Denial of service (DoS) attack detection systems and methods
US9282113B2 · kind B2 · utility
Assignee
Inventor
Key dates
| Filing date | Jun 27, 2013 |
| Grant date | Mar 8, 2016 |
| Priority date | — |
| Expiry date | Dec 25, 2033 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L2463/141
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
Methods, systems, and apparatus that enable identification of network attacks such as denial of service attacks are disclosed. A network attack may be identified by monitoring packets received for delivery to devices on a network, and developing a historic packet profile by examining the monitored packets received during a number of time periods preceding an instant time period. An instant packet profile is developed by examining the monitored packets during the instant time period. The instant packet profile is compared to the historic packet profile to determine whether a deviation exceeding a predetermined statistical threshold deviation between the instant packet profile and the historic packet profile is present. The existence of a network attack is identified in response to determining that the deviation exceeds the predetermined statistical threshold deviation.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.