Detecting proxy-based communications
First Claim
1. A system for detecting proxy-based communications via a computer network, the system comprising:
- a communications manager configured to, in each of a plurality of iterations,send to a computer via a computer network, a response to a first data request received from a requestor via the computer and the computer network, wherein the response includes a plurality of data packets followed by an out-of-sequence data packet that is out-of-sequence relative to any of the plurality of data packets,wherein the communications manager is configured to designate, prior to sending any of the data packets to the computer, the out-of-sequence data packet to be sent to the computer after the plurality of data packets are sent to the computer,wherein the out-of-sequence data packet is configured to cause the computer, responsive to receipt of the out-of-sequence data packet by the computer after receipt of the plurality of data packets by the computer, to send an acknowledgement via the computer network, andwherein the out-of-sequence data packet is configured to cause the requestor, responsive to receipt of the out-of-sequence data packet by the requestor, and after receipt of the plurality of data packets by the requestor, to send a second data request via the computer and the computer network; and
a proxy detector configured to,for each of the plurality of iterations,detect receipt of the acknowledgement at a first time,detect receipt of the second data request at a second time, andcalculate a time delay between the first time and the second time,thereby calculating a plurality of time delays, anddetermine whether the requestor is communicating via a proxy by evaluating the plurality of time delays with respect to a predefined proxy evaluation criterion,wherein the communications manager and the proxy detector are implemented in any ofa) computer hardware, andb) computer software embodied in a non-transitory, computer-readable storage medium.
1 Assignment
0 Petitions
Accused Products
Abstract
Evaluating communications via a computer network for the presence of proxy-based communications, by sending to a computer via a computer network multiple data packets followed by an out-of-sequence data packet that is out-of-sequence relative to any of the multiple data packets, receipt of the out-of-sequence data packet configured to cause the computer to send an acknowledgement via the computer network, and to cause the requestor to send a second data request via the computer and the computer network, detecting receipt of the acknowledgement at a first time, detecting receipt of the second data request at a second time, calculating a time delay between the first time and the second time, performing the sending, detecting and calculating steps multiple times for calculating multiple time delays, and determining whether the requestor is communicating via a proxy by evaluating the multiple time delays with respect to a predefined proxy evaluation criterion.
10 Citations
10 Claims
-
1. A system for detecting proxy-based communications via a computer network, the system comprising:
-
a communications manager configured to, in each of a plurality of iterations, send to a computer via a computer network, a response to a first data request received from a requestor via the computer and the computer network, wherein the response includes a plurality of data packets followed by an out-of-sequence data packet that is out-of-sequence relative to any of the plurality of data packets, wherein the communications manager is configured to designate, prior to sending any of the data packets to the computer, the out-of-sequence data packet to be sent to the computer after the plurality of data packets are sent to the computer, wherein the out-of-sequence data packet is configured to cause the computer, responsive to receipt of the out-of-sequence data packet by the computer after receipt of the plurality of data packets by the computer, to send an acknowledgement via the computer network, and wherein the out-of-sequence data packet is configured to cause the requestor, responsive to receipt of the out-of-sequence data packet by the requestor, and after receipt of the plurality of data packets by the requestor, to send a second data request via the computer and the computer network; and a proxy detector configured to, for each of the plurality of iterations, detect receipt of the acknowledgement at a first time, detect receipt of the second data request at a second time, and calculate a time delay between the first time and the second time, thereby calculating a plurality of time delays, and determine whether the requestor is communicating via a proxy by evaluating the plurality of time delays with respect to a predefined proxy evaluation criterion, wherein the communications manager and the proxy detector are implemented in any of a) computer hardware, and b) computer software embodied in a non-transitory, computer-readable storage medium. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A computer program product for detecting proxy-based communications via a computer network, the computer program product comprising:
-
a non-transitory, computer-readable storage medium; and computer-readable program code embodied in the storage medium, wherein the computer-readable program code is configured to a) send to a computer via a computer network, a response to a first data request received from a requestor via the computer and the computer network, wherein the response includes a plurality of data packets followed by an out-of-sequence data packet that is out-of-sequence relative to any of the plurality of data packets, 1) wherein the computer-readable program code is configured to designate, prior to sending any of the data packets to the computer, the out-of-sequence data packet to be sent to the computer after the plurality of data packets are sent to the computer, 2) wherein the out-of-sequence data packet is configured to cause the computer, responsive to receipt of the out-of-sequence data packet by the computer after receipt of the plurality of data packets by the computer, to send an acknowledgement via the computer network, and 3) wherein the out-of-sequence data packet is configured to cause the requestor, responsive to receipt of the out-of-sequence data packet by the requestor, and after receipt of the plurality of data packets by the requestor, to send a second data request via the computer and the computer network, and b) for each of the plurality of iterations, 1) detect receipt of the acknowledgement at a first time, 2) detect receipt of the second data request at a second time, and 3) calculate a time delay between the first time and the second time, thereby calculating a plurality of time delays, and c) determine whether the requestor is communicating via a proxy by evaluating the plurality of time delays with respect to a predefined proxy evaluation criterion. - View Dependent Claims (10)
-
Specification