专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20100242112A1 SYSTEM AND METHOD FOR PROTECTING NETWORK RESOURCES FROM DENIAL OF SERVICE ATTACKS 有权
标题翻译：网络资源保护服务攻击的系统和方法
公开(公告)号：US20100242112A1
公开(公告)日：2010-09-23
申请号：US12791482
申请日：2010-06-01
申请人： Chwan-Hwa Wu , J. David Irwin , Chien-Cheng Wang
发明人： Chwan-Hwa Wu , J. David Irwin , Chien-Cheng Wang
IPC分类号： G06F12/14
CPC分类号： H04L63/0227 , H04L9/3297 , H04L63/1458
摘要： The present disclosure generally pertains to systems and methods for protecting network resources from denial of service attacks. In one exemplary embodiment, a responder stores an access filter value used to determine whether an incoming message frame has been transmitted from an authorized user. In this regard, a user communication device includes logic for determining the access filter value stored at the responder and includes the access filter value in a message frame transmitted from the computer to the responder. The responder compares the received access filter value to the stored access filter value. If such values match or otherwise correspond, the responder authenticates the message frame. However, if such values do not match or otherwise correspond, the responder discards the message frame. Thus, the responder processes authenticated message frames and discards unauthenticated message frames thereby preventing denial of service attacks from malicious users.
摘要翻译：本公开通常涉及用于保护网络资源免受拒绝服务攻击的系统和方法。在一个示例性实施例中，响应者存储用于确定进入消息帧是否已经从授权用户发送的访问过滤器值。在这方面，用户通信设备包括用于确定在应答器处存储的接入过滤器值的逻辑，并且包括从计算机向响应者发送的消息帧中的接入过滤器值。响应者将接收到的访问过滤器值与存储的访问过滤器值进行比较。如果这样的值匹配或以其他方式对应，则响应者认证消息帧。然而，如果这样的值不匹配或不对应，则应答者丢弃该消息帧。因此，响应者处理经过认证的消息帧并丢弃未认证的消息帧，从而防止恶意用户的拒绝服务攻击。

2. 发明申请

US20050144352A1 System and method for protecting network resources from denial of service attacks 有权
标题翻译：保护网络资源免受拒绝服务攻击的系统和方法
公开(公告)号：US20050144352A1
公开(公告)日：2005-06-30
申请号：US10956568
申请日：2004-10-01
申请人： Chwan-Hwa Wu , J. Irwin , Chien-Cheng Wang
发明人： Chwan-Hwa Wu , J. Irwin , Chien-Cheng Wang
IPC分类号： G06F12/14 , H04L9/32 , H04L29/06
CPC分类号： H04L63/0227 , H04L9/3297 , H04L63/1458
摘要： A system for buffering data received from a network comprises a network socket, a plurality of buffers, a buffer pointer pool, receive logic, and packet delivery logic. The buffer pointer pool has a plurality of entries respectively pointing to the buffers. The receive logic is configured to pull an entry from the pool and to perform a bulk read of the network socket. The entry points to one of the buffers, and the receive logic is further configured to store data from the bulk read to the one buffer based on the entry. The packet delivery logic is configured to read, based on the entry, the one buffer and to locate a missing packet sequence in response to a determination, by the packet delivery logic, that the one buffer is storing an incomplete packet sequence. The packet delivery logic is further configured to form a complete packet sequence based on the incomplete packet sequence and the missing packet sequence.
摘要翻译：用于缓冲从网络接收的数据的系统包括网络套接字，多个缓冲器，缓冲指针池，接收逻辑和分组递送逻辑。缓冲区指针池具有分别指向缓冲器的多个条目。接收逻辑被配置为从池中提取条目并执行网络套接字的批量读取。入口指向其中一个缓冲器，并且接收逻辑被进一步配置为基于该条目将批量读取的数据存储到一个缓冲器。分组递送逻辑被配置为基于条目读取一个缓冲器并且响应于分组递送逻辑确定一个缓冲器正在存储不完整的分组序列来定位丢失的分组序列。分组递送逻辑还被配置为基于不完整分组序列和丢失的分组序列形成完整分组序列。

3. 发明授权

US08261350B2 System and method for protecting communication devices from denial of service attacks 有权
标题翻译：保护通信设备免受拒绝服务攻击的系统和方法
公开(公告)号：US08261350B2
公开(公告)日：2012-09-04
申请号：US12985082
申请日：2011-01-05
申请人： Chwan-Hwa Wu , J. David Irwin , Chien-Cheng Wang , Chun-Ching Huang
发明人： Chwan-Hwa Wu , J. David Irwin , Chien-Cheng Wang , Chun-Ching Huang
IPC分类号： H04L29/06
CPC分类号： H04L63/0227 , H04L9/3242 , H04L63/08 , H04L63/10 , H04L63/1458 , H04L2209/80
摘要： A system for preventing successful denial of service attacks comprises a first communication device, a second communication device, and a network. The first and second communication devices establish a communication session via the network. Based on various information, such as a pre-shared secret, one of the communication devices determines a network access filter value and compares this value to at least one data frame in order to authenticate such data frame without committing significant computing resource and any memory space. By updating the network access filter over time, an unauthorized user who discovers the outdated network access filter values is prevented from successfully launching a denial of service attack.
摘要翻译：用于防止成功拒绝服务攻击的系统包括第一通信设备，第二通信设备和网络。第一和第二通信设备经由网络建立通信会话。基于诸如预共享秘密的各种信息，通信设备中的一个确定网络访问过滤器值，并将该值与至少一个数据帧进行比较，以便认证这样的数据帧而不提交重要的计算资源和任何存储空间。通过随时间更新网络访问过滤器，防止发现过时的网络访问过滤器值的未经授权的用户成功启动拒绝服务攻击。

