| 发明名称 | Applianced domain name server | ||
| 摘要 | A software installation package for a domain name server (DNS) comprises a hardened operating system, a domain name server software, a management interface. To detect and block attack attempts (2-1), the software installation package also comprises an attack detection logic (ADS) for analyzing (2-2, 2-3) IP packets based on a set of attack detection rules. A response logic reacts (2-4) to detected attack attempts. | ||
| 申请公布号 | US8898773(B2) | 申请公布日期 | 2014.11.25 |
| 申请号 | US200711688594 | 申请日期 | 2007.03.20 |
| 申请人 | Nixu Software Oy | 发明人 | Kummu Ville;Aukia Petri;Holkkola Juha |
| 分类号 | H04L29/06;H04L29/12 | 主分类号 | H04L29/06 |
| 代理机构 | Barnes & Thornburg LLP | 代理人 | Barnes & Thornburg LLP |
| 主权项 | 1. A method for making an applianced domain name server, the method comprising: forming a software installation package for the domain name server; and making the appplianced domain name server by installing the software installation package in a server, wherein the software installation package comprises: a hardened operating system;a securely pre-configured domain name server software;a management interface;a local response logic for responding to attack attempts from one or more blacklisted client computers;a local attack detection logic, wherein the attack detection logic performs one or more analyses, each of which being based on a plurality of IP packets from an individual client computer, based on a predetermined set of attack detection rules, wherein, if at least some of the analyses, which are based on the plurality of IP packets from the individual client computer, identify the individual client computer as an attacking client computer, the local attack detection logic blacklists the individual client computer as an attacking client computer thereby indicating that IP traffic from the individual client computer should be blocked. | ||
| 地址 | Helsinki FI | ||