WO1999048303A2 - Method for blocking denial of service and address spoofing attacks on a private network - Google Patents
Method for blocking denial of service and address spoofing attacks on a private network Download PDFInfo
- Publication number
- WO1999048303A2 WO1999048303A2 PCT/US1999/005900 US9905900W WO9948303A2 WO 1999048303 A2 WO1999048303 A2 WO 1999048303A2 US 9905900 W US9905900 W US 9905900W WO 9948303 A2 WO9948303 A2 WO 9948303A2
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- private network
- data packet
- attack
- routing device
- address
- Prior art date
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1416—Event detection, e.g. attack signature detection
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/1458—Denial of Service
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/1466—Active attacks involving interception, injection, modification, spoofing of data unit addresses, e.g. hijacking, packet injection or TCP sequence number attacks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04Q—SELECTING
- H04Q3/00—Selecting arrangements
- H04Q3/58—Arrangements providing connection between main exchange and sub-exchange or satellite
- H04Q3/62—Arrangements providing connection between main exchange and sub-exchange or satellite for connecting to private branch exchanges
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0227—Filtering policies
- H04L63/0236—Filtering by address, protocol, port number or service, e.g. IP-address or URL
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04Q—SELECTING
- H04Q2213/00—Indexing scheme relating to selecting arrangements in general and for multiplex systems
- H04Q2213/13097—Numbering, addressing
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04Q—SELECTING
- H04Q2213/00—Indexing scheme relating to selecting arrangements in general and for multiplex systems
- H04Q2213/13141—Hunting for free outlet, circuit or channel
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04Q—SELECTING
- H04Q2213/00—Indexing scheme relating to selecting arrangements in general and for multiplex systems
- H04Q2213/13164—Traffic (registration, measurement,...)
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04Q—SELECTING
- H04Q2213/00—Indexing scheme relating to selecting arrangements in general and for multiplex systems
- H04Q2213/13166—Fault prevention
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04Q—SELECTING
- H04Q2213/00—Indexing scheme relating to selecting arrangements in general and for multiplex systems
- H04Q2213/13196—Connection circuit/link/trunk/junction, bridge, router, gateway
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04Q—SELECTING
- H04Q2213/00—Indexing scheme relating to selecting arrangements in general and for multiplex systems
- H04Q2213/13204—Protocols
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04Q—SELECTING
- H04Q2213/00—Indexing scheme relating to selecting arrangements in general and for multiplex systems
- H04Q2213/13339—Ciphering, encryption, security
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04Q—SELECTING
- H04Q2213/00—Indexing scheme relating to selecting arrangements in general and for multiplex systems
- H04Q2213/13372—Intercepting operator
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04Q—SELECTING
- H04Q2213/00—Indexing scheme relating to selecting arrangements in general and for multiplex systems
- H04Q2213/13384—Inter-PBX traffic, PBX networks, e.g. corporate networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04Q—SELECTING
- H04Q2213/00—Indexing scheme relating to selecting arrangements in general and for multiplex systems
- H04Q2213/13389—LAN, internet
Abstract
Description
Claims
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
AU30982/99A AU3098299A (en) | 1998-03-18 | 1999-03-18 | Method for blocking denial of service and address spoofing attacks on a private network |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US09/040,898 US6738814B1 (en) | 1998-03-18 | 1998-03-18 | Method for blocking denial of service and address spoofing attacks on a private network |
US09/040,898 | 1998-03-18 |
Publications (1)
Publication Number | Publication Date |
---|---|
WO1999048303A2 true WO1999048303A2 (en) | 1999-09-23 |
Family
ID=21913595
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/US1999/005900 WO1999048303A2 (en) | 1998-03-18 | 1999-03-18 | Method for blocking denial of service and address spoofing attacks on a private network |
Country Status (3)
Country | Link |
---|---|
US (2) | US6738814B1 (en) |
AU (1) | AU3098299A (en) |
WO (1) | WO1999048303A2 (en) |
Cited By (39)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
GB2363951A (en) * | 2000-02-11 | 2002-01-09 | Ibm | Defending against flooding attacks on servers |
WO2002019661A2 (en) * | 2000-09-01 | 2002-03-07 | Top Layer Networks, Inc. | System and process for defending against denial of service attacks on network nodes |
WO2002021244A2 (en) * | 2000-09-08 | 2002-03-14 | The Regents Of The University Of Michigan | Method and system for protecting publicly accessible network computer services from undesirable network traffic in real-time |
WO2002033870A2 (en) | 2000-10-17 | 2002-04-25 | Wanwall, Inc. | Methods and apparatus for protecting against overload conditions on nodes of a distributed network |
WO2002069604A2 (en) * | 2000-11-07 | 2002-09-06 | Surgient Networks, Inc. | Network security accelerator |
US6502135B1 (en) | 1998-10-30 | 2002-12-31 | Science Applications International Corporation | Agile network protocol for secure communications with assured system availability |
WO2003017613A1 (en) * | 2001-08-07 | 2003-02-27 | Ip-Online Gmbh | Method, data carrier, computer system and computer programme for the identification and defence of attacks on server systems of network service providers and operators |
EP1343289A1 (en) * | 2002-03-07 | 2003-09-10 | Broadcom Corporation | Method for expediting upper layer protocol (ULP) connection negotiations |
WO2004008700A2 (en) * | 2002-07-12 | 2004-01-22 | The Penn State Research Foundation | Real-time packet traceback and associated packet marking strategies |
WO2004056063A1 (en) * | 2002-12-13 | 2004-07-01 | Cetacea Networks Corporation | Network bandwidth anomaly detector apparatus and method for detecting network attacks using correlation function |
KR100447677B1 (en) * | 2002-11-01 | 2004-09-08 | 주식회사 케이티 | Method of spoofing attack system detection through network packet monitoring |
FR2852754A1 (en) * | 2003-03-20 | 2004-09-24 | At & T Corp | Data transmission system, has fire wall, router and probe detecting abnormal operating conditions based on pre-set system operation, and sending messages to network security manager to activate filtering actions on message reception |
US6800321B1 (en) | 2002-05-29 | 2004-10-05 | The Regents Of The University Of California | Reduced AC losses in HTS coated conductors |
US6826616B2 (en) | 1998-10-30 | 2004-11-30 | Science Applications International Corp. | Method for establishing secure communication link between computers of virtual private network |
