DYNAMIC NETWORK PROTECTION
0 Assignments
0 Petitions
Accused Products
Abstract
A method for protecting a network from an attack includes measuring a property of traffic entering the network, and analyzing the property using at least one fuzzy logic algorithm in order to detect the attack.
-
Citations
197 Claims
-
1-49. -49. (canceled)
-
50. A method for protecting a network from an attack, the method comprising:
-
measuring a time-related property of traffic entering the network;
transforming the time-related property of the traffic into a frequency domain;
analyzing the property in the frequency domain in order to detect the attack; and
filtering the traffic entering the network in order to block traffic participating in the attack. - View Dependent Claims (51, 52, 54, 55, 56, 57, 59, 60, 64, 67, 80)
-
-
53. (canceled)
-
58. (canceled)
-
61-63. -63. (canceled)
-
65-66. -66. (canceled)
-
68-79. -79. (canceled)
-
81-114. -114. (canceled)
-
115. Apparatus for protecting a network from an attack, comprising:
-
an interface; and
a network security processor, which is adapted to monitor, via the interface, traffic entering the network, to measure a time-related property of the traffic, to transform the time-related property of the traffic into a frequency domain, to analyze the property in the frequency domain in order to detect the attack, and to filter the traffic entering the network in order to block traffic participating in the attack. - View Dependent Claims (117, 118, 120, 121, 122, 126, 129, 137)
-
-
116. (canceled)
-
119. (canceled)
-
123-125. -125. (canceled)
-
127-128. -128. (canceled)
-
130-136. -136. (canceled)
-
138-170. -170. (canceled)
- 171. A computer software product for protecting a network from an attack, the product comprising a computer-readable medium in which program instructions are stored, which instructions, when read by a computer, cause the computer to measure a time-related property of traffic entering the network, to transform the time-related property of the traffic into a frequency domain, to analyze the property in the frequency domain in order to detect the attack, and to filter the traffic entering the network in order to block traffic participating in the attack.
-
172-174. -174. (canceled)
-
176-194. -194. (canceled)
-
195. A computer network comprising:
-
a plurality of nodes, which are coupled to receive communication traffic from sources outside the network; and
a network security device, which is coupled to measure a time-related property of traffic entering the network, to transform the time-related property of the traffic into a frequency domain, to analyze the property in the frequency domain in order to detect the attack, and to filter the traffic entering the network in order to block traffic participating in the attack. - View Dependent Claims (196)
-
-
197. (canceled)
Specification