Patent · US Active

Detection of distributed denial of service attacks in autonomous system domains

US8397284B2 · kind B2 · utility

38Cited by

11References

9Claims

0Family size

Assignee

University of Maryland · US

Inventors

Chris Kommareddy · Seattle, US
Samrat Bhattacharjee · Silver Spring, US
Mark A. Shayman · Potomac, US
Richard La · Buffalo Grove, US

Key dates

Filing date	Jan 17, 2007
Grant date	Mar 12, 2013
Priority date	—
Expiry date	May 3, 2030

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/1425
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A denial-of-service network attack detection system is deployable in single-homed and multi-homed stub networks. The detection system maintains state information of flows entering and leaving the stub domain to determine if exiting traffic exceeds traffic entering the system. Monitors perform simple processing tasks on sampled packets at individual routers in the network at line speed and perform more intensive processing at the routers periodically. The monitors at the routers form an overlay network and communicate pertinent traffic state information between nodes. The state information is collected and analyzed to determine the presence of an attack.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.