US6851062B2 (en) | 2001-09-27 | 2005-02-01 | International Business Machines Corporation | System and method for managing denial of service attacks |
KR20050063477A (en) * | 2003-12-22 | 2005-06-28 | 백남균 | Security system for network information and method thereof |
US7007169B2 (en) | 2001-04-04 | 2006-02-28 | International Business Machines Corporation | Method and apparatus for protecting a web server against vandals attacks without restricting legitimate access |
US7010604B1 (en) | 1998-10-30 | 2006-03-07 | Science Applications International Corporation | Agile network protocol for secure communications with assured system availability |
US7013482B1 (en) | 2000-07-07 | 2006-03-14 | 802 Systems Llc | Methods for packet filtering including packet invalidation if packet validity determination not timely made |
US7031267B2 (en) | 2000-12-21 | 2006-04-18 | 802 Systems Llc | PLD-based packet filtering methods with PLD configuration data update of filtering rules |
US7107619B2 (en) | 2001-08-31 | 2006-09-12 | International Business Machines Corporation | System and method for the detection of and reaction to denial of service attacks |
US7140041B2 (en) | 2002-04-11 | 2006-11-21 | International Business Machines Corporation | Detecting dissemination of malicious programs |
US7216260B2 (en) | 2002-03-27 | 2007-05-08 | International Business Machines Corporation | Method, system and program product for dynamically detecting errant data sequences and performing corresponding actions |
US7342926B2 (en) | 1999-12-22 | 2008-03-11 | Nokia Corporation | Prevention of spoofing in telecommunications systems |
US7845004B2 (en) | 2001-07-27 | 2010-11-30 | International Business Machines Corporation | Correlating network information and intrusion information to find the entry point of an attack upon a protected computer |
US8161145B2 (en) | 2003-02-27 | 2012-04-17 | International Business Machines Corporation | Method for managing of denial of service attacks using bandwidth allocation technology |
US8843643B2 (en) | 1998-10-30 | 2014-09-23 | Virnetx, Inc. | System and method employing an agile network protocol for secure communications using secure domain names |
US9537886B1 (en) | 2014-10-23 | 2017-01-03 | A10 Networks, Inc. | Flagging security threats in web service requests |
US9584318B1 (en) | 2014-12-30 | 2017-02-28 | A10 Networks, Inc. | Perfect forward secrecy distributed denial of service attack defense |
US9756071B1 (en) | 2014-09-16 | 2017-09-05 | A10 Networks, Inc. | DNS denial of service attack protection |
US9848013B1 (en) | 2015-02-05 | 2017-12-19 | A10 Networks, Inc. | Perfect forward secrecy distributed denial of service attack detection |
US9860271B2 (en) | 2013-08-26 | 2018-01-02 | A10 Networks, Inc. | Health monitor based distributed denial of service attack mitigation |
US9900343B1 (en) | 2015-01-05 | 2018-02-20 | A10 Networks, Inc. | Distributed denial of service cellular signaling |
US10063591B1 (en) | 2015-02-14 | 2018-08-28 | A10 Networks, Inc. | Implementing and optimizing secure socket layer intercept |
US10116634B2 (en) | 2016-06-28 | 2018-10-30 | A10 Networks, Inc. | Intercepting secure session upon receipt of untrusted certificate |
US10158666B2 (en) | 2016-07-26 | 2018-12-18 | A10 Networks, Inc. | Mitigating TCP SYN DDoS attacks using TCP reset |
US10469594B2 (en) | 2015-12-08 | 2019-11-05 | A10 Networks, Inc. | Implementation of secure socket layer intercept |
US10505984B2 (en) | 2015-12-08 | 2019-12-10 | A10 Networks, Inc. | Exchange of control information between secure socket layer gateways |
US10511573B2 (en) | 1998-10-30 | 2019-12-17 | Virnetx, Inc. | Agile network protocol for secure communications using secure domain names |
Families Citing this family (96)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US8352400B2 (en) | 1991-12-23 | 2013-01-08 | Hoffberg Steven M | Adaptive pattern recognition based controller apparatus and method and human-factored interface therefore |
US10361802B1 (en) | 1999-02-01 | 2019-07-23 | Blanding Hovenweep, Llc | Adaptive pattern recognition based control system and method |
US6321338B1 (en) | 1998-11-09 | 2001-11-20 | Sri International | Network surveillance |
US6954775B1 (en) | 1999-01-15 | 2005-10-11 | Cisco Technology, Inc. | Parallel intrusion detection sensors with load balancing for high speed networks |
US7966078B2 (en) | 1999-02-01 | 2011-06-21 | Steven Hoffberg | Network media appliance system and method |
US7484008B1 (en) | 1999-10-06 | 2009-01-27 | Borgia/Cummins, Llc | Apparatus for vehicle internetworks |
US7062782B1 (en) * | 1999-12-22 | 2006-06-13 | Uunet Technologies, Inc. | Overlay network for tracking denial-of-service floods in unreliable datagram delivery networks |
US7069313B2 (en) * | 2000-03-14 | 2006-06-27 | Microsoft Corporation | Methods and systems for preventing socket flooding during denial of service attacks |
US6904459B1 (en) * | 2000-03-14 | 2005-06-07 | Microsoft Corporation | Methods and systems for preventing socket flooding during denial of service attacks |
US7032023B1 (en) | 2000-05-16 | 2006-04-18 | America Online, Inc. | Throttling electronic communications from one or more senders |
US20040073617A1 (en) | 2000-06-19 | 2004-04-15 | Milliken Walter Clark | Hash-based systems and methods for detecting and preventing transmission of unwanted e-mail |
US9444785B2 (en) * | 2000-06-23 | 2016-09-13 | Cloudshield Technologies, Inc. | Transparent provisioning of network access to an application |
US7725587B1 (en) * | 2000-08-24 | 2010-05-25 | Aol Llc | Deep packet scan hacker identification |
US7711790B1 (en) * | 2000-08-24 | 2010-05-04 | Foundry Networks, Inc. | Securing an accessible computer system |
US7043759B2 (en) * | 2000-09-07 | 2006-05-09 | Mazu Networks, Inc. | Architecture to thwart denial of service attacks |
US7702806B2 (en) * | 2000-09-07 | 2010-04-20 | Riverbed Technology, Inc. | Statistics collection for network traffic |
US7124440B2 (en) * | 2000-09-07 | 2006-10-17 | Mazu Networks, Inc. | Monitoring network traffic denial of service attacks |
US7398317B2 (en) * | 2000-09-07 | 2008-07-08 | Mazu Networks, Inc. | Thwarting connection-based denial of service attacks |
US7278159B2 (en) * | 2000-09-07 | 2007-10-02 | Mazu Networks, Inc. | Coordinated thwarting of denial of service attacks |
US7743134B2 (en) * | 2000-09-07 | 2010-06-22 | Riverbed Technology, Inc. | Thwarting source address spoofing-based denial of service attacks |
US6983325B1 (en) * | 2000-12-28 | 2006-01-03 | Mcafee, Inc. | System and method for negotiating multi-path connections through boundary controllers in a networked computing environment |
US20020133586A1 (en) * | 2001-01-16 | 2002-09-19 | Carter Shanklin | Method and device for monitoring data traffic and preventing unauthorized access to a network |
US7301899B2 (en) * | 2001-01-31 | 2007-11-27 | Comverse Ltd. | Prevention of bandwidth congestion in a denial of service or other internet-based attack |
