×

System and method for preventing a spoofed denial of service attack in a networked computing environment

  • US 6,772,334 B1
  • Filed: 08/31/2000
  • Issued: 08/03/2004
  • Est. Priority Date: 08/31/2000
  • Status: Expired due to Term
First Claim
Patent Images

1. A system for preventing a spoofed denial of service attack in a networked computing environment, comprising:

  • a hierarchical protocol stack comprising a plurality of communicatively interfaced protocol layers with at least one session-oriented protocol layer and receiving a packet from the networked computing environment requesting a session with the session-oriented protocol layer, the request packet comprising headers containing a source address of uncertain trustworthiness, the hierarchical protocol stack receiving an acknowledgement packet from the networked computing environment comprising headers containing an acknowledgement number; and

    an authentication module acknowledging the request packet and validating the acknowledgement packet, comprising;

    a checksumming module calculating a checksum from information included in the request packet headers and calculating a validation checksum from information included in the acknowledgement packet headers;

    a packet module generating request acknowledgement packet comprising headers containing the checksum as a pseudo sequence number and the source address in the request packet headers as a destination address and sending the request acknowledgement packet into the networked computing environment; and

    a comparison module comparing the validation checksum to the acknowledgement number of the acknowledgement packet.

View all claims
  • 10 Assignments
Timeline View
Assignment View
    ×
    ×