×

Systems and methods for detecting and preventing flooding attacks in a network environment

  • US 9,130,978 B2
  • Filed: 03/12/2013
  • Issued: 09/08/2015
  • Est. Priority Date: 07/06/2005
  • Status: Active Grant
First Claim
Patent Images

1. A method for processing network traffic data comprising:

  • receiving a packet to initiate a new session associated with an Internet Protocol (IP) address;

    taking into account the received packet, determining a rate R at which a number of sessions initiation packets N associated with the IP address are received within a time period t, where R=N÷

    t;

    storing, on a data storage device, a representation of the rate R;

    comparing the rate R with a prescribed session rate threshold T;

    allowing the packet to pass when the session rate threshold R is less than the prescribed session rate threshold T (R<

    T); and

    classifying the packet as possibly associated with a flooding attack when the session rate threshold R is greater than or equal to the prescribed session rate threshold T (R≧

    T).

View all claims
  • 0 Assignments
Timeline View
Assignment View
    ×
    ×