US7051116B1 (en) | 2001-06-21 | 2006-05-23 | America Online, Inc. | Client device identification when communicating through a network address translator device |
US7146642B1 (en) * | 2001-06-29 | 2006-12-05 | Mcafee, Inc. | System, method and computer program product for detecting modifications to risk assessment scanning caused by an intermediate device |
US7360245B1 (en) * | 2001-07-18 | 2008-04-15 | Novell, Inc. | Method and system for filtering spoofed packets in a network |
US7047303B2 (en) * | 2001-07-26 | 2006-05-16 | International Business Machines Corporation | Apparatus and method for using a network processor to guard against a “denial-of-service” attack on a server or server cluster |
US7464410B1 (en) * | 2001-08-30 | 2008-12-09 | At&T Corp. | Protection against flooding of a server |
JP2003087297A (en) * | 2001-09-13 | 2003-03-20 | Toshiba Corp | Device and method for transferring packet |
US20030074434A1 (en) * | 2001-10-11 | 2003-04-17 | Jason James L. | Determination of message source in network communications |
DE10154812B4 (en) * | 2001-11-08 | 2010-04-15 | Qimonda Ag | Circuit for adjusting a signal propagation time of a signal on a signal line |
US8087083B1 (en) * | 2002-01-04 | 2011-12-27 | Verizon Laboratories Inc. | Systems and methods for detecting a network sniffer |
US7743415B2 (en) * | 2002-01-31 | 2010-06-22 | Riverbed Technology, Inc. | Denial of service attacks characterization |
US7213264B2 (en) | 2002-01-31 | 2007-05-01 | Mazu Networks, Inc. | Architecture to thwart denial of service attacks |
US6944663B2 (en) * | 2002-03-06 | 2005-09-13 | Sun Microsystems, Inc. | Method and apparatus for using client puzzles to protect against denial-of-service attacks |
US7359962B2 (en) * | 2002-04-30 | 2008-04-15 | 3Com Corporation | Network security system integration |
US7383339B1 (en) | 2002-07-31 | 2008-06-03 | Aol Llc, A Delaware Limited Liability Company | Local proxy server for establishing device controls |
US7346057B2 (en) * | 2002-07-31 | 2008-03-18 | Cisco Technology, Inc. | Method and apparatus for inter-layer binding inspection to prevent spoofing |
US7769873B1 (en) * | 2002-10-25 | 2010-08-03 | Juniper Networks, Inc. | Dynamically inserting filters into forwarding paths of a network device |
US8504879B2 (en) * | 2002-11-04 | 2013-08-06 | Riverbed Technology, Inc. | Connection based anomaly detection |
US7363656B2 (en) * | 2002-11-04 | 2008-04-22 | Mazu Networks, Inc. | Event detection/anomaly correlation heuristics |
US8479057B2 (en) * | 2002-11-04 | 2013-07-02 | Riverbed Technology, Inc. | Aggregator for connection based anomaly detection |
US7454499B2 (en) * | 2002-11-07 | 2008-11-18 | Tippingpoint Technologies, Inc. | Active network defense system and method |
US20040098511A1 (en) * | 2002-11-16 | 2004-05-20 | Lin David H. | Packet routing method and system that routes packets to one of at least two processes based on at least one routing rule |
US20050180421A1 (en) * | 2002-12-02 | 2005-08-18 | Fujitsu Limited | Source address-fabricated packet detection unit, source address-fabricated packet detection method, and source address-fabricated packet detection program |
US20040123142A1 (en) * | 2002-12-18 | 2004-06-24 | Dubal Scott P. | Detecting a network attack |
US8239942B2 (en) | 2002-12-30 | 2012-08-07 | Cisco Technology, Inc. | Parallel intrusion detection sensors with load balancing for high speed networks |
US7382769B1 (en) | 2003-02-07 | 2008-06-03 | Juniper Networks, Inc. | Automatic filtering to prevent network attacks |
US7337219B1 (en) | 2003-05-30 | 2008-02-26 | Aol Llc, A Delaware Limited Liability Company | Classifying devices using a local proxy server |
US7437457B1 (en) | 2003-09-08 | 2008-10-14 | Aol Llc, A Delaware Limited Liability Company | Regulating concurrent logins associated with a single account |
US7730137B1 (en) | 2003-12-22 | 2010-06-01 | Aol Inc. | Restricting the volume of outbound electronic messages originated by a single entity |
US7594263B2 (en) * | 2004-02-05 | 2009-09-22 | International Business Machines Corporation | Operating a communication network through use of blocking measures for responding to communication traffic anomalies |
US7523494B2 (en) * | 2004-02-05 | 2009-04-21 | International Business Machines Corporation | Determining blocking measures for processing communication traffic anomalies |
US7411957B2 (en) * | 2004-03-26 | 2008-08-12 | Cisco Technology, Inc. | Hardware filtering support for denial-of-service attacks |
US7966658B2 (en) * | 2004-04-08 | 2011-06-21 | The Regents Of The University Of California | Detecting public network attacks using signatures and fast content analysis |
US7929534B2 (en) * | 2004-06-28 | 2011-04-19 | Riverbed Technology, Inc. | Flow logging for connection-based anomaly detection |
FR2872980A1 (en) * | 2004-07-08 | 2006-01-13 | France Telecom | METHOD, DEVICE AND SYSTEM FOR PROTECTING A SERVER AGAINST SERVICE DENI ATTACKS |
CN100370757C (en) * | 2004-07-09 | 2008-02-20 | 国际商业机器公司 | Method and system for dentifying a distributed denial of service (DDOS) attack within a network and defending against such an attack |
US7376134B2 (en) | 2004-08-02 | 2008-05-20 | Novell, Inc. | Privileged network routing |
US9398037B1 (en) * | 2004-09-27 | 2016-07-19 | Radix Holdings, Llc | Detecting and processing suspicious network communications |
US20060075229A1 (en) * | 2004-09-30 | 2006-04-06 | Marek James A | Method and apparatus for maintaining a communications connection while guarding against bandwidth consuming attacks |
US7760653B2 (en) * | 2004-10-26 | 2010-07-20 | Riverbed Technology, Inc. | Stackable aggregation for connection based anomaly detection |
US8010685B2 (en) * | 2004-11-09 | 2011-08-30 | Cisco Technology, Inc. | Method and apparatus for content classification |
US7936682B2 (en) | 2004-11-09 | 2011-05-03 | Cisco Technology, Inc. | Detecting malicious attacks using network behavior and header analysis |
DE602006005225D1 (en) * | 2005-01-19 | 2009-04-02 | Markport Ltd | SECURITY SYSTEM FOR A MOBILE NETWORK |
US20060174324A1 (en) * | 2005-01-28 | 2006-08-03 | Zur Uri E | Method and system for mitigating denial of service in a communication network |
US8059551B2 (en) | 2005-02-15 | 2011-11-15 | Raytheon Bbn Technologies Corp. | Method for source-spoofed IP packet traceback |
US20060248588A1 (en) * | 2005-04-28 | 2006-11-02 | Netdevices, Inc. | Defending Denial of Service Attacks in an Inter-networked Environment |
US7636305B1 (en) | 2005-06-17 | 2009-12-22 | Cisco Technology, Inc. | Method and apparatus for monitoring network traffic |
US7930740B2 (en) * | 2005-07-07 | 2011-04-19 | International Business Machines Corporation | System and method for detection and mitigation of distributed denial of service attacks |
US7639688B2 (en) * | 2005-07-18 | 2009-12-29 | Cisco Technology, Inc. | Automatic protection of an SP infrastructure against exterior traffic |
US8166175B2 (en) | 2005-09-12 | 2012-04-24 | Microsoft Corporation | Sharing a port with multiple processes |
WO2007035655A2 (en) * | 2005-09-16 | 2007-03-29 | The Trustees Of Columbia University In The City Of New York | Using overlay networks to counter denial-of-service attacks |
