METHOD FOR MITIGATING DENIAL OF SERVICE ATTACKS AGAINST A HOME AGAINST
1 Assignment
0 Petitions
Accused Products
Abstract
The invention relates to a method for mitigating the effects of a DoS attack against a home agent supporting mobility for a plurality of mobile nodes. Furthermore the invention also relates to a home agent, a mobile node and a communication system implementing the method for mitigating the effects of a DoS attack against a home agent supporting mobility for a plurality of mobile nodes. To consider the problem of DoS attacks in the design of a mechanism for improving communication systems enabling mobility of mobile nodes, the invention proposes to configure a plurality of addresses at which the home agent is reachable in a communications network and to assign to each of the mobile nodes at least one of the plurality of home agent addresses. If a denial of service attack is detected by the home agent, the home agent de-configures the home agent address to which data packets of the denial of service attack are destined.
-
Citations
66 Claims
-
1-40. -40. (canceled)
-
41. A method for mitigating effects of a denial of service attack against a home agent supporting mobility for a plurality of mobile nodes, the method comprising:
-
configuring at the home agent a plurality of home agent addresses at which the home agent is reachable in a communications network, assigning to each of the mobile nodes at least one of the plurality of home agent addresses, and if a denial of service attack is detected by the home agent, de-configuring by the home agent the home agent address to which data packets of the denial of service attack are destined. - View Dependent Claims (42, 43, 44, 45, 46, 47, 48, 49, 50, 51, 52, 53, 54, 55, 56, 57, 58)
-
-
59. A home agent for mitigating the effects of a denial of service attack, wherein the home agent supports mobility a plurality of mobile nodes, the home agent comprising:
-
a processing unit that configures a plurality of addresses at which the home agent is reachable in a communications network, and for assigning to each of the mobile nodes at least one of the plurality of home agent addresses, wherein the processing unit further de-configures the home agent address to which data packets of the denial of service attack are destined, if a denial of service attack is detected by the home agent.
-
-
60. A mobile node for use in a communication system supporting mobility, the mobile node comprising:
-
a processing unit that generates a pseudo home agent address or a home agent address of the home agent to be included in the header of packets to be exchanged between a mobile node and the home agent, and a communication unit that exchanges packets with the home agent using the generated pseudo home agent address or the home agent address respectively. - View Dependent Claims (61, 62, 63, 64)
-
-
65. A computer-readable medium storing instructions that, when executed by a processor of a home agent, cause the home agent to mitigate the effects of a denial of service attack, wherein the home agent supports mobility of a plurality of mobile nodes, by:
-
configuring a plurality of addresses at which the home agent is reachable in a communications network, assigning to each of the mobile nodes at least one of the plurality of home agent addresses, and de-configuring the home agent address to which data packets of the denial of service attack are destined, if a denial of service attack is detected by the home agent.
-
-
66. A computer-readable medium storing instructions that, when executed by a processor of a mobile node, cause the mobile node to:
-
generate a pseudo home agent address or a home agent address of the home agent to be included in the header of packets to be exchanged between a mobile node and the home agent, and exchange packets with the home agent using the generated pseudo home agent address or the home agent address respectively.
-
Specification