| 摘要 |
The invention relates to a device (1) for protection against denial-of-service attacks, which can encrypt and decrypt the data packets flowing therethrough, said device being connected to any point in a telecommunications network, in a service provider system. An algorithm programmed in the protection device (1) analyses the Ethernet packets of the traffic circulating in the network, on the physical layer level. The protection device can encrypt and decrypt the network traffic and can detect, within said network traffic, the packets intended to cause a DoS attack, said packets being rejected and not retransmitted to the network downstream. |