US7930748B1 (en) * | 2005-12-29 | 2011-04-19 | At&T Intellectual Property Ii, L.P. | Method and apparatus for detecting scans in real-time |
ES2368745T3 (en) * | 2006-01-23 | 2011-11-21 | Telefonaktiebolaget Lm Ericsson (Publ) | ACCESS TO COMMUNICATION NETWORK. |
US8804729B1 (en) * | 2006-02-16 | 2014-08-12 | Marvell Israel (M.I.S.L.) Ltd. | IPv4, IPv6, and ARP spoofing protection method |
US8001601B2 (en) * | 2006-06-02 | 2011-08-16 | At&T Intellectual Property Ii, L.P. | Method and apparatus for large-scale automated distributed denial of service attack detection |
US8205252B2 (en) | 2006-07-28 | 2012-06-19 | Microsoft Corporation | Network accountability among autonomous systems |
GB2449852A (en) * | 2007-06-04 | 2008-12-10 | Agilent Technologies Inc | Monitoring network attacks using pattern matching |
US8752131B2 (en) * | 2008-04-30 | 2014-06-10 | Fujitsu Limited | Facilitating protection of a maintenance entity group |
EP2294734A1 (en) * | 2008-07-03 | 2011-03-16 | The Trustees of Columbia University in the City of New York | Methods and systems for controlling traffic on a communication network |
CN101674293B (en) * | 2008-09-11 | 2013-04-03 | 阿里巴巴集团控股有限公司 | Method and system for processing abnormal request in distributed application |
US8661522B2 (en) * | 2011-07-28 | 2014-02-25 | Arbor Networks, Inc. | Method and apparatus for probabilistic matching to authenticate hosts during distributed denial of service attack |
US9130901B2 (en) | 2013-02-26 | 2015-09-08 | Zentera Systems, Inc. | Peripheral firewall system for application protection in cloud computing environments |
US9699034B2 (en) | 2013-02-26 | 2017-07-04 | Zentera Systems, Inc. | Secure cloud fabric to connect subnets in different network domains |
US9525564B2 (en) * | 2013-02-26 | 2016-12-20 | Zentera Systems, Inc. | Secure virtual network platform for enterprise hybrid cloud computing environments |
US10484334B1 (en) | 2013-02-26 | 2019-11-19 | Zentera Systems, Inc. | Distributed firewall security system that extends across different cloud computing networks |
US10348767B1 (en) | 2013-02-26 | 2019-07-09 | Zentera Systems, Inc. | Cloud over IP session layer network |
US10382401B1 (en) | 2013-02-26 | 2019-08-13 | Zentera Systems, Inc. | Cloud over IP for enterprise hybrid cloud network and security |
US9559928B1 (en) * | 2013-05-03 | 2017-01-31 | Amazon Technologies, Inc. | Integrated test coverage measurement in distributed systems |
US9344516B2 (en) | 2013-05-30 | 2016-05-17 | Zentera Systems, Inc. | Interlocking applications and files |
US9762546B2 (en) * | 2013-06-27 | 2017-09-12 | Jeong Hoan Seo | Multi-connection system and method for service using internet protocol |
US9705895B1 (en) | 2013-07-05 | 2017-07-11 | Dcs7, Llc | System and methods for classifying internet devices as hostile or benign |
US9807092B1 (en) | 2013-07-05 | 2017-10-31 | Dcs7, Llc | Systems and methods for classification of internet devices as hostile or benign |
US10135792B2 (en) | 2015-08-25 | 2018-11-20 | Anchorfree Inc. | Secure communications with internet-enabled devices |
US10681206B1 (en) | 2018-12-05 | 2020-06-09 | At&T Intellectual Property I, L.P. | Detecting a spoofed call |
Family Cites Families (105)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US4438511A (en) | 1980-11-10 | 1984-03-20 | Telebit Corporation | Packetized ensemble modem |
NL8400186A (en) * | 1984-01-20 | 1985-08-16 | Philips Nv | PROCESSOR SYSTEM CONTAINING A NUMBER OF STATIONS CONNECTED BY A COMMUNICATION NETWORK AND STATION FOR USE IN SUCH A PROCESSOR SYSTEM. |
US4672572A (en) * | 1984-05-21 | 1987-06-09 | Gould Inc. | Protector system for computer access and use |
US4771425A (en) | 1984-10-29 | 1988-09-13 | Stratacom, Inc. | Synchoronous packet voice/data communication system |
US4903261A (en) | 1984-10-29 | 1990-02-20 | Stratacom, Inc. | Synchronous packet voice/data communication system |
US4819228A (en) | 1984-10-29 | 1989-04-04 | Stratacom Inc. | Synchronous packet voice/data communication system |
US4833706A (en) | 1985-05-20 | 1989-05-23 | Telebit Corporation | Ensemble modem structure for imperfect transmission media |
US5054034A (en) | 1985-05-20 | 1991-10-01 | Telebit Corporation | Ensemble modem structure for imperfect transmission media |
US4679227A (en) | 1985-05-20 | 1987-07-07 | Telebit Corporation | Ensemble modem structure for imperfect transmission media |
US4757495A (en) | 1986-03-05 | 1988-07-12 | Telebit Corporation | Speech and data multiplexor optimized for use over impaired and bandwidth restricted analog channels |
US5088032A (en) | 1988-01-29 | 1992-02-11 | Cisco Systems, Inc. | Method and apparatus for routing communications among computer networks |
US4980897A (en) | 1988-08-12 | 1990-12-25 | Telebit Corporation | Multi-channel trellis encoder/decoder |
US5255291A (en) | 1988-11-14 | 1993-10-19 | Stratacom, Inc. | Microprocessor based packet isochronous clocking transmission system and method |
US5020058A (en) | 1989-01-23 | 1991-05-28 | Stratacom, Inc. | Packet voice/data communication system having protocol independent repetitive packet suppression |
US5003595A (en) * | 1989-08-29 | 1991-03-26 | At&T Bell Laboratories | Secure dial access to computer systems |
US5128945A (en) | 1989-12-21 | 1992-07-07 | Stratacom, Inc. | Packet framing using cyclic redundancy checking |
US5072449A (en) | 1989-12-21 | 1991-12-10 | Stratacom, Inc. | Packet framing using cyclic redundancy checking |
US5025469A (en) | 1990-02-06 | 1991-06-18 | Bingham John A C | Method and apparatus for reducing the turn-around time in facsimile transmission |
US5206886A (en) | 1990-04-16 | 1993-04-27 | Telebit Corporation | Method and apparatus for correcting for clock and carrier frequency offset, and phase jitter in mulicarrier modems |
US5228062A (en) | 1990-04-16 | 1993-07-13 | Telebit Corporation | Method and apparatus for correcting for clock and carrier frequency offset, and phase jitter in multicarrier modems |
US5032979A (en) * | 1990-06-22 | 1991-07-16 | International Business Machines Corporation | Distributed security auditing subsystem for an operating system |
US5115431A (en) | 1990-09-28 | 1992-05-19 | Stratacom, Inc. | Method and apparatus for packet communications signaling |
US5059925A (en) | 1990-09-28 | 1991-10-22 | Stratacom, Inc. | Method and apparatus for transparently switching clock sources |
JPH06509689A (en) | 1991-02-28 | 1994-10-27 | ストラタコム・インコーポレーテッド | How to reroute connections |
US5274631A (en) | 1991-03-11 | 1993-12-28 | Kalpana, Inc. | Computer network switching system |
US5224099A (en) | 1991-05-17 | 1993-06-29 | Stratacom, Inc. | Circuitry and method for fair queuing and servicing cell traffic using hopcounts and traffic classes |
JPH0712172B2 (en) * | 1991-11-07 | 1995-02-08 | 富士通株式会社 | Method for detecting identity theft in communication |
US5313454A (en) | 1992-04-01 | 1994-05-17 | Stratacom, Inc. | Congestion control for cell networks |
US5274635A (en) | 1992-11-18 | 1993-12-28 | Stratacom, Inc. | Method and apparatus for aligning a digital communication data stream across a cell network |
