公开(公告)号：US09282115B1

公开(公告)日：2016-03-08

申请号：US14146884

申请日：2014-01-03

Applicant: Juniper Networks, Inc.

Inventor： Anil Kaushik ,  Vineet Verma ,  Stephen Grau ,  Sreenivas Voruganti ,  Abhishek Kumar

IPC: G06F11/07 ,  G06F12/02 ,  G06F21/00 ,  H04L29/06

CPC classification number: H04L63/1416 ,  H04L63/1408 ,  H04L63/1441 ,  H04L63/1466 ,  H04L67/42 ,  H04L2463/145

Abstract: A computer-implemented method for detecting cache-poisoning attacks in networks using SDPs may include maintaining a cache of service information that identifies services provided by client devices connected to a network using an SDP. The method may also include detecting a cache-poisoning attack by (1) receiving, from a client device connected to the network, an SDP message related to a service allegedly provided via the network, (2) identifying, within the SDP message, an attribute of the service allegedly provided via the network, and then (3) determining that the client device is attempting to corrupt the cache of service information by determining that the identified attribute of the service suggests that the service is illegitimate. Finally, the method may include performing a security action to mitigate the cache-poisoning attack in response to detecting the cache-poisoning attack. Various other methods, systems, and computer-readable media are also disclosed.

Abstract translation: 用于使用SDP检测网络中的高速缓存中毒攻击的计算机实现的方法可以包括维护使用SDP来标识由连接到网络的客户端设备提供的服务的服务信息的缓存。 该方法还可以包括通过以下步骤来检测高速缓存中毒攻击：（1）从连接到网络的客户端设备接收与被称为经由网络提供的服务相关的SDP消息，（2）在SDP消息内标识一个 通过网络提供的服务的属性，然后（3）通过确定所识别的服务属性表明服务是非法的，确定客户端设备正在尝试破坏服务信息缓存。 最后，该方法可以包括响应于检测到高速缓存中毒攻击而执行安全动作以减轻高速缓存中毒攻击。 还公开了各种其它方法，系统和计算机可读介质。

公开(公告)号：US09467855B1

公开(公告)日：2016-10-11

申请号：US14740226

申请日：2015-06-15

Applicant: Juniper Networks, Inc.

Inventor： Anil Kaushik ,  Stephen Grau ,  Sainath Reddy Cheruvu ,  Sreenivas Voruganti

IPC: H04L29/06 ,  H04W12/06

CPC classification number: H04W12/06 ,  H04W12/12

Abstract: A computer-implemented method for detecting rogue client devices connected to wireless hotspots may include maintaining at least one illegitimate authentication identifier that appears to rogue client devices to facilitate authentication with an external network via a wireless hotspot. The method may also include providing the illegitimate authentication identifier to one or more client devices connected to the wireless hotspot. The method may further include receiving an authentication request to authenticate the client device with at least one external network via the wireless hotspot. The method may additionally include determining that the authentication request includes the illegitimate authentication identifier. Finally, the method may include determining that the client device is a rogue device based at least in part on the illegitimate authentication identifier being included in the authentication request. Various other methods, systems, and computer-readable media are also disclosed.

公开(公告)号：US09882921B1

公开(公告)日：2018-01-30

申请号：US15011495

申请日：2016-01-30

Applicant: Juniper Networks, Inc.

Inventor： Anil Kaushik ,  Vineet Verma ,  Stephen Grau ,  Sreenivas Voruganti ,  Abhishek Kumar

IPC: G06F11/07 ,  G06F12/02 ,  G06F12/08 ,  G06F21/00 ,  G06F21/50 ,  G06F21/55 ,  G06F21/56 ,  H04L29/06

CPC classification number: H04L63/1416 ,  H04L63/1408 ,  H04L63/1441 ,  H04L63/1466 ,  H04L67/42 ,  H04L2463/145

Abstract: A computer-implemented method for detecting cache-poisoning attacks in networks using SDPs may include maintaining a cache of service information that identifies services provided by client devices connected to a network using an SDP. The method may also include detecting a cache-poisoning attack by (1) receiving, from a client device connected to the network, an SDP message related to a service allegedly provided via the network, (2) identifying, within the SDP message, an attribute of the service allegedly provided via the network, and then (3) determining that the client device is attempting to corrupt the cache of service information by determining that the identified attribute of the service suggests that the service is illegitimate. Finally, the method may include performing a security action to mitigate the cache-poisoning attack in response to detecting the cache-poisoning attack. Various other methods, systems, and computer-readable media are also disclosed.

公开(公告)号：US08848529B2

公开(公告)日：2014-09-30

申请号：US13732026

申请日：2012-12-31

Applicant: Juniper Networks, Inc.

Inventor： Sreenivas Voruganti ,  Ankur Singla ,  Pal Ashish ,  Balaji Murali ,  Vedamurthy A Joshi

IPC: G01R31/08 ,  H04L12/873 ,  H04L12/863

CPC classification number: H04L47/6225 ,  H04L47/522 ,  H04L47/6215

Abstract: A method includes receiving network information for calculating weighted round-robin (WRR) weights, calculating WRR weights associated with queues based on the network information, and determining whether a highest common factor (HCF) exists in relation to the calculated WRR weights. The method further includes reducing the calculated WRR weights in accordance with the HCF, when it is determined that the HCF exists, and performing a WRR scheduling of packets, stored in the queues, based on the reduced WRR weights.

Abstract translation: 一种方法，包括接收网络信息，用于计算加权轮询（WRR）权重，基于网络信息计算与队列相关联的WRR权重，以及确定是否存在与所计算的WRR权重有关的最高公因子（HCF）。 该方法还包括当确定HCF存在时，根据HCF减少所计算的WRR权重，并且基于减少的WRR权重对存储在队列中的分组执行WRR调度。

公开(公告)号：US09088894B1

公开(公告)日：2015-07-21

申请号：US14037343

申请日：2013-09-25

Applicant: Juniper Networks, Inc.

Inventor： Anil Kaushik ,  Stephen Grau ,  Sainath Reddy Cheruvu ,  Sreenivas Voruganti

IPC: H04L29/06 ,  H04W12/06

CPC classification number: H04W12/06 ,  H04W12/12

Abstract: A computer-implemented method for detecting rogue client devices connected to wireless hotspots may include maintaining at least one illegitimate authentication identifier that appears to rogue client devices to facilitate authentication with an external network via a wireless hotspot. The method may also include providing the illegitimate authentication identifier to one or more client devices connected to the wireless hotspot. The method may further include receiving an authentication request to authenticate the client device with at least one external network via the wireless hotspot. The method may additionally include determining that the authentication request includes the illegitimate authentication identifier. Finally, the method may include determining that the client device is a rogue device based at least in part on the illegitimate authentication identifier being included in the authentication request. Various other methods, systems, and computer-readable media are also disclosed.

Abstract translation: 用于检测连接到无线热点的流氓客户端设备的计算机实现的方法可以包括维护至少一个看起来欺骗客户端设备的非法身份验证标识符，以促进经由无线热点与外部网络的认证。 该方法还可以包括向连接到无线热点的一个或多个客户端设备提供非法认证标识符。 该方法还可以包括经由无线热点接收用至少一个外部网络来认证客户端设备的认证请求。 该方法可以另外包括确定认证请求包括非法认证标识符。 最后，该方法可以包括至少部分地基于认证请求中包括的非法认证标识来确定客户端设备是流氓设备。 还公开了各种其它方法，系统和计算机可读介质。