发明名称 |
Method and apparatus for detecting spoofed network traffic |
摘要 |
A method and apparatus for detecting spoofed IP network traffic is presented. A mapping table is created to indicate correlations between IP address prefixes and AS numbers, based on routing information collected from a plurality of data sources. At each interface of a target network, IP address prefixes from a training traffic flow are acquired and further converted into AS numbers based on the mapping table. An EAS (Expected Autonomous System) table is populated by the AS numbers collected for each interface. The EAS table is used to determine if an operation traffic flow is allowed to enter the network. |
申请公布号 |
US8281397(B2) |
申请公布日期 |
2012.10.02 |
申请号 |
US20100769696 |
申请日期 |
2010.04.29 |
申请人 |
VAIDYANATHAN RAVICHANDER;GHOSH ABHRAJIT;CHENG YUU-HENG;YAMADA AKIRA;MIYAKE YUTAKA;TELCORDIA TECHNOLOGIES, INC. |
发明人 |
VAIDYANATHAN RAVICHANDER;GHOSH ABHRAJIT;CHENG YUU-HENG;YAMADA AKIRA;MIYAKE YUTAKA |
分类号 |
H04L29/06 |
主分类号 |
H04L29/06 |
代理机构 |
|
代理人 |
|
主权项 |
|
地址 |
|