Mitigating denial-of-service attacks using frequency domain techniques
First Claim
1. A method of mitigating a packet flooding attack on a system in a communications network, the method comprising the steps of:
- a) producing, responsive to packets of a packet flooding attack arriving at the system at a detectable frequency, a pulsed signal of that frequency;
b) aligning the phase of the pulsed signal with the arrival of the packets of the packet flooding attack; and
c) dropping, from the system, packets that arrive during pulses of the pulsed signal.
3 Assignments
0 Petitions
Accused Products
Abstract
Methods and apparatus for mitigating denial of service attacks in a communications network are described. Frequency domain techniques such as Fourier Transform are used to detect packet flooding in which a frequency spectrum reveals a periodic pattern to the attack packets. A pulse generator is used to create pulses having the frequency and phase of the periodic pattern. New packets arriving simultaneously with the created pulses are dropped from the system and packets which are not synchronized with the pulse generator are passed through the system normally.
-
Citations
12 Claims
-
1. A method of mitigating a packet flooding attack on a system in a communications network, the method comprising the steps of:
-
a) producing, responsive to packets of a packet flooding attack arriving at the system at a detectable frequency, a pulsed signal of that frequency;
b) aligning the phase of the pulsed signal with the arrival of the packets of the packet flooding attack; and
c) dropping, from the system, packets that arrive during pulses of the pulsed signal. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 11, 12)
-
-
10. An apparatus for mitigating a packet flooding attack on a system in a communications network, the apparatus comprising:
-
means to produce, responsive to packets of a packet flooding attack arriving at the system at a detectable frequency, a pulsed signal of that frequency;
means to align the phase of the pulsed signal with the arrival of the packets of the packet flooding attack; and
means to drop, from the system, packets that arrive during pulses of the pulsed signal.
-
Specification