Architecture to thwart denial of service attacks
First Claim
Patent Images
1. A monitoring device disposed for thwarting denial of service attacks on a data center, the monitoring device comprising:
- a plurality of probe devices that are coupled to links that couple the network to the data center and collect statistical information on packets that are sent over the links that couple the network to the data center;
a cluster head coupled to each of the plurality of probe devices, the cluster head receiving collected statistical information from the probe devices and determining from the collected information whether the data center is under a denial of service attack.
13 Assignments
0 Petitions
Accused Products
Abstract
A monitoring device disposed for thwarting denial of service attacks on the data center is described. The monitoring device includes a plurality of probe devices that are disposed to collect statistical information on packets that are sent between the network and the data center and a cluster head coupled to each of the plurality of probe devices, the cluster head receiving collected statistical information from the probe devices and determining from the collected information whether the data center is under a denial of service attack.
82 Citations
32 Claims
-
1. A monitoring device disposed for thwarting denial of service attacks on a data center, the monitoring device comprising:
-
a plurality of probe devices that are coupled to links that couple the network to the data center and collect statistical information on packets that are sent over the links that couple the network to the data center; a cluster head coupled to each of the plurality of probe devices, the cluster head receiving collected statistical information from the probe devices and determining from the collected information whether the data center is under a denial of service attack. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A method of thwarting denial of service attacks on a victim data center coupled to a network comprises:
-
monitoring network traffic through probes that are coupled to links between the victim data center and the network; and communicating data from the probes, over a dedicated network, to a cluster head device. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19)
-
-
20. A gateway for thwarting denial of service attacks on a victim data center comprises:
-
a cluster head; and a plurality of probes disposed to monitor links that couple a network and a victim data center, the probes collecting statistical data, for performance of intelligent traffic analysis and filtering by the probes, to identify malicious traffic for thwarting denial of service attacks. - View Dependent Claims (21, 22)
-
-
23. A monitoring device disposed for thwarting denial of service attacks on a data center, the monitoring device comprising:
a device that collects statistical information on packets that are sent between the network and the data center over a plurality of links and that produces statistical information from network traffic over the plurality of links to determine from the statistical information whether the data center is under a denial of service attack. - View Dependent Claims (24, 25, 26, 27, 28)
-
29. A method of thwarting denial of service attacks on a victim data center coupled to a network comprises:
-
monitoring network traffic over a plurality of links between the victim data center and the network; and communicating data to a control center, with communicating occurring over a redundant network that is a different network from the network being monitored. - View Dependent Claims (30, 31, 32)
-
Specification