Method and apparatus for controlling blocking of service attack by using access control list
First Claim
1. An attack blocking control method using an access control list (ACL), the method comprising:
- when a packet registered in the ACL is input, checking a blocking time of the packet using a processor;
checking whether or not the blocking time satisfies a predetermined blocking time renewal requirement; and
automatically renewing the blocking time if the blocking time satisfies the predetermined blocking time renewal requirement.
1 Assignment
0 Petitions
Accused Products
Abstract
An attack blocking control method uses an access control list (ACL). The method includes investigating the ACL if a packet is input, and checking whether or not the packet is registered in the ACL, comparing a current time count value with a blocking time of the packet if the packet is determined to be registered in the ACL. Further, the method includes increasing the number of blocking times of the packet by 1 if the current time count value is smaller than or equal to the blocking time. Further, the method includes automatically renewing the blocking time, and removing registration information for the packet from the ACL if the current time count value is greater than the blocking time.
17 Citations
13 Claims
-
1. An attack blocking control method using an access control list (ACL), the method comprising:
-
when a packet registered in the ACL is input, checking a blocking time of the packet using a processor; checking whether or not the blocking time satisfies a predetermined blocking time renewal requirement; and automatically renewing the blocking time if the blocking time satisfies the predetermined blocking time renewal requirement. - View Dependent Claims (2, 3, 4)
-
-
5. An attack blocking control method using an access control list (ACL), the method comprising:
-
when a packet registered in the ACL is input, checking a blocking time of the packet using a processor; checking whether or not the blocking time satisfies a predetermined blocking cancelation requirement; and canceling the blocking for the packet if the blocking time satisfies the predetermined blocking cancelation requirement. - View Dependent Claims (6)
-
-
7. An attack blocking control apparatus using an access control list (ACL), the apparatus comprising:
-
a packet collecting block configured to collect packets input through a network; an information storing block configured to store the ACL where attack packet information is registered; a detecting block configured to detect whether or not the packets collected by the packet collecting block are attack packets, and register information on the packets in the ACL if the packets are determined to be the attack packets; a registration managing block configured to, when a packet registered in the ACL is input as an input packet, check a blocking time of the input packet to determine whether the blocking time satisfies a predetermined blocking time renewal requirement, and automatically renew the blocking time of the input packet when the blocking time satisfies the predetermined blocking time renewal requirement; and a blocking block configured to block the input packet when the input packet is determined to correspond to the packet registered in the ACL. - View Dependent Claims (8, 9, 10, 11, 12, 13)
-
Specification