US5274643A (en) | 1992-12-11 | 1993-12-28 | Stratacom, Inc. | Method for optimizing a network having virtual circuit routing over virtual paths |
US5422880A (en) | 1993-04-05 | 1995-06-06 | Stratacom, Inc. | Broadband switching fabric in a communication controller |
US5394394A (en) | 1993-06-24 | 1995-02-28 | Bolt Beranek And Newman Inc. | Message header classifier |
US5359592A (en) | 1993-06-25 | 1994-10-25 | Stratacom, Inc. | Bandwidth and congestion control for queue channels in a cell switching communication controller |
US5598581A (en) | 1993-08-06 | 1997-01-28 | Cisco Sytems, Inc. | Variable latency cut through bridge for forwarding packets in response to user's manual adjustment of variable latency threshold point while the bridge is operating |
US5473607A (en) | 1993-08-09 | 1995-12-05 | Grand Junction Networks, Inc. | Packet filtering for data networks |
US5430715A (en) | 1993-09-15 | 1995-07-04 | Stratacom, Inc. | Flexible destination address mapping mechanism in a cell switching communication controller |
US5631897A (en) | 1993-10-01 | 1997-05-20 | Nec America, Inc. | Apparatus and method for incorporating a large number of destinations over circuit-switched wide area network connections |
US5737364A (en) | 1994-02-18 | 1998-04-07 | Telebit Corporation | Serial communications interface that supports multiple interface standards |
US5390239A (en) | 1994-03-17 | 1995-02-14 | Morris; Gregory A. | Method for increasing digital data throughput over telephone lines |
US5509006A (en) | 1994-04-18 | 1996-04-16 | Cisco Systems Incorporated | Apparatus and method for switching packets using tree memory |
US5519704A (en) | 1994-04-21 | 1996-05-21 | Cisco Systems, Inc. | Reliable transport protocol for internetwork routing |
US5473599A (en) | 1994-04-22 | 1995-12-05 | Cisco Systems, Incorporated | Standby router protocol |
US5555244A (en) | 1994-05-19 | 1996-09-10 | Integrated Network Corporation | Scalable multimedia network |
US5617421A (en) | 1994-06-17 | 1997-04-01 | Cisco Systems, Inc. | Extended domain computer network using standard links |
US5617417A (en) | 1994-09-07 | 1997-04-01 | Stratacom, Inc. | Asynchronous transfer mode communication in inverse multiplexing over multiple communication links |
US5561669A (en) | 1994-10-26 | 1996-10-01 | Cisco Systems, Inc. | Computer network switching system with expandable number of ports |
US5623601A (en) * | 1994-11-18 | 1997-04-22 | Milkway Networks Corporation | Apparatus and method for providing a secure gateway for communication and data exchanges between networks |
US5793978A (en) | 1994-12-29 | 1998-08-11 | Cisco Technology, Inc. | System for routing packets by separating packets in to broadcast packets and non-broadcast packets and allocating a selected communication bandwidth to the broadcast packets |
US5867666A (en) | 1994-12-29 | 1999-02-02 | Cisco Systems, Inc. | Virtual interfaces with dynamic binding |
US5561663A (en) | 1994-12-30 | 1996-10-01 | Stratacom, Inc. | Method and apparatus for performing communication rate control using geometric weighted groups |
US5737526A (en) | 1994-12-30 | 1998-04-07 | Cisco Systems | Network having at least two routers, each having conditional filter so one of two transmits given frame and each transmits different frames, providing connection to a subnetwork |
US5682478A (en) * | 1995-01-19 | 1997-10-28 | Microsoft Corporation | Method and apparatus for supporting multiple, simultaneous services over multiple, simultaneous connections between a client and network server |
US5570360A (en) | 1995-03-20 | 1996-10-29 | Stratacom, Inc. | Method and apparatus for implementing communication service contract using cell arrival information |
US5666353A (en) | 1995-03-21 | 1997-09-09 | Cisco Systems, Inc. | Frame based traffic policing for a digital switch |
US5602902A (en) | 1995-03-24 | 1997-02-11 | Intel Corporation | Four wire modem signal switching for voice and data applications |
US6003030A (en) * | 1995-06-07 | 1999-12-14 | Intervu, Inc. | System and method for optimized storage and retrieval of data on a distributed computer network |
US5687176A (en) | 1995-06-09 | 1997-11-11 | Hubbell Incorporated | Zero byte substitution method and apparatus for telecommunications equipment |
US5812786A (en) | 1995-06-21 | 1998-09-22 | Bell Atlantic Network Services, Inc. | Variable rate and variable mode transmission system |
US5729546A (en) | 1995-06-21 | 1998-03-17 | Cisco Systems, Inc. | Expandable communication cell bus for multiplexing and concentrating communication cell traffic onto high speed lines |
US5787070A (en) | 1995-06-21 | 1998-07-28 | Cisco Technology, Inc. | One for N redundancy in a communication system |
US5838915A (en) | 1995-06-21 | 1998-11-17 | Cisco Technology, Inc. | System for buffering data in the network having a linked list for each of said plurality of queues |
US5764641A (en) | 1995-09-08 | 1998-06-09 | Cisco Systems, Inc. | Early and integrated tail packet discard system |
US5757924A (en) * | 1995-09-18 | 1998-05-26 | Digital Secured Networks Techolognies, Inc. | Network security device which performs MAC address translation without affecting the IP address |
US5691997A (en) | 1995-09-28 | 1997-11-25 | Cisco Systems, Inc. | Encoder for use in asynchronous transfer mode systems |
US5770950A (en) | 1995-09-28 | 1998-06-23 | Cisco Systems, Inc. | Minimizing signal reflection along a transmission line without terminating the transmission line |
US5756280A (en) | 1995-10-03 | 1998-05-26 | International Business Machines Corporation | Multimedia distribution network including video switch |
US5757916A (en) * | 1995-10-06 | 1998-05-26 | International Series Research, Inc. | Method and apparatus for authenticating the location of remote users of networked computing systems |
US5793763A (en) | 1995-11-03 | 1998-08-11 | Cisco Technology, Inc. | Security system for network address translation systems |
US5784559A (en) * | 1995-11-06 | 1998-07-21 | Sun Microsystems, Inc. | Full duplex flow control for ethernet networks |
US5828846A (en) * | 1995-11-22 | 1998-10-27 | Raptor Systems, Inc. | Controlling passage of packets or messages via a virtual connection or flow |
AU1420197A (en) | 1995-12-14 | 1997-07-03 | Cisco Systems, Inc. | Multi-level rate scheduler |
US5742649A (en) | 1995-12-15 | 1998-04-21 | Cisco Technology, Inc. | SRTS clock recovery system for use in a highly stressed network environment |
US5812618A (en) | 1995-12-15 | 1998-09-22 | Cisco Technology, Inc. | SRTS clock recovery system implementing adaptive clock recovery techniques |
US5822383A (en) | 1995-12-15 | 1998-10-13 | Cisco Technology, Inc. | System and method for maintaining network synchronization utilizing digital phase comparison techniques with synchronous residual time stamps |
US5859550A (en) | 1995-12-19 | 1999-01-12 | Cisco Technology, Inc. | Network switching system including a zero-delay output buffer |
US5732079A (en) | 1995-12-22 | 1998-03-24 | Cisco Technology, Inc. | Method and apparatus for skewing the start of transmission on multiple data highways |
