×

SECURING A NETWORK WITH DATA FLOW PROCESSING

  • US 20110214157A1
  • Filed: 12/30/2010
  • Published: 09/01/2011
  • Est. Priority Date: 09/25/2000
  • Status: Abandoned Application
First Claim
Patent Images

1. A network apparatus for preventing denial of service attacks, comprising,at least one network processor module having at least one processor, at least one interface to receive and forward a stream of data packets in a network, and instructions to cause the at least one processor to recognize one or more data packets in the stream of data packets that contain data, including subscriber profile information, for processing by a denial of service security application executing on the network apparatus by applying a denial of service detection and/or prevention policy to the data, and directing the stream of data packets to at least one flow processor module for executing the denial of service security application based on the subscriber profile information and the denial of service detection and/or prevention policy;

  • the at least one flow processor module having at least one processor and at least one memory for storing denial of service security applications for execution by the at least one flow processor module processor, the at least one flow processor module including instructions to receive the stream of data packets from the at least one network processor module and to apply the denial of service detection and/or prevention policy to the data in the one or more data packets with the denial of service security application; and

    at least one control processor module in communication with the at least one flow processor module and the at least one network processor module, and having at least one control processor module processor, and instructions for causing the at least one control processor module processor to manage the denial of service security applications in the flow processor module memories.

View all claims
  • 12 Assignments
Timeline View
Assignment View
    ×
    ×