Prevention of query overloading in a server application

摘要

A system for processing a transaction request. A transaction request is received by a server computer that includes a user identification and an associated request token, to execute on an application on the server computer. It is determined by the server computer whether available resources on the server computer to perform the transaction are below respective threshold values. In response to determining, by the server computer, that the available resources on the server computer to perform the transaction are below the threshold value, the server computer determines whether the user identification is allowed access to the application. In response to determining that the user identification is allowed access to the application, the transaction is executed on the server computer. In response to determining that the user identification is not allowed access to the application, the transaction is rejected.

主权项

1. A method for mitigating a distributed denial of service attack, the method comprising:
receiving, by a computer, a transaction request, wherein the transaction request includes a user identification to execute by an application on the computer; generating a token; communicating the generated token to a client computer; receiving, by the computer, from the client computer, a computation request, wherein the computation request includes at least the generated token; determining, by the computer, whether the received token is authentic; determining, by the computer, whether available resources to perform the transaction are below a resource threshold value; in response to determining that the available resources to perform the transaction are below the threshold value, determining, by the computer, whether the user identification is allowed access to the application based on the available resources and whether the received token was received within a valid period of a time stamp; executing, by the computer, the transaction based on the user identification; and in response to determining that the received token is not authentic, rejecting the transaction.