US5765032A (en) | 1996-01-11 | 1998-06-09 | Cisco Technology, Inc. | Per channel frame queuing and servicing in the egress direction of a communications network |
US5838994A (en) | 1996-01-11 | 1998-11-17 | Cisco Technology, Inc. | Method and apparatus for the dynamic allocation of buffers in a digital communications network |
US5781550A (en) * | 1996-02-02 | 1998-07-14 | Digital Equipment Corporation | Transparent and secure network gateway |
US5826014A (en) * | 1996-02-06 | 1998-10-20 | Network Engineering Software | Firewall system for protecting network elements connected to a public network |
US5867647A (en) * | 1996-02-09 | 1999-02-02 | Secure Computing Corporation | System and method for securing compiled program code |
US5742604A (en) | 1996-03-28 | 1998-04-21 | Cisco Systems, Inc. | Interswitch link mechanism for connecting high-performance network switches |
US5740171A (en) | 1996-03-28 | 1998-04-14 | Cisco Systems, Inc. | Address translation mechanism for a high-performance network switch |
US5796732A (en) | 1996-03-28 | 1998-08-18 | Cisco Technology, Inc. | Architecture for an expandable transaction-based switching bus |
US5764636A (en) | 1996-03-28 | 1998-06-09 | Cisco Technology, Inc. | Color blocking logic mechanism for a high-performance network switch |
US5668857A (en) | 1996-03-29 | 1997-09-16 | Netspeed, Inc. | Communication server apparatus and method |
US5852655A (en) | 1996-03-29 | 1998-12-22 | Cisco Systems, Inc. | Communication server apparatus having distributed switching and method |
US5781617A (en) | 1996-03-29 | 1998-07-14 | Netspeed, Inc. | Communication server apparatus using frequency multiplexing and method |
US5787255A (en) | 1996-04-12 | 1998-07-28 | Cisco Systems, Inc. | Internetworking device with enhanced protocol translation circuit |
US5793951A (en) * | 1996-05-10 | 1998-08-11 | Apple Computer, Inc. | Security and report generation system for networked multimedia workstations |
US5802042A (en) | 1996-06-28 | 1998-09-01 | Cisco Systems, Inc. | Autosensing LMI protocols in frame relay networks |
US5835481A (en) | 1996-08-28 | 1998-11-10 | Akyol; Cihangir M. | Fault tolerant lane system |
US6061650A (en) * | 1996-09-10 | 2000-05-09 | Nortel Networks Corporation | Method and apparatus for transparently providing mobile network functionality |
US5892903A (en) * | 1996-09-12 | 1999-04-06 | Internet Security Systems, Inc. | Method and apparatus for detecting and identifying security vulnerabilities in an open network computer communication system |
US5835725A (en) | 1996-10-21 | 1998-11-10 | Cisco Technology, Inc. | Dynamic address assignment and resolution technique |
US5805595A (en) | 1996-10-23 | 1998-09-08 | Cisco Systems, Inc. | System and method for communicating packetized data over a channel bank |
US5991881A (en) * | 1996-11-08 | 1999-11-23 | Harris Corporation | Network surveillance system |
US6009475A (en) * | 1996-12-23 | 1999-12-28 | International Business Machines Corporation | Filter rule validation and administration for firewalls |
US5864666A (en) * | 1996-12-23 | 1999-01-26 | International Business Machines Corporation | Web-based administration of IP tunneling on internet firewalls |
US5958053A (en) * | 1997-01-30 | 1999-09-28 | At&T Corp. | Communications protocol with improved security |
US5983270A (en) * | 1997-03-11 | 1999-11-09 | Sequel Technology Corporation | Method and apparatus for managing internetwork and intranetwork activity |
US5835036A (en) | 1997-05-12 | 1998-11-10 | Cisco Systems Co. | Method of encoding data for transmission |
US5968176A (en) * | 1997-05-29 | 1999-10-19 | 3Com Corporation | Multilayer firewall system |
US6035404A (en) * | 1997-09-09 | 2000-03-07 | International Business Machines Corporation | Concurrent user access control in stateless network computing service system |
US6975642B2 (en) * | 2001-09-17 | 2005-12-13 | Finisar Corporation | Optoelectronic device capable of participating in in-band traffic |
-
1998
- 1998-03-18 US US09/040,898 patent/US6738814B1/en not_active Expired - Lifetime
-
1999
- 1999-03-18 WO PCT/US1999/005900 patent/WO1999048303A2/en not_active Application Discontinuation
- 1999-03-18 AU AU30982/99A patent/AU3098299A/en not_active Withdrawn
-
2004
- 2004-03-24 US US10/808,629 patent/US7836296B2/en not_active Expired - Fee Related
Cited By (86)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US8904516B2 (en) | 1998-10-30 | 2014-12-02 | Virnetx, Inc. | System and method employing an agile network protocol for secure communications using secure domain names |
US8843643B2 (en) | 1998-10-30 | 2014-09-23 | Virnetx, Inc. | System and method employing an agile network protocol for secure communications using secure domain names |
US6834310B2 (en) | 1998-10-30 | 2004-12-21 | Science Applications International Corp. | Preventing packet flooding of a computer on a computer network |
US8850009B2 (en) | 1998-10-30 | 2014-09-30 | Virnetx, Inc. | System and method employing an agile network protocol for secure communications using secure domain names |
US10511573B2 (en) | 1998-10-30 | 2019-12-17 | Virnetx, Inc. | Agile network protocol for secure communications using secure domain names |
US8868705B2 (en) | 1998-10-30 | 2014-10-21 | Virnetx, Inc. | Agile network protocol for secure communications using secure domain names |
US10187387B2 (en) | 1998-10-30 | 2019-01-22 | Virnetx, Inc. | Method for establishing connection between devices |
US6502135B1 (en) | 1998-10-30 | 2002-12-31 | Science Applications International Corporation | Agile network protocol for secure communications with assured system availability |
US9967240B2 (en) | 1998-10-30 | 2018-05-08 | Virnetx, Inc. | Agile network protocol for secure communications using secure domain names |
US8874771B2 (en) | 1998-10-30 | 2014-10-28 | Virnetx, Inc. | Agile network protocol for secure communications with assured system availability |
US9860283B2 (en) | 1998-10-30 | 2018-01-02 | Virnetx, Inc. | Agile network protocol for secure video communications with assured system availability |
US7188180B2 (en) | 1998-10-30 | 2007-03-06 | Vimetx, Inc. | Method for establishing secure communication link between computers of virtual private network |
US6618761B2 (en) | 1998-10-30 | 2003-09-09 | Science Applications International Corp. | Agile network protocol for secure communications with assured system availability |
US9819649B2 (en) | 1998-10-30 | 2017-11-14 | Virnetx, Inc. | System and method employing an agile network protocol for secure communications using secure domain names |
US9479426B2 (en) | 1998-10-30 | 2016-10-25 | Virnetz, Inc. | Agile network protocol for secure communications with assured system availability |
US9413766B2 (en) | 1998-10-30 | 2016-08-09 | Virnetx, Inc. | Method for establishing connection between devices |
US6826616B2 (en) | 1998-10-30 | 2004-11-30 | Science Applications International Corp. | Method for establishing secure communication link between computers of virtual private network |
