METHODS AND APPARATUS TO MITIGATE A DENIAL-OF-SERVICE ATTACK IN A VOICE OVER INTERNET PROTOCOL NETWORK
2 Assignments
0 Petitions
Accused Products
Abstract
Methods and apparatus to mitigate a Denial-of-Service (DoS) attack in a voice over Internet protocol (VoIP) network are disclosed. An example method comprises receiving a communication session initiation message from a communication session endpoint, determining whether the communication session endpoint is associated with a probable DoS attack, and sending to the communication session endpoint a communication session initiation response message comprising a DoS header when the communication session endpoint is associated with the probable DoS attack.
85 Citations
68 Claims
-
1-45. -45. (canceled)
-
46. A method comprising:
-
determining call initiation rate statistics; determining a denial-of-service (DoS) attack mitigation rule based on the call initiation rate statistics; and sending the DoS attack mitigation rule to an attack mitigator via a session initiation protocol (SIP) NOTIFY message. - View Dependent Claims (47, 48, 49)
-
-
50. An apparatus comprising:
-
a call statistics analyzer to determine a value representative of a likelihood that a denial-of-service (DOS) attack is occurring; a mitigation rule selector to determine a DoS attack mitigation rule based on the value; and a notifier to send the DoS attack mitigation rule to an attack mitigator via a session initiation protocol (SIP) NOTIFY message. - View Dependent Claims (51, 52, 53, 54, 55, 56)
-
-
57. A method comprising:
-
sending a session initiation protocol (SIP) SUBSCRIBE message to a denial-of-service (DoS) attack detector; and receiving a DoS attack mitigation rule via a SIP NOTIFY message. - View Dependent Claims (58, 59, 60)
-
-
61. A border element for a voice over Internet protocol (VoIP) network, the border element comprising:
-
a network interface to send a session initiation protocol (SIP) SUBSCRIBE message to a denial-of-service (DoS) attack detector and to receive a SIP NOTIFY message comprising a DoS attack mitigation rule; and an attack mitigator to determine whether to reject a communication session request message based on the DoS attack mitigation rule. - View Dependent Claims (62, 63, 64, 65, 66, 67, 68)
-
Specification