Patent · US Active

Method for managing of denial of service attacks using bandwidth allocation technology

US8161145B2 · kind B2 · utility

14Cited by

8References

27Claims

0Family size

Assignee

International Business Machines Corporation · US

Inventors

Brian Carpenter · Adliswil, CH
Clark Debs Jeffries · Durham, US
Andreas Kind · Hildesheim, DE
Michael S. Siegel · Raleigh, US

Key dates

Filing date	Feb 27, 2003
Grant date	Apr 17, 2012
Priority date	—
Expiry date	Jul 11, 2029

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/1458
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A method for managing attacks in a computer system is disclosed. The computer system is used in sending, receiving, or sending and receiving a plurality of packets, which include a plurality of administrative packets. The method includes determining whether a congestion of the administrative packets exists. Congestion of the administrative packets indicates that a potential attack exists. The method also includes discarding a portion of the plurality of administrative packets if it is declared that the congestion of the administrative packets exists. The portion of the plurality of packets is sufficient to ensure that a remaining portion of the plurality of packets transmitted is not more than a maximum administrative packet bandwidth limit and, if the plurality of administrative packets present a sufficient offered load, not less than a minimum administrative packet bandwidth guarantee.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.