Method and apparatus for limiting denial of service attack by limiting traffic for hosts
US7640591B1 · kind B1 · utility
Assignee
Inventors
Key dates
| Filing date | Apr 22, 2005 |
| Grant date | Dec 29, 2009 |
| Priority date | — |
| Expiry date | Dec 2, 2027 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L63/1458
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
A method for controlling a denial of service attack involves receiving a plurality of packets from a network, identifying an attacking host based on a severity level of the denial of service attack from the network, wherein the attacking host is identified by an identifying attack characteristic associated with one of the plurality of packets associated with the attacking host, analyzing each of the plurality of packets by a classifier to determine to which of a plurality of temporary data structures each of the plurality of packet is forwarded, forwarding each of the plurality of packets associated with the identifying attack characteristic to one of the plurality of temporary data structures matching the severity level of the denial of service attack as determined by the classifier, requesting a number of packets from the one of the plurality of temporary data structures matching the severity level by the virtual serialization queue, and forwarding the number of packets to the virtual serialization queue.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.