首页>
外国专利>
How to defend against DoS attacks by the control target and victim self-identified in the IP network
How to defend against DoS attacks by the control target and victim self-identified in the IP network
展开▼
机译:IP网络中自我控制的目标和受害者如何防御DoS攻击
展开▼
页面导航
摘要
著录项
相似文献
摘要
A method and apparatus for defending against a Denial of Service attack wherein a target victim of an attack has recognized the existence of an attack and identified its source. The carrier network which provides service to the victim automatically receives one or more IP (Internet Protocol) source/destination IP address pairs from the victim, and then limits (e.g., blocks) the transmission of packets from the identified source address to the identified destination address. The carrier may implement this filtering capability as a stand-alone box included in the network, or as a line card incorporated into otherwise conventional network elements already present in the network. The source/destination address pairs to be blocked may be advantageously communicated from the victim with use of security signatures and with use of redundant connections from the victim to the carrier network to ensure receipt even under congested network conditions.
展开▼