Method and apparatus for detection of and response to abnormal data streams in high bandwidth data pipes
US7099320B1 · kind B1 · utility
Assignee
Inventor
Key dates
| Filing date | Apr 19, 2002 |
| Grant date | Aug 29, 2006 |
| Priority date | — |
| Expiry date | Feb 2, 2025 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L2463/146
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
The method and apparatus of the present invention provide real time detection of abnormal data streams in high bandwidth data pipes, such as those found at network service provider data hubs. Abnormally high data volumes, for example, those associated with Denial of Service [DOS] attacks, may be detected and a mitigating response to the attack initiated. Further, certain counterattack steps are instituted including reverse tracing to determine the source of the attack and attack signature recording for later comparison to suspected new attacks. The method and apparatus of the present invention are such that the entire volume of data passing through a high bandwidth data pipe may be monitored on a real time basis providing early warning of DOS attacks for very large network address spaces.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.