Patent · US Expired

Method and apparatus for protecting a web server against vandals attacks without restricting legitimate access

US7007169B2 · kind B2 · utility

9Cited by

10References

10Claims

0Family size

Assignee

International Business Machines Corporation · US

Inventors

Charles S. Lingafelt · Durham, US
John J. McKenna · Cary, US
Robert Sisk · Chapel Hill, US

Key dates

Filing date	Apr 4, 2001
Grant date	Feb 28, 2006
Priority date	—
Expiry date	Nov 2, 2023

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/1458
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

An intrusion detection security system (IDSS) guards a server against vandals' attacks such as denial of service, distributed denial of service, and common gateway interface attacks. An incoming source address is compared with the contents of a database of privileged addresses. If the incoming address is present in the database, the IDSS instructs protective equipment such as a firewall or router to allow the incoming message to pass to the web server despite any ongoing attack, thus allowing messages from customers or suppliers, for example, through. Otherwise, the IDSS checks a database of blocked addresses. When the incoming address is absent, the IDSS writes the address to the database of blocked addresses and instructs the protective equipment to block subsequent messages from the incoming address.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.