专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US10084753B2 Delivering security functions to distributed networks 有权
公开(公告)号：US10084753B2
公开(公告)日：2018-09-25
申请号：US15342982
申请日：2016-11-03
申请人： vArmour Networks, Inc.
发明人： Marc Woolward , Choung-Yaw Shieh , Jia-Jyi Lian
IPC分类号： H04L29/06 , G06F21/55 , G06F21/53 , G06F21/57
CPC分类号： H04L63/0263 , G06F21/53 , G06F21/552 , G06F21/57 , H04L63/0227 , H04L63/0236 , H04L63/1408 , H04L63/1425 , H04L63/1433 , H04L63/1441 , H04L63/1458 , H04L63/20 , H04L2463/141
摘要： Systems and methods for delivering security functions to a distributed network are described herein. An exemplary method may include: processing a data packet received from a switch, the data packet directed to the at least one network asset; selectively forwarding the data packet using the processing and a rule set; inspecting the forwarded packet; directing the enforcement point to at least one of forward the data packet to the at least one network asset and drop the data packet, using the inspection and the rule set; accumulating data associated with at least one of the data packet, the processing, and the inspection; analyzing the at least one of the data packet, the processing, and the inspection; and initiating compilation of a high-level security policy by the compiler using the analysis to produce an updated rule set.

2. 发明申请

US20180255093A1 DETECTION AND MITIGATION OF SLOW APPLICATION LAYER DDoS ATTACKS 审中-公开
公开(公告)号：US20180255093A1
公开(公告)日：2018-09-06
申请号：US15657499
申请日：2017-07-24
申请人： RADWARE, LTD.
发明人： Ehud DORON , Nir Ilani , David AVIV , Yotam BEN EZRA , Amit BISMUT , Yuriy ARBITMAN
IPC分类号： H04L29/06
CPC分类号： H04L63/1458 , H04L63/0209 , H04L63/101 , H04L63/1416 , H04L63/1425 , H04L63/20 , H04L67/02 , H04L2463/141
摘要： A method and system for protecting cloud-hosted applications against application-layer slow distributed denial-of-service (DDoS) attacks. The comprising collecting telemetries from a plurality of sources deployed in at least one cloud computing platform hosting a protected cloud-hosted application; providing a set of rate-based and rate-invariant features based on the collected telemetries; evaluating each feature in the set of rate-based and rate-invariant features to determine whether a behavior of each feature and a behavior of the set of rate-based and rate-invariant features indicate a potential application-layer slow DDoS attack; and causing execution of a mitigation action, when an indication of a potential application-layer slow DDoS attack is determined.

3. 发明申请

US20180255077A1 System and Method for Cyber Security Threat Detection 审中-公开
公开(公告)号：US20180255077A1
公开(公告)日：2018-09-06
申请号：US15699777
申请日：2017-09-08
申请人： ResponSight Pty Ltd
发明人： Jeffrey Paine
IPC分类号： H04L29/06
CPC分类号： H04L63/1416 , G06F21/55 , G06F21/552 , G06F21/554 , G06F21/57 , G06F2221/034 , H04L63/1425 , H04L63/1433 , H04L63/145 , H04L63/1466 , H04L63/18 , H04L63/20 , H04L67/10 , H04L2463/141
摘要： A cyber security threat detection system for one or more endpoints within a computing environment is disclosed. The system includes one or more collector engines. Each of the collector engines includes a service and an agent operating on a corresponding system endpoint of the system endpoints. The service is configured to take a first snapshot of the corresponding system endpoint. The first snapshot includes event activity information associated with the system endpoint. The agent is configured to take a second snapshot of the corresponding system endpoint. The second snapshot includes behavioral activity information associated with the corresponding system endpoint. The system further includes an aggregator engine configured to aggregate the first snapshot and the second snapshot from each of the system endpoints into an aggregated snapshot. The system further includes one or more analytics engines configured to: generate and store baseline profiles associated with the system endpoints based on a previously received aggregated snapshot, receive the aggregated snapshot from the aggregator engine, determine deviation values for each of the system endpoints based on the received aggregated snapshot and the stored baseline profiles, and generate, for each of the system endpoints, a cumulative risk value based on the deviation values. The system further includes one or more alerting engines configured to determine whether to issue one or more alerts indicating one or more security threats have occurred for each of the endpoints in response to the cumulative risk value.

