WO2007125402A3 - A method for protecting local servers from denial-of-service attacks - Google Patents

A method for protecting local servers from denial-of-service attacks Download PDF

Info

Publication number
WO2007125402A3
WO2007125402A3 PCT/IB2007/001103 IB2007001103W WO2007125402A3 WO 2007125402 A3 WO2007125402 A3 WO 2007125402A3 IB 2007001103 W IB2007001103 W IB 2007001103W WO 2007125402 A3 WO2007125402 A3 WO 2007125402A3
Authority
WO
Grant status
Application
Patent type
Prior art keywords
denial
method
local servers
service attacks
computer
Prior art date
Application number
PCT/IB2007/001103
Other languages
French (fr)
Other versions
WO2007125402A2 (en )
Inventor
Hongquian Karen Lu
Original Assignee
Axalto Sa
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1441Countermeasures against malicious traffic
    • H04L63/1458Denial of Service
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/55Detecting local intrusion or implementing counter-measures
    • G06F21/554Detecting local intrusion or implementing counter-measures involving event detection and direct action
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0227Filtering policies

Abstract

The invention relates to a computer comprising a local server and a local client. The local server is arranged to serve the local client. The computer is connectable to a network. The local server comprises a prevention module for preventing DOS attacks. The prevention module is set to forbid network access to the local server from outside the computer.
PCT/IB2007/001103 2006-04-27 2007-04-27 A method for protecting local servers from denial-of-service attacks WO2007125402A3 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
US79538306 true 2006-04-27 2006-04-27
US60/795,383 2006-04-27

Publications (2)

Publication Number Publication Date
WO2007125402A2 true WO2007125402A2 (en) 2007-11-08
WO2007125402A3 true true WO2007125402A3 (en) 2009-09-11

Family

ID=38655878

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/IB2007/001103 WO2007125402A3 (en) 2006-04-27 2007-04-27 A method for protecting local servers from denial-of-service attacks

Country Status (1)

Country Link
WO (1) WO2007125402A3 (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9473530B2 (en) 2010-12-30 2016-10-18 Verisign, Inc. Client-side active validation for mitigating DDOS attacks

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20030061510A1 (en) * 2001-09-27 2003-03-27 International Business Machines Corporation System and method for managing denial of service attacks
US20050071644A1 (en) * 2003-09-26 2005-03-31 Pratyush Moghe Policy specification framework for insider intrusions

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20030061510A1 (en) * 2001-09-27 2003-03-27 International Business Machines Corporation System and method for managing denial of service attacks
US20050071644A1 (en) * 2003-09-26 2005-03-31 Pratyush Moghe Policy specification framework for insider intrusions

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
ILGUN K: "USTAT: a real-time intrusion detection system for UNIX" RESEARCH IN SECURITY AND PRIVACY, 1993. PROCEEDINGS., 1993 IEEE COMPUTER SOCIETY SYMPOSIUM ON OAKLAND, CA, USA 24-26 MAY 1993, LOS ALAMITOS, CA, USA,IEEE COMPUT. SOC, US, 24 May 1993 (1993-05-24), pages 16-28, XP010094855 ISBN: 0-8186-3370-0 *
LAUREANO M ET AL: "Intrusion detection in virtual machine environments" EUROMICRO CONFERENCE, 2004. PROCEEDINGS. 30TH RENNES, FRANCE AUG. 31 - SEPT. 3, 2004, PISCATAWAY, NJ, USA,IEEE, 31 August 2004 (2004-08-31), pages 520-525, XP010723636 ISBN: 0-7695-2199-1 *

Also Published As

Publication number Publication date Type
WO2007125402A2 (en) 2007-11-08 application

Similar Documents

Publication Publication Date Title
Sabahi Cloud computing security threats and responses
USD588081S1 (en) Electronic equipment cabinet
Alperovitch Revealed: operation shady RAT
US20130291107A1 (en) System and Method for Mitigating Application Layer Distributed Denial of Service Attacks Using Human Behavior Analysis
US20050188215A1 (en) Method and apparatus for high-speed detection and blocking of zero day worm attacks
Yaar et al. StackPi: New packet marking and filtering mechanisms for DDoS and IP spoofing defense
US20120311715A1 (en) System and method for protecting a website from hacking attacks
US20100058471A1 (en) Method and system for defending ddos attack
Liu et al. Defending systems against tilt DDoS attacks
Gold The SCADA challenge: securing critical infrastructure
JP2010198386A (en) Illegal access monitoring system and illegal access monitoring method
Lawton On the trail of the conficker worm
JP2004206683A (en) System management device, method and program, management server system and its control process, insurance method, security program, security management method, computer, and server computer
US20100217825A1 (en) System and method for identifying a masked ip address
Hunter VOIP the latest security concern: DoS attack the greatest threat
O'Gorman et al. The elderwood project
Sipior et al. A united states perspective on the ethical and legal issues of spyware
Govil Examining the criminology of bot zoo
Aaron The state of phishing
US20130312081A1 (en) Malicious code blocking system
Pandey Prevention of ARP spoofing: A probe packet based technique
JP2007251282A (en) Attack detecting apparatus, attack detection method, and attack detection program
Chia et al. Colonel Blotto in the phishing war
CN102480521A (en) Comprehensive defense and safeguard system for web application security

Legal Events

Date Code Title Description
NENP Non-entry into the national phase in:

Ref country code: DE

121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 07734421

Country of ref document: EP

Kind code of ref document: A2

122 Ep: pct app. not ent. europ. phase

Ref document number: 07734421

Country of ref document: EP

Kind code of ref document: A2