×

Apparatus and method for an overload control procedure against denial of service attack

  • US 20040062199A1
  • Filed: 09/30/2002
  • Published: 04/01/2004
  • Est. Priority Date: 09/30/2002
  • Status: Active Grant
First Claim
Patent Images

1. A method of determining packets to be dropped in regard to a potential denial of service attack at a location within a packet network, said method comprising the steps of:

  • receiving packets at said location within said network;

    computing a conditional probability measure for each packet entering said location based on selected attributes included within said packet;

    periodically updating a cumulative distribution function based on previously computed conditional probability measures;

    determining a drop threshold based on access to said cumulative probability function;

    passing packets that exceed said determined drop threshold to said location.

View all claims
  • 3 Assignments
Timeline View
Assignment View
    ×
    ×