4. 发明申请

US20180159894A1 AUTOMATIC THRESHOLD LIMIT CONFIGURATION FOR INTERNET OF THINGS DEVICES 审中-公开
公开(公告)号：US20180159894A1
公开(公告)日：2018-06-07
申请号：US15366354
申请日：2016-12-01
申请人： Cisco Technology, Inc.
发明人： K. Tirumaleswar Reddy , Prashanth Patil , Daniel G. Wing
IPC分类号： H04L29/06
CPC分类号： H04L63/1458 , H04L63/02 , H04L63/1416 , H04L2463/141
摘要： Presented herein are techniques for mitigating a distributed denial of service attack. A method includes, at a network security device, such as a firewall, monitoring network traffic, flowing through the firewall, destined for a network device, determining whether the network traffic is below a predetermined amount, while the network traffic is below the predetermined amount, sending to the network device a plurality of probes, receiving responses from the network device in response to the probes, and setting one or more thresholds for subsequent traffic destined for the network device based on the responses received from the network device.

5. 发明授权

US09935974B2 Hardware-logic based flow collector for distributed denial of service (DDoS) attack mitigation 有权
公开(公告)号：US09935974B2
公开(公告)日：2018-04-03
申请号：US15055619
申请日：2016-02-28
申请人： Fortinet, Inc.
发明人： Hemant Kumar Jain
IPC分类号： H04L29/06
CPC分类号： H04L63/1458 , H04L63/1416 , H04L63/1425 , H04L63/164 , H04L2463/141
摘要： Methods and systems for an integrated solution to flow collection for determination of rate-based DoS attacks targeting ISP infrastructure are provided. According to one embodiment, a method of mitigating DDoS attacks is provided. Information regarding at least one destination within a network for which a distributed denial of service (DDoS) attack status is to be monitored is received by a DDoS attack detection module coupled with a flow controller via a bus. The DDoS attack status is determined for the at least one destination based on the information regarding the at least one destination. When a DDoS attack is detected the flow controller is notified of the DDoS attack status for the at least one destination by the DDoS attack detection module. Responsive thereto, the flow controller directs a route reflector to divert traffic destined for the at least one destination to a DDoS attack mitigation appliance within the network.

6. 发明授权

US09838423B2 Perfect forward secrecy distributed denial of service attack defense 有权
公开(公告)号：US09838423B2
公开(公告)日：2017-12-05
申请号：US15418628
申请日：2017-01-27
申请人： A10 Networks, Inc.
发明人： Yang Yang , Ali Golshan
IPC分类号： H04L9/32 , H04L29/06 , H04L9/08
CPC分类号： H04L63/1458 , H04L9/002 , H04L9/0838 , H04L9/0841 , H04L9/0861 , H04L63/0272 , H04L63/061 , H04L63/101 , H04L63/1416 , H04L63/166 , H04L2463/141
摘要： Provided are methods and systems for mitigating a DoS attack. A method for mitigating a DoS attack may commence with receiving, from a client, a request to initiate a secure session between the client and a server. The method may continue with determining whether the client is on a whitelist. Based on a determination that client is absent from the whitelist, a pre-generated key may be sent to the client. The method may include determining validity of the established secure session. The determination may be performed based on further actions associated with the client. Based on the determination that the secure session is valid, a renegotiation of the secure session may be forced. The method may further include generating a new key using a method for securely exchanging cryptographic keys over a public channel. The new key is then sent to the client.

7. 发明授权

US09749778B2 Data communication device and method for data communication 有权
公开(公告)号：US09749778B2
公开(公告)日：2017-08-29
申请号：US15115761
申请日：2015-02-05
申请人： Aesculap AG
发明人： Christian Wehrle , Andreas Göggelmann
IPC分类号： H04B7/00 , H04W4/00 , H04L29/06 , H04W12/06 , H04W52/02 , H04W76/02
CPC分类号： H04W4/008 , H04L63/1458 , H04L63/18 , H04L2463/141 , H04W4/80 , H04W12/06 , H04W52/0235 , H04W76/11 , Y02D70/142 , Y02D70/144 , Y02D70/162
摘要： A data communication device includes: a computation unit and data unit which includes a first radio communication module for wireless data exchange with an external radio device or is connected to the first radio communication module, a second radio communication module which communicates wirelessly with the external radio device, and a memory that stores identification data from the first radio communication module. The first radio communication module is operated in a receiving mode in which the first radio communication module is not detectable by the external radio device. Upon receiving identification data for the first radio communication module from the external radio device, the first radio communication module can establish a connection and for subsequent data exchange with the external radio device. The second radio communication module is operated in standby mode in which the second radio communication module waits for a communication query from the external radio device.

