Patent · US Active

Filtering and policing for defending against denial of service attacks on a network

US7672336B2 · kind B2 · utility

20Cited by

16References

20Claims

0Family size

Assignee

Sonus Networks, Inc. · US

Inventors

Shaun Jaikarran Bharrat · Manalapan, US
Mark Duffy · Lexington, US
Ronald V. Grippo · Red Bank, US
Shiping Li · Los Altos, US
John A. Perreault · Hopkinton, US
Jian Yang · Palo Alto, US

Key dates

Filing date	Dec 1, 2006
Grant date	Mar 2, 2010
Priority date	—
Expiry date	Jan 2, 2028

Classification

Technology area (CPC H)Electricity
CPC primaryH04L2463/141
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Described are computer-based methods and apparatuses, including computer program products, for filtering and policing for defending against denial of service attacks on a network. A data packet is filtered by a multi-tiered filtering and transmission system. Data packets matching the first tier filter are discarded. Data packets matching the second tier filter are transmitted to an output module based on a criterion. Data packets in the third tier filter are hashed into bins and data packets matching an entry in the bin are transmitted to the output module based on a criterion for the bin. Data packets in the fourth tier transmission system are transmitted to the output module based on a criterion. Data packets that do not meet the criterion for transmission to the output module are transmitted to an attack identification module which analyzes the data packets to identify attacks.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.