| 发明名称 |
Methods and Systems for Mitigating Attack Traffic Directed at a Network Element |
| 摘要 |
An exemplary method includes an attack traffic mitigation system 1) identifying a range of ports left open by a firewall for a network element to receive network traffic provided by a computing device, 2) designating a subset of one or more ports included in the range of open ports as being included in a legitimate port range configured to receive legitimate network traffic provided by the computing device, and 3) directing the network element to drop network traffic provided by the computing device and received by each port included in the range of open ports that is not included in the legitimate port range. Corresponding methods and systems are also disclosed. |
| 申请公布号 |
US2014173722(A1) |
申请公布日期 |
2014.06.19 |
| 申请号 |
US201213715651 |
申请日期 |
2012.12.14 |
| 申请人 |
VERIZON PATENT AND LICENSING INC. |
发明人 |
Sun Lin;Chan Yee Sin |
| 分类号 |
H04L29/06 |
主分类号 |
H04L29/06 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A method comprising:
identifying, by an attack traffic mitigation system, a range of ports left open by a firewall for a network element to receive network traffic provided by a computing device; designating, by the attack traffic mitigation system, a subset of one or more ports included in the range of open ports as being included in a legitimate port range configured to receive legitimate network traffic provided by the computing device; and directing, by the attack traffic mitigation system, the network element to drop network traffic provided by the computing device and received by each port included in the range of open ports that is not included in the legitimate port range.
|
| 地址 |
Arlington VA US |
