×

System and method for software defined behavioral DDoS attack mitigation

  • US 9,825,990 B2
  • Filed: 05/31/2017
  • Issued: 11/21/2017
  • Est. Priority Date: 07/16/2013
  • Status: Active Grant
First Claim
Patent Images

1. A method for mitigating distributed denial of service (DDoS) attacks, comprising:

  • decoupling control plane functionality, responsible for storage of behavioral data and creation of DDoS attack mitigation policies, and data plane functionality, responsible for collection of the behavioral data and performing DDoS attack mitigation based on the DDoS attack mitigation policies, wherein the control plane functionality is implemented within a DDoS attack mitigation central controller and includes adaptive, continuous estimation of behavioral thresholds based on past traffic and management of the DDoS attack mitigation policies and wherein the data plane functionality is implemented within and distributed among the plurality of DDoS mitigation appliances and includes collection of granular traffic rate information regarding traffic observed by each of the plurality of DDoS mitigation appliances;

    receiving, by a DDoS attack mitigation appliance of the plurality of DDoS attack mitigation appliances, the DDoS attack mitigation policies through a network connecting the DDoS attack mitigation central controller and the DDoS attack mitigation appliance; and

    mitigating a DDoS attack based on the received DDoS attack mitigation policies, wherein the DDoS attack mitigation policies are generated by the DDoS attack mitigation central controller based on granular behavioral packet rate thresholds estimated based on the granular traffic rate information collected at least from the DDoS attack mitigation appliance.

View all claims
  • 0 Assignments
Timeline View
Assignment View
    ×
    ×