de deni de service au moyen d'un reroutage sélectif de trafic dans un réseau Internet
US20070033650A1 (en) * 2005-08-05 2007-02-08 Grosse Eric H Method and apparatus for defending against denial of service attacks in IP networks by target victim self-identification and control
US7889735B2 (en) * 2005-08-05 2011-02-15 Alcatel-Lucent Usa Inc. Method and apparatus for defending against denial of service attacks in IP networks based on specified source/destination IP address pairs
US20070300304A1 (en) * 2006-06-26 2007-12-27 Nokia Corporation SIP washing machine
US11683327B2 (en) * 2020-07-23 2023-06-20 Micro Focus Llc Demand management of sender of network traffic flow

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5958053A (en) * 1997-01-30 1999-09-28 At&T Corp. Communications protocol with improved security
US6298445B1 (en) * 1998-04-30 2001-10-02 Netect, Ltd. Computer security
US6301668B1 (en) * 1998-12-29 2001-10-09 Cisco Technology, Inc. Method and system for adaptive network security using network vulnerability assessment

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5958053A (en) * 1997-01-30 1999-09-28 At&T Corp. Communications protocol with improved security
US6298445B1 (en) * 1998-04-30 2001-10-02 Netect, Ltd. Computer security
US6301668B1 (en) * 1998-12-29 2001-10-09 Cisco Technology, Inc. Method and system for adaptive network security using network vulnerability assessment

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
SMITH R., BHATTACHARYA S.: "Operating firewalls outside the LAN perimeter", MOTOROLA INC., February 1999 (1999-02-01), ARIZONA, pages 493 - 498, XP000859730 *
VAZHKUDAI S., MAGINNIS T.: "A high performance communication subsystem for PODOS", MISSISSIPPI UNIVERSITY, December 1999 (1999-12-01), MISSISSIPPI, pages 81 - 91, XP010365647 *

Also Published As

Publication number Publication date
AU2002211242A1 (en) 2002-04-02
WO2002025402A2 (fr) 2002-03-28

Similar Documents

Publication Publication Date Title
WO2002025402A3 (fr) Systemes et procedes de protection de reseaux et dispositifs contre les attaques de deni de services
WO2002033870A3 (fr) Procedes et appareils de protection contre des conditions de surcharge sur des noeuds d'un reseau distribue
CA2390850A1 (fr) Systeme et methode de detection d'attaques et de reaction entrainant un refus de service
US7797436B2 (en) Network intrusion prevention by disabling a network interface
AU2001288687A1 (en) Monitoring network traffic denial of service attacks
AU2001290612A1 (en) Device to protect victim sites during denial of service attacks
AU5935400A (en) System and method for protecting a computer network against denial of service attacks
AU2001266580A1 (en) Method and system for detecting, tracking and blocking denial of service attacksover a computer network
AU3098299A (en) Method for blocking denial of service and address spoofing attacks on a private network
WO2005022440A8 (fr) Techniques d'isolation de reseau permettant la protection contre les virus
WO2008054952A3 (fr) Procédé et dispositif pour fournir une protection d'un dispositif terminal basé sur réseau
CA2306292A1 (fr) Systeme de surveillance
CA2334971A1 (fr) Protocoles bidirectionnels de multiplets processus-a-processus
EP2555486A3 (fr) Systèmes de sécurité de réseau basée sur une passerelle à méthodes multiples et procédés
WO2002028057A3 (fr) Procede et systeme de transmission de donnees
JP2005079706A (ja) ネットワークへの不正接続防止システム、及びネットワークへの不正接続防止装置
WO2001082548A3 (fr) Procede et systeme, permettant de proteger des sites de l'internet contre des attaques debouchant sur un refus de prestation de services, utilisant une technique de saut d'adresses multidestinataires ip
WO2001080524A3 (fr) Procede et systeme permettant de surmonter des attaques par refus de service
WO2002001834A3 (fr) Procede et dispositif servant a empecher un refus de service (dos) par etranglement selectif de demandes tcp/ip
WO2006019701A3 (fr) Detection d'intrusion en ligne a l'aide d'un seul port physique
WO2008004054A3 (fr) Restriction et prévention de tentatives d'appariement provenant d'attaques de virus et de logiciels malveillants
AU2001268540A1 (en) Method for preventing denial of service attacks
FI19992767A (fi) Huijaamisen estäminen tietoliikennejärjestelmissä
WO2004047478A3 (fr) Procede et systeme de traitement d'informations de connexion dans un reseau de communication
AU2001290863A1 (en) Exhaust system having angled baffle

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT TZ UA UG US UZ VN YU ZA ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

AK Designated states

Kind code of ref document: A3

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT TZ UA UG US UZ VN YU ZA ZW

AL Designated countries for regional patents

Kind code of ref document: A3

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
REG Reference to national code

Ref country code: DE

Ref legal event code: 8642

122 Ep: pct application non-entry in european phase
NENP Non-entry into the national phase

Ref country code: JP