×

Dynamic DoS flooding protection

  • US 7,331,060 B1
  • Filed: 09/10/2002
  • Issued: 02/12/2008
  • Est. Priority Date: 09/10/2001
  • Status: Expired due to Fees
First Claim
Patent Images

1. A method of protecting against a computer network denial of service flooding attack, comprising:

  • determining that data packets deemed responsible for a denial of service flooding condition have been received at a first network location;

    establishing a filter that prevents the data packets deemed responsible for the denial of service flooding condition from being forwarded from the first network location;

    monitoring a flow of data packets received at the first location to determine whether the flow of data packets exhibits legitimate behavior, such that the flow of data packets that exhibits legitimate behavior is deemed to originate from a legitimate source that is not responsible for the denial of service flooding condition; and

    modifying the filter to filter increasingly specific portions of network address space of the data packet source wherein a corresponding greater portion of the data packets that originate from a legitimate source are not filtered and are forwarded from the first network location.

View all claims
  • 14 Assignments
Timeline View
Assignment View
    ×
    ×