Patent · US Active

Detection and mitigation of slow application layer DDoS attacks

US10887341B2 · kind B2 · utility

0Cited by

6References

25Claims

0Family size

Assignee

Radware Ltd. · IL

Inventors

Ehud Doron · Lod, IL
Nir Ilani · Rehovot, IL
David Aviv · Hadera, IL
Yotam Ben Ezra · Raanana, IL
Amit Bismut · Kiryat Motzkin, IL
Yuriy Arbitman · Raanana, IL

Key dates

Filing date	Jul 24, 2017
Grant date	Jan 5, 2021
Priority date	—
Expiry date	Jan 1, 2038

Classification

Technology area (CPC H)Electricity
CPC primaryH04L2463/141
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A method and system for protecting cloud-hosted applications against application-layer slow distributed denial-of-service (DDoS) attacks. The comprising collecting telemetries from a plurality of sources deployed in at least one cloud computing platform hosting a protected cloud-hosted application; providing a set of rate-based and rate-invariant features based on the collected telemetries; evaluating each feature in the set of rate-based and rate-invariant features to determine whether a behavior of each feature and a behavior of the set of rate-based and rate-invariant features indicate a potential application-layer slow DDoS attack; and causing execution of a mitigation action, when an indication of a potential application-layer slow DDoS attack is determined.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.