WO2002035755A3 - System and method for handling denial of service server attacks - Google Patents

System and method for handling denial of service server attacks Download PDF

Info

Publication number
WO2002035755A3
WO2002035755A3 PCT/US2001/046080 US0146080W WO0235755A3 WO 2002035755 A3 WO2002035755 A3 WO 2002035755A3 US 0146080 W US0146080 W US 0146080W WO 0235755 A3 WO0235755 A3 WO 0235755A3
Authority
WO
WIPO (PCT)
Prior art keywords
queue
full
service server
connection
client
Prior art date
Application number
PCT/US2001/046080
Other languages
French (fr)
Other versions
WO2002035755A2 (en
Inventor
W Spencer Worley Iii
John A Vastano
Eoin B Macdonell
Original Assignee
Akamba Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Akamba Corp filed Critical Akamba Corp
Priority to AU2002225869A priority Critical patent/AU2002225869A1/en
Publication of WO2002035755A2 publication Critical patent/WO2002035755A2/en
Publication of WO2002035755A3 publication Critical patent/WO2002035755A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1441Countermeasures against malicious traffic
    • H04L63/1458Denial of Service
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/16Implementation or adaptation of Internet protocol [IP], of transmission control protocol [TCP] or of user datagram protocol [UDP]
    • H04L69/163In-band adaptation of TCP data exchange; In-band control procedures
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0281Proxies

Abstract

A method for facilitating client (309) connections with a server (306) includes receiving a client connection request (502), determining whether a connection queue is full (504), clearing at least a portion of the connection queue if it is full (516), and placing the received client connection request (506). Optionally, a security routine is invoked (518) when it is determined that the connection queue (333) is full. In a particular embodiment, the methods of the present invention are performed by a queue-clearing communication module (422) for a proxy server (332) embedded in an adapter card (308) for an Internet web server.
PCT/US2001/046080 2000-10-23 2001-10-23 System and method for handling denial of service server attacks WO2002035755A2 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
AU2002225869A AU2002225869A1 (en) 2000-10-23 2001-10-23 System and method for handling denial of service server attacks

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US69573400A 2000-10-23 2000-10-23
US09/695,734 2000-10-23

Publications (2)

Publication Number Publication Date
WO2002035755A2 WO2002035755A2 (en) 2002-05-02
WO2002035755A3 true WO2002035755A3 (en) 2002-07-18

Family

ID=24794261

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2001/046080 WO2002035755A2 (en) 2000-10-23 2001-10-23 System and method for handling denial of service server attacks

Country Status (3)

Country Link
AU (1) AU2002225869A1 (en)
TW (1) TW588242B (en)
WO (1) WO2002035755A2 (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR100481614B1 (en) 2002-11-19 2005-04-08 한국전자통신연구원 METHOD AND APPARATUS FOR PROTECTING LEGITIMATE TRAFFIC FROM DoS AND DDoS ATTACKS
CN100499843C (en) * 2007-01-25 2009-06-10 苏州广达友讯技术有限公司 Method for processing PTT audo flow for WAP network

Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6301668B1 (en) * 1998-12-29 2001-10-09 Cisco Technology, Inc. Method and system for adaptive network security using network vulnerability assessment

Patent Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6301668B1 (en) * 1998-12-29 2001-10-09 Cisco Technology, Inc. Method and system for adaptive network security using network vulnerability assessment

Non-Patent Citations (3)

* Cited by examiner, † Cited by third party
Title
GARBER: "Denial of service attacks rip internet", IEEE COMPUTER, April 2000 (2000-04-01), pages 12 - 17, XP000948670 *
GENG ET AL.: "Defeating distributed denial of service attacks", IEEE IT PRO, August 2000 (2000-08-01), pages 36 - 41, XP002909247 *
LIEDTKE ET AL.: "Preventing denial -of- service attacks on a U-kernel for WebOSes", IEEE, 1997, pages 73 - 79, XP010226848 *

Also Published As

Publication number Publication date
TW588242B (en) 2004-05-21
AU2002225869A1 (en) 2002-05-06
WO2002035755A2 (en) 2002-05-02

Similar Documents

Publication Publication Date Title
WO2001037068A3 (en) Method and apparatus for providing secure communication in a network
WO2003042938A3 (en) Payment protocol and data transmission method and data transmission device for conducting payment transactions
WO2001065330A3 (en) System for determining web application vulnerabilities
EP1571804A3 (en) Method and apparatus for secure contents transfer and copyright protection
WO2004008675A3 (en) System and method for managing bandwidth utilization
EP0991257A3 (en) Network scanner contention handling method
EP1450539A3 (en) System and method for communicating using a multiserver platform
WO2002007020A3 (en) Information communication system
WO2001080524A3 (en) Method and system for overcoming denial of service attacks
WO2004025428A3 (en) Apparatus and method for processing data in a network
WO2000028698A3 (en) System and method of analyzing network protocols
EP0812088A3 (en) Preserving state in stateless network protocols
WO2002015518A3 (en) End-to-end secure file transfer method and system
WO2004046849A3 (en) Cryptographic methods and apparatus for secure authentication
CN106685930B (en) Method and device for processing transmission control protocol options
WO2004077259A3 (en) System and method for server load balancing and server affinity
WO2000052881A3 (en) Method and apparatus for load distribution
WO2003036845A3 (en) System and method for controlling transmission of data packets over an information network
WO2001022195A3 (en) System and method for managing connections between a client and a server
CN102655509B (en) Network attack identification method and device
EP1150471A3 (en) Method and system for recommending an available network protocol
EP1093054A1 (en) Method for installing software components at a user-terminal, related devices and related software modules
EP1251671A3 (en) A method of providing a proxy server based service to a communications device on a network
WO2006052585A3 (en) Leveraging real-time communications client
EP1150472A3 (en) Method and system for installing available network protocols

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A3

Designated state(s): AE AL AM AT AU AZ BA BB BG BR BY CA CH CN CR CU CZ DE DK DM EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT TZ UA UG UZ VN YU ZA ZW

AL Designated countries for regional patents

Kind code of ref document: A3

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
REG Reference to national code

Ref country code: DE

Ref legal event code: 8642

122 Ep: pct application non-entry in european phase
NENP Non-entry into the national phase

Ref country code: JP