System and method of responding to a flood attack on a data processing system
First Claim
1. A data processing system comprising:
- a processor;
an interconnect; and
as system memory, coupled to said processor via said interconnect, wherein said system memory stores a connection manager, wherein in response to receiving a notification that a connection request includes a false IP address, said connection manager, independently of any time delay, removes said connection request from a list of pending connection requests.
1 Assignment
0 Petitions
Accused Products
Abstract
A system and method of responding to a flood attack on a data processing system is disclosed. The present invention mitigates the affects of SYN attacks with false IP addresses by immediately removing the associated embryonic connection from the system upon receiving notification that the IP address in the original SYN request is false. Immediate removal of the connection request will mitigate the effects of the flood attack by not requiring the system to devote resources to servicing a connection request from a false IP address, which could result in denial of service for legitimate clients. Immediate removal of the connection request will mitigate the effects of the flood attack by not requiring the system to devote resources to servicing a connection request from a false IP address, which could result in denial of service for legitimate clients.
8 Citations
12 Claims
-
1. A data processing system comprising:
-
a processor;
an interconnect; and
as system memory, coupled to said processor via said interconnect, wherein said system memory stores a connection manager, wherein in response to receiving a notification that a connection request includes a false IP address, said connection manager, independently of any time delay, removes said connection request from a list of pending connection requests. - View Dependent Claims (2, 3, 4)
-
-
5. A method comprising:
-
receiving a connection request;
queuing said connection request and sending a response to said connection request; and
in response to receiving a notification that said connection request includes a false IP address, removing, independent of any time delay, said connection request from a list of pending connection requests. - View Dependent Claims (6, 7, 8)
-
-
9. A computer-readable medium for storing a computer program product that comprises instructions for:
-
receiving a connection request;
queuing said connection request and sending a response to said connection request; and
in response to receiving a notification that said connection request includes a false IP address, removing, independent of any time delay, said connection request from a list of pending connection requests. - View Dependent Claims (10, 11, 12)
-
Specification