Method and apparatus for cryptographic protection from denial of service attacks
US7139679B1 · kind B1 · utility
Assignee
Inventor
Key dates
| Filing date | Jun 27, 2002 |
| Grant date | Nov 21, 2006 |
| Priority date | — |
| Expiry date | Apr 4, 2024 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L69/22
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A method and apparatus for protecting, from denial of service attacks, a device that provides particular services that consume substantial computational resources. A data packet is received that includes data for the particular services and a cryptographic tag. It is determined whether the data packet is legitimate based on the cryptographic tag without using the data for the particular services. If it is determined that the data packet is not legitimate, then the data is diverted from input to the particular services that process the data. These techniques use the cryptographic tag to provide strong data origin authentication without the heavy computational costs associated with providing full data integrity authentication in typical cryptographic services. Further, denial of service protection is conveniently implemented as a cryptographic service.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.