Patent · US Expired

Method and apparatus for deflecting flooding attacks

US7234161B1 · kind B1 · utility

79Cited by

4References

25Claims

0Family size

Assignee

NVIDIA Corporation · US

Inventors

Thomas A. Maufer · Cupertino, US
Sameer Nanda · San Jose, US

Key dates

Filing date	Dec 31, 2002
Grant date	Jun 19, 2007
Priority date	—
Expiry date	Apr 14, 2025

Classification

Technology area (CPC H)Electricity
CPC primaryH04L69/16
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Method and apparatus for deflecting connection flooding attacks. Specifically, the stateful firewall allows all connection attempts to flow into the destination host, but monitors the connection attempts to ensure that only legitimate connections are allowed. If the firewall detects that a connection is half-open for longer than a certain timer threshold, it will instruct the destination host to tear down the half-open connection, thereby freeing up resources in the destination host for other connection attempts. The timer threshold can be dynamically adjusted if a connection flooding attack is detected.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.