US9386000B2 (en) | 1998-10-30 | 2016-07-05 | Virnetx, Inc. | System and method for establishing a communication link |
US9374346B2 (en) | 1998-10-30 | 2016-06-21 | Virnetx, Inc. | Agile network protocol for secure communications using secure domain names |
US9100375B2 (en) | 1998-10-30 | 2015-08-04 | Virnetx, Inc. | System and method employing an agile network protocol for secure communications using secure domain names |
US9094399B2 (en) | 1998-10-30 | 2015-07-28 | Virnetx, Inc. | Method for establishing secure communication link between computers of virtual private network |
US9077695B2 (en) | 1998-10-30 | 2015-07-07 | Virnetx, Inc. | System and method for establishing an encrypted communication link based on IP address lookup requests |
US6839759B2 (en) | 1998-10-30 | 2005-01-04 | Science Applications International Corp. | Method for establishing secure communication link between computers of virtual private network without user entering any cryptographic information |
US7133930B2 (en) | 1998-10-30 | 2006-11-07 | Science Applications International Corporation | Agile network protocol for secure communications with assured system availability |
US8943201B2 (en) | 1998-10-30 | 2015-01-27 | Virnetx, Inc. | Method for establishing encrypted channel |
US9077694B2 (en) | 1998-10-30 | 2015-07-07 | Virnetx, Inc. | Agile network protocol for secure communications using secure domain names |
US6907473B2 (en) | 1998-10-30 | 2005-06-14 | Science Applications International Corp. | Agile network protocol for secure communications with assured system availability |
US9037713B2 (en) | 1998-10-30 | 2015-05-19 | Virnetx, Inc. | Agile network protocol for secure communications using secure domain names |
US9038163B2 (en) | 1998-10-30 | 2015-05-19 | Virnetx, Inc. | Systems and methods for connecting network devices over communication network |
US9027115B2 (en) | 1998-10-30 | 2015-05-05 | Virnetx, Inc. | System and method for using a registered name to connect network devices with a link that uses encryption |
US7010604B1 (en) | 1998-10-30 | 2006-03-07 | Science Applications International Corporation | Agile network protocol for secure communications with assured system availability |
US7342926B2 (en) | 1999-12-22 | 2008-03-11 | Nokia Corporation | Prevention of spoofing in telecommunications systems |
US7801106B2 (en) | 1999-12-22 | 2010-09-21 | Nokia Corporation | Prevention of spoofing in telecommunications system |
CN100431296C (en) * | 1999-12-22 | 2008-11-05 | 诺基亚公司 | Prevention of spoofing in telecommunications systems |
GB2363951A (en) * | 2000-02-11 | 2002-01-09 | Ibm | Defending against flooding attacks on servers |
US7137144B1 (en) | 2000-02-11 | 2006-11-14 | International Business Machines Corporation | Technique of defending against network connection flooding attacks |
GB2363951B (en) * | 2000-02-11 | 2003-07-09 | Ibm | Method and apparatus for defending against flooding attacks |
WO2001061922A3 (en) * | 2000-02-15 | 2003-03-06 | Science Applic Int Corp | Agile network protocol for secure communications with assured system availability |
US8879427B2 (en) | 2000-07-07 | 2014-11-04 | 802 Systems Inc. | Methods for updating the configuration of a programmable packet filtering device including a determination as to whether a packet is to be junked |
US7013482B1 (en) | 2000-07-07 | 2006-03-14 | 802 Systems Llc | Methods for packet filtering including packet invalidation if packet validity determination not timely made |
US8458784B2 (en) | 2000-07-07 | 2013-06-04 | 802 Systems, Inc. | Data protection system selectively altering an end portion of packets based on incomplete determination of whether a packet is valid or invalid |
WO2002019661A2 (en) * | 2000-09-01 | 2002-03-07 | Top Layer Networks, Inc. | System and process for defending against denial of service attacks on network nodes |
WO2002019661A3 (en) * | 2000-09-01 | 2002-04-18 | Top Layer Networks Inc | System and process for defending against denial of service attacks on network nodes |
JP2004507978A (en) * | 2000-09-01 | 2004-03-11 | トップ レイヤー ネットワークス,インク. | System and method for countering denial of service attacks on network nodes |
WO2002021244A3 (en) * | 2000-09-08 | 2002-07-18 | Univ Michigan | Method and system for protecting publicly accessible network computer services from undesirable network traffic in real-time |
WO2002021244A2 (en) * | 2000-09-08 | 2002-03-14 | The Regents Of The University Of Michigan | Method and system for protecting publicly accessible network computer services from undesirable network traffic in real-time |
EP1364297A4 (en) * | 2000-10-17 | 2009-04-08 | Wanwall Inc | Methods and apparatus for protecting against overload conditions on nodes of a distributed network |
WO2002033870A2 (en) | 2000-10-17 | 2002-04-25 | Wanwall, Inc. | Methods and apparatus for protecting against overload conditions on nodes of a distributed network |
US7707305B2 (en) | 2000-10-17 | 2010-04-27 | Cisco Technology, Inc. | Methods and apparatus for protecting against overload conditions on nodes of a distributed network |
EP1364297A2 (en) * | 2000-10-17 | 2003-11-26 | Wanwall, Inc. | Methods and apparatus for protecting against overload conditions on nodes of a distributed network |
WO2002069604A2 (en) * | 2000-11-07 | 2002-09-06 | Surgient Networks, Inc. | Network security accelerator |
WO2002069604A3 (en) * | 2000-11-07 | 2003-03-13 | Surgient Networks Inc | Network security accelerator |
US7031267B2 (en) | 2000-12-21 | 2006-04-18 | 802 Systems Llc | PLD-based packet filtering methods with PLD configuration data update of filtering rules |
US7007169B2 (en) | 2001-04-04 | 2006-02-28 | International Business Machines Corporation | Method and apparatus for protecting a web server against vandals attacks without restricting legitimate access |
US7845004B2 (en) | 2001-07-27 | 2010-11-30 | International Business Machines Corporation | Correlating network information and intrusion information to find the entry point of an attack upon a protected computer |
AU2001293762B2 (en) * | 2001-08-07 | 2005-12-22 | KANGTEGA GmbH | Method, data carrier, computer system and computer programme for the identification and defence of attacks on server systems of network service providers and operators |
WO2003017613A1 (en) * | 2001-08-07 | 2003-02-27 | Ip-Online Gmbh | Method, data carrier, computer system and computer programme for the identification and defence of attacks on server systems of network service providers and operators |
US7107619B2 (en) | 2001-08-31 | 2006-09-12 | International Business Machines Corporation | System and method for the detection of and reaction to denial of service attacks |
US6851062B2 (en) | 2001-09-27 | 2005-02-01 | International Business Machines Corporation | System and method for managing denial of service attacks |
US7388866B2 (en) | 2002-03-07 | 2008-06-17 | Broadcom Corporation | System and method for expediting upper layer protocol (ULP) connection negotiations |
EP1343289A1 (en) * | 2002-03-07 | 2003-09-10 | Broadcom Corporation | Method for expediting upper layer protocol (ULP) connection negotiations |
