Architecture, systems and methods to detect efficiently DoS and DDoS attacks for large scale internet
US7584507B1 · kind B1 · utility
Assignee
Inventor
Key dates
| Filing date | Jul 29, 2005 |
| Grant date | Sep 1, 2009 |
| Priority date | — |
| Expiry date | Sep 5, 2027 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L2463/141
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
The present invention efficiently detects various DDoS attacks for large scale Internet with the temporal correlation of traffic flows on the two directions of a single link, the spatial correlation of DDoS attack traffic at different locations and powerful machine learning algorithms. With these techniques, the present invention effectively detects and identifies attack sources without modifying existing IP forwarding mechanisms and without a global upgrade to Internet backbone routers. More importantly, the present invention can detect synchronized DDoS attacks even if the volume of attack traffic is extremely small at the location that is close to the attack source.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.