Method for securing communication in a local area network switch
First Claim
1. Method for securing communication in a local area network switch (AN) comprising a user interface (UI) and a network interface (NI), said method comprising the steps of extracting a source address (MACI) from each packet received by said Local area network switch (AN) and storing said address (MACI) together with associated information into a address forwarding table (FT) comprised in said Local area network switch (AN) characterised in that a distinction is made between source addresses received from the user interface (UI) and the network interface (NI), such that upon detecting that a source address (MACi) contained within a newly received packet at the user interface (UI) was already stored as a source address received at the network interface (NI), said newly received packet will be discarded and its source address contained therein will not be stored within said address forwarding table (FT).
11 Assignments
0 Petitions
Accused Products
Abstract
Method for securing communication in a local area network switch (AN) comprising a user interface (UI) and a network interface (NI), comprises the steps of extracting a source address (MACi) from each packet received by said Local area network switch (AN) and storing said address (MACi) together with associated information into a address forwarding table (FT) comprised in said Local area network switch (AN) is characterised in that a distinction is made between source addresses received from the user interface (UI) and the network interface (NI), such that upon detecting that a source address (MACi) contained within a newly received packet at the user interface (UI) was already stored as a source address received at the network interface (NI), said newly received packet will be discarded and its source address contained therein will not be stored within said address forwarding table (FT).
15 Citations
6 Claims
-
1. Method for securing communication in a local area network switch (AN) comprising a user interface (UI) and a network interface (NI), said method comprising the steps of extracting a source address (MACI) from each packet received by said Local area network switch (AN) and storing said address (MACI) together with associated information into a address forwarding table (FT) comprised in said Local area network switch (AN)
characterised in that a distinction is made between source addresses received from the user interface (UI) and the network interface (NI), such that upon detecting that a source address (MACi) contained within a newly received packet at the user interface (UI) was already stored as a source address received at the network interface (NI), said newly received packet will be discarded and its source address contained therein will not be stored within said address forwarding table (FT).
-
4. Local area network switch (AN) including a user interface (UI) and a network interface (NI) and an address forwarding table (FT) for storing a source addresses (MACi) extracted from each packet received by said local area network switch (AN) together with associated information related to said source addresses,
characterised in that said local area network switch (AN) further includes discrimination means adapted to make a distinction between source addresses received from said user interface and said network interface, said local area network switch (AN) further includes comparison means for comparing a source address contained within a new arriving packet at said user interface (UI) with all stored source addresses in said forwarding table (FT) which were received from said network interface (NI), such as to provide a control signal to a discarding means for discarding said new arriving packet in case the source address contained therein was already stored as a source address received from said network interface.
Specification
-
- Resources
-
Current AssigneeMeta Platforms, Inc. (f/k/a Facebook, Inc.)
-
Original AssigneeAlcatel SA (Nokia Corporation)
-
InventorsDe Cnodder, Stefaan Jozef, Mensch, Patrick Paul Yvonne
-
Granted Patent
-
Time in Patent OfficeDays
-
Field of Search
-
US Class Current370/389
-
CPC Class CodesH04L 49/351 for local area network [LAN...H04L 63/0236 Filtering by address, proto...H04L 63/1466 Active attacks involving in...