US7216260B2 (en) | 2002-03-27 | 2007-05-08 | International Business Machines Corporation | Method, system and program product for dynamically detecting errant data sequences and performing corresponding actions |
US7140041B2 (en) | 2002-04-11 | 2006-11-21 | International Business Machines Corporation | Detecting dissemination of malicious programs |
US6800321B1 (en) | 2002-05-29 | 2004-10-05 | The Regents Of The University Of California | Reduced AC losses in HTS coated conductors |
US7752324B2 (en) | 2002-07-12 | 2010-07-06 | Penn State Research Foundation | Real-time packet traceback and associated packet marking strategies |
WO2004008700A3 (en) * | 2002-07-12 | 2004-04-08 | Penn State Res Found | Real-time packet traceback and associated packet marking strategies |
WO2004008700A2 (en) * | 2002-07-12 | 2004-01-22 | The Penn State Research Foundation | Real-time packet traceback and associated packet marking strategies |
KR100447677B1 (en) * | 2002-11-01 | 2004-09-08 | 주식회사 케이티 | Method of spoofing attack system detection through network packet monitoring |
WO2004056063A1 (en) * | 2002-12-13 | 2004-07-01 | Cetacea Networks Corporation | Network bandwidth anomaly detector apparatus and method for detecting network attacks using correlation function |
US8161145B2 (en) | 2003-02-27 | 2012-04-17 | International Business Machines Corporation | Method for managing of denial of service attacks using bandwidth allocation technology |
FR2852754A1 (en) * | 2003-03-20 | 2004-09-24 | At & T Corp | Data transmission system, has fire wall, router and probe detecting abnormal operating conditions based on pre-set system operation, and sending messages to network security manager to activate filtering actions on message reception |
KR20050063477A (en) * | 2003-12-22 | 2005-06-28 | 백남균 | Security system for network information and method thereof |
US9860271B2 (en) | 2013-08-26 | 2018-01-02 | A10 Networks, Inc. | Health monitor based distributed denial of service attack mitigation |
US10187423B2 (en) | 2013-08-26 | 2019-01-22 | A10 Networks, Inc. | Health monitor based distributed denial of service attack mitigation |
US9756071B1 (en) | 2014-09-16 | 2017-09-05 | A10 Networks, Inc. | DNS denial of service attack protection |
US9537886B1 (en) | 2014-10-23 | 2017-01-03 | A10 Networks, Inc. | Flagging security threats in web service requests |
US9584318B1 (en) | 2014-12-30 | 2017-02-28 | A10 Networks, Inc. | Perfect forward secrecy distributed denial of service attack defense |
US9838423B2 (en) | 2014-12-30 | 2017-12-05 | A10 Networks, Inc. | Perfect forward secrecy distributed denial of service attack defense |
US9900343B1 (en) | 2015-01-05 | 2018-02-20 | A10 Networks, Inc. | Distributed denial of service cellular signaling |
US9848013B1 (en) | 2015-02-05 | 2017-12-19 | A10 Networks, Inc. | Perfect forward secrecy distributed denial of service attack detection |
US10063591B1 (en) | 2015-02-14 | 2018-08-28 | A10 Networks, Inc. | Implementing and optimizing secure socket layer intercept |
US10834132B2 (en) | 2015-02-14 | 2020-11-10 | A10 Networks, Inc. | Implementing and optimizing secure socket layer intercept |
US10469594B2 (en) | 2015-12-08 | 2019-11-05 | A10 Networks, Inc. | Implementation of secure socket layer intercept |
US10505984B2 (en) | 2015-12-08 | 2019-12-10 | A10 Networks, Inc. | Exchange of control information between secure socket layer gateways |
US10116634B2 (en) | 2016-06-28 | 2018-10-30 | A10 Networks, Inc. | Intercepting secure session upon receipt of untrusted certificate |
US10158666B2 (en) | 2016-07-26 | 2018-12-18 | A10 Networks, Inc. | Mitigating TCP SYN DDoS attacks using TCP reset |
Also Published As
Publication number | Publication date |
---|---|
AU3098299A (en) | 1999-10-11 |
US20040181694A1 (en) | 2004-09-16 |
US7836296B2 (en) | 2010-11-16 |
US6738814B1 (en) | 2004-05-18 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US6738814B1 (en) | Method for blocking denial of service and address spoofing attacks on a private network | |
US11824875B2 (en) | Efficient threat context-aware packet filtering for network protection | |
US10785191B2 (en) | Device, system and method for defending a computer network | |
CN114095198B (en) | Method and system for efficient cryptographic SNI filtering for network security applications | |
Anagnostopoulos et al. | DNS amplification attack revisited | |
US7370354B2 (en) | Method of remotely managing a firewall | |
US20170257339A1 (en) | Logical / physical address state lifecycle management | |
US7451489B2 (en) | Active network defense system and method | |
EP1319296B1 (en) | System and process for defending against denial of service attacks on networks nodes | |
US20200137112A1 (en) | Detection and mitigation solution using honeypots | |
JP2014519751A (en) | Using DNS communication to filter domain names | |
Manna et al. | Review of syn-flooding attack detection mechanism | |
Steadman et al. | Dnsxd: Detecting data exfiltration over dns | |
Mukkamala et al. | A survey on the different firewall technologies | |
US20040250158A1 (en) | System and method for protecting an IP transmission network against the denial of service attacks | |
Rajendran | DNS amplification & DNS tunneling attacks simulation, detection and mitigation approaches | |
Tzur-David et al. | Delay fast packets (dfp): Prevention of dns cache poisoning | |
US20050147037A1 (en) | Scan detection | |
Bellaïche et al. | SYN flooding attack detection by TCP handshake anomalies | |
KR20040105355A (en) | Network interface card with function for protecting denial of service attack and distributed denial of service attack and method for protecting denial of service attack and distributed denial of service attack using thereof | |
Bou-Harb et al. | On detecting and clustering distributed cyber scanning | |
EP4310708A2 (en) | Methods and systems for efficient threat context-aware packet filtering for network protection | |
RU2704741C2 (en) | Method of protection against ddos-attack on basis of traffic classification | |
Nagaonkar et al. | Detecting stealthy scans and scanning patterns using threshold random walk | |
EP1629623A1 (en) | Systems and methods for dynamic and risk-aware network security |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
AK | Designated states |
Kind code of ref document: A2 Designated state(s): AE AL AM AT AT AU AZ BA BB BG BR BY CA CH CN CU CZ CZ DE DE DK DK EE EE ES FI FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MD MG MK MN MW MX NO NZ PL PT RO RU SD SE SG SI SK SK SL TJ TM TR TT UA UG UZ VN YU ZA ZW |
|
AL | Designated countries for regional patents |
Kind code of ref document: A2 Designated state(s): GH GM KE LS MW SD SL SZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE BF BJ CF CG CI CM GA GN GW ML MR NE SN TD TG |
|
WA | Withdrawal of international application | ||
121 | Ep: the epo has been informed by wipo that ep was designated in this application | ||
REG | Reference to national code |
Ref country code: DE Ref legal event code: 8642 |