8. 发明授权

US09699212B2 Limiting the efficacy of a denial of service attack by increasing client resource demands 有权
公开(公告)号：US09699212B2
公开(公告)日：2017-07-04
申请号：US15199834
申请日：2016-06-30
申请人： Juniper Networks, Inc.
发明人： Kyle Adams , Daniel J. Quinlan
IPC分类号： H04L29/06 , H04L29/08 , H04L12/927
CPC分类号： H04L63/1458 , G06F2221/2103 , H04L47/808 , H04L63/10 , H04L63/1425 , H04L63/1441 , H04L67/303 , H04L67/42 , H04L2463/141 , H04L2463/144
摘要： A device may detect an attack. The device may receive, from a client device, a request for a resource. The device may determine, based on detecting the attack, a computationally expensive problem to be provided to the client device, where the computationally expensive problem requires a computation by the client device to solve the computationally expensive problem. The device may instruct the client device to provide a solution to the computationally expensive problem. The device may receive, from the client device, the solution to the computationally expensive problem. The device may selectively provide the client device with access to the resource based on the solution.

9. 发明申请

US20170142153A1 Perfect Forward Secrecy Distributed Denial of Service Attack Defense 有权
公开(公告)号：US20170142153A1
公开(公告)日：2017-05-18
申请号：US15418628
申请日：2017-01-27
申请人： A10 Networks, Inc.
发明人： Yang Yang , Ali Golshan
IPC分类号： H04L29/06 , H04L9/08
CPC分类号： H04L63/1458 , H04L9/002 , H04L9/0838 , H04L9/0841 , H04L9/0861 , H04L63/0272 , H04L63/061 , H04L63/101 , H04L63/1416 , H04L63/166 , H04L2463/141
摘要： Provided are methods and systems for mitigating a DoS attack. A method for mitigating a DoS attack may commence with receiving, from a client, a request to initiate a secure session between the client and a server. The method may continue with determining whether the client is on a whitelist. Based on a determination that client is absent from the whitelist, a pre-generated key may be sent to the client. The method may include determining validity of the established secure session. The determination may be performed based on further actions associated with the client. Based on the determination that the secure session is valid, a renegotiation of the secure session may be forced. The method may further include generating a new key using a method for securely exchanging cryptographic keys over a public channel. The new key is then sent to the client.

10. 发明申请

US20170111390A1 METHOD CIRCUITS DEVICES SYSTEMS AND FUNCTIONALLY ASSOCIATED COMPUTER EXECUTABLE CODE FOR DETECTING AND MITIGATING DENIAL OF SERVICE ATTACK DIRECTED ON OR THROUGH A RADIO ACCESS NETWORK 审中-公开
公开(公告)号：US20170111390A1
公开(公告)日：2017-04-20
申请号：US15293308
申请日：2016-10-14
申请人： SAGUNA NETWORKS LTD.
发明人： Daniel Nathan Frydman , Lior Fite
IPC分类号： H04L29/06 , H04L12/26 , H04W12/12 , H04L29/08
CPC分类号： H04L63/1458 , H04L43/08 , H04L63/1408 , H04L67/02 , H04L67/10 , H04L67/42 , H04L2463/141 , H04W12/12
摘要： Disclosed are methods, circuits, systems and functionally associated computer executable code for systems and functionally associated computer executable code for detecting and mitigating a denial of service attack on or through a radio access network. According to some embodiments, there may be provided a radio access network with one or more radio access points to wirelessly engage in communication with one or more wireless communication devices, a Malicious Packet Detector (MPD) communicatively coupled to one or more radio access points and configured to detect one or more malicious packets transmitted to said radio access network by the one or more wireless communication devices, and a controller functionally associated with the MPD and configured to alter network operation so as to mitigate malicious packet flow from the one or more malicious packet transmitting wireless communication devices.

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式