×

Hardware filtering support for denial-of-service attacks

  • US 20050213570A1
  • Filed: 03/26/2004
  • Published: 09/29/2005
  • Est. Priority Date: 03/26/2004
  • Status: Active Grant
First Claim
Patent Images

1. A method for a network node, which includes a central processing unit (CPU) configured to execute a router operating system, to filter malicious data packets received at the network node, the method comprising:

  • receiving a data packet at the network node;

    performing hash-based flow classification on the received data packet to determine whether the received data packet is a malicious data packet; and

    discarding the received data packet before the data packet can be forwarded to the CPU for processing by the router operating system, if the received data packet is determined to be a malicious data packet.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×