4. 发明授权

US07937759B2 System and method for protecting communication devices from denial of service attacks 有权
标题翻译：保护通信设备免受拒绝服务攻击的系统和方法
公开(公告)号：US07937759B2
公开(公告)日：2011-05-03
申请号：US11694174
申请日：2007-03-30
申请人： Chwan-Hwa Wu , J. David Irwin , Chien-Cheng Wang , Chun-Ching Huang
发明人： Chwan-Hwa Wu , J. David Irwin , Chien-Cheng Wang , Chun-Ching Huang
IPC分类号： G06F12/14
CPC分类号： H04L63/0227 , H04L9/3242 , H04L63/08 , H04L63/10 , H04L63/1458 , H04L2209/80
摘要： A system for preventing successful denial of service attacks comprises a first communication device, a second communication device, and a network. The first and second communication devices establish a communication session via the network. Based on various information, such as a pre-shared secret, one of the communication devices determines a network access filter value and compares this value to at least one data frame in order to authenticate such data frame without committing significant computing resource and any memory space. By updating the network access filter over time, an unauthorized user who discovers the outdated network access filter values is prevented from successfully launching a denial of service attack.
摘要翻译：用于防止成功拒绝服务攻击的系统包括第一通信设备，第二通信设备和网络。第一和第二通信设备经由网络建立通信会话。基于诸如预共享秘密的各种信息，通信设备中的一个确定网络访问过滤器值，并将该值与至少一个数据帧进行比较，以便认证这样的数据帧而不提交重要的计算资源和任何存储空间。通过随时间更新网络访问过滤器，防止发现过时的网络访问过滤器值的未经授权的用户成功启动拒绝服务攻击。

5. 发明授权

US08510831B2 System and method for protecting network resources from denial of service attacks 有权
标题翻译：保护网络资源免受拒绝服务攻击的系统和方法
公开(公告)号：US08510831B2
公开(公告)日：2013-08-13
申请号：US13353845
申请日：2012-01-19
申请人： Chwan-Hwa Wu , J. David Irwin , Chien-Cheng Wang
发明人： Chwan-Hwa Wu , J. David Irwin , Chien-Cheng Wang
IPC分类号： G06F12/14
CPC分类号： H04L63/0227 , H04L9/3297 , H04L63/1458
摘要： The present disclosure generally pertains to systems and methods for protecting network resources from denial of service attacks. In one exemplary embodiment, a responder stores an access filter value used to determine whether an incoming message frame has been transmitted from an authorized user. In this regard, a user communication device includes logic for determining the access filter value stored at the responder and, includes the access filter value in a message frame transmitted from the computer to the responder. The responder compares the received access filter value to the stored access filter value. If such values match or otherwise correspond, the responder authenticates the message frame. However, if such values do not match or otherwise correspond, the responder discards the message frame. Thus, the responder processes authenticated message frames and discards unauthenticated message frames thereby preventing denial of service attacks from malicious users.
摘要翻译：本公开通常涉及用于保护网络资源免受拒绝服务攻击的系统和方法。在一个示例性实施例中，响应者存储用于确定进入消息帧是否已经从授权用户发送的访问过滤器值。在这方面，用户通信设备包括用于确定在应答器处存储的接入过滤器值的逻辑，并且包括从计算机向应答者发送的消息帧中的接入过滤器值。响应者将接收到的访问过滤器值与存储的访问过滤器值进行比较。如果这样的值匹配或以其他方式对应，则响应者认证消息帧。然而，如果这样的值不匹配或不对应，则应答者丢弃该消息帧。因此，响应者处理经过认证的消息帧并丢弃未认证的消息帧，从而防止恶意用户的拒绝服务攻击。

6. 发明申请

US20120124383A1 SYSTEM AND METHOD FOR PROTECTING NETWORK RESOURCES FROM DENIAL OF SERVICE ATTACKS 有权
标题翻译：网络资源保护服务攻击的系统和方法
公开(公告)号：US20120124383A1
公开(公告)日：2012-05-17
申请号：US13353845
申请日：2012-01-19
申请人： Chwan-Hwa Wu , J. David Irwin , Chien-Cheng Wang
发明人： Chwan-Hwa Wu , J. David Irwin , Chien-Cheng Wang
IPC分类号： H04L9/32 , G06F21/00
CPC分类号： H04L63/0227 , H04L9/3297 , H04L63/1458
摘要： The present disclosure generally pertains to systems and methods for protecting network resources from denial of service attacks. In one exemplary embodiment, a responder stores an access filter value used to determine whether an incoming message frame has been transmitted from an authorized user. In this regard, a user communication device includes logic for determining the access filter value stored at the responder and, includes the access filter value in a message frame transmitted from the computer to the responder. The responