Patent · US Active

Method for detecting internet border gateway protocol prefix hijacking attacks

US7823202B1 · kind B1 · utility

60Cited by

1References

28Claims

0Family size

Assignee

Narus, Inc. · US

Inventors

Antonio Nucci · San Jose, US
Supranamaya Ranjan · Palo Alto, US
Lixin Gao · Beijing, CN
Jian Qiu · Great Neck, US

Key dates

Filing date	Mar 21, 2007
Grant date	Oct 26, 2010
Priority date	—
Expiry date	Aug 25, 2029

Classification

Technology area (CPC H)Electricity
CPC primaryH04L2463/141
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

The invention relates to a method for generating a prefix hijacking alert in a network, wherein a plurality of network traffic flows are routed based at least on a plurality of prefix announcements from one or more Border Gateway Protocol (BGP) router, the method comprises identifying an anomalous prefix from the plurality of prefix announcements, identifying a network traffic anomaly from the plurality of network traffic flows, and correlating the anomalous prefix and the network traffic anomaly to generate the prefix hijacking alert.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.