Invention Grant
US07640591B1 Method and apparatus for limiting denial of service attack by limiting traffic for hosts
有权
通过限制主机流量来限制拒绝服务攻击的方法和装置
- Patent Title: Method and apparatus for limiting denial of service attack by limiting traffic for hosts
- Patent Title (中): 通过限制主机流量来限制拒绝服务攻击的方法和装置
-
Application No.: US11112328Application Date: 2005-04-22
-
Publication No.: US07640591B1Publication Date: 2009-12-29
- Inventor: Sunay Tripathi , Nicolas G. Droux , Yuzo Watanabe
- Applicant: Sunay Tripathi , Nicolas G. Droux , Yuzo Watanabe
- Applicant Address: US CA Santa Clara
- Assignee: Sun Microsystems, Inc.
- Current Assignee: Sun Microsystems, Inc.
- Current Assignee Address: US CA Santa Clara
- Agency: Osha • Liang LLP
- Main IPC: G06F11/00
- IPC: G06F11/00 ; G06F11/30
Abstract:
A method for controlling a denial of service attack involves receiving a plurality of packets from a network, identifying an attacking host based on a severity level of the denial of service attack from the network, wherein the attacking host is identified by an identifying attack characteristic associated with one of the plurality of packets associated with the attacking host, analyzing each of the plurality of packets by a classifier to determine to which of a plurality of temporary data structures each of the plurality of packet is forwarded, forwarding each of the plurality of packets associated with the identifying attack characteristic to one of the plurality of temporary data structures matching the severity level of the denial of service attack as determined by the classifier, requesting a number of packets from the one of the plurality of temporary data structures matching the severity level by the virtual serialization queue, and forwarding the number of packets to the virtual serialization queue.
Information query
