Patent · US Expired

Apparatus and method for detecting tiny fragment attacks

US8296452B2 · kind B2 · utility

0Cited by

15References

28Claims

0Family size

Assignee

Cisco Technology, Inc. · US

Inventors

Kenneth M. Rose · Palo Alto, US
Venkateshwar Rao Pullela · San Jose, US
David S. Walker · San Jose, US
Kevin C. Wong · San Francisco, US
Kaichuan He · San Jose, US
Yu Kwong Ng · Los Altos, US

Key dates

Filing date	Mar 6, 2003
Grant date	Oct 23, 2012
Priority date	—
Expiry date	Jan 2, 2026

Classification

Technology area (CPC H)Electricity
CPC primaryH04L69/163
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Disclosed is a method and apparatus for checking link layer protocol frames such as Ethernet frames. The method can be implemented on a processor executing software instructions stored in memory. In one embodiment of the invention, the method includes receiving an Ethernet frame, and counting data bytes of the Ethernet frame to generate a total number of counted bytes. The total number of counted bytes can be used to calculate a data length of a datagram of the Ethernet frame. Once calculated, the datagram data length can be compared to a predetermined value. If the datagram length does not fall within an acceptable range of the predetermined value, the Ethernet frame may be dropped so that the Ethernet frame does not reach its final destination.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.