发明名称 |
Denial of service attacks characterization |
摘要 |
A system architecture for thwarting denial of service attacks on a victim data center is described. The system includes a first plurality of data monitors that monitor network traffic flow through the network. The first plurality of monitors is disposed at a second plurality of points in the network. The system includes a central controller that receives data from the plurality of monitors, over a hardened, redundant network. The central controller analyzes network traffic statistics to identify malicious network traffic. In one embodiment, a gateway device is disposed to pass network packets between the network and the victim site. The gateway includes a computing device executing a process to build a histogram for any attribute or function of an attribute of network packets and a process to determine if the values of the attribute exceed normal, threshold values expected for the attribute to indicate an attack on the site.
|
申请公布号 |
US2003145232(A1) |
申请公布日期 |
2003.07.31 |
申请号 |
US20020066232 |
申请日期 |
2002.01.31 |
申请人 |
POLETTO MASSIMILIANO ANTONIO;RATIN ANDREW;GORELIK ANDREW |
发明人 |
POLETTO MASSIMILIANO ANTONIO;RATIN ANDREW;GORELIK ANDREW |
分类号 |
H04L29/06;(IPC1-7):H04L9/00 |
主分类号 |
H04L29/06 |
代理机构 |
|
代理人 |
|
主权项 |
|
地址 |
|