Perfect forward secrecy distributed denial of service attack defense
US9584318B1 · kind B1 · utility
Assignee
Inventors
Key dates
| Filing date | Dec 30, 2014 |
| Grant date | Feb 28, 2017 |
| Priority date | — |
| Expiry date | Dec 30, 2034 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L2463/141
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
Provided are methods and systems for mitigating a DoS attack. A method for mitigating a DoS attack may commence with receiving, from a client, a request to initiate a secure session between the client and a server. The method may continue with determining whether the client is on a whitelist. Based on a determination that client is absent from the whitelist, a pre-generated key may be sent to the client. The method may include determining validity of the established secure session. The determination may be performed based on further actions associated with the client. Based on the determination that the secure session is valid, a renegotiation of the secure session may be forced. The method may further include generating a new key using a method for securely exchanging cryptographic keys over a public channel. The new key is then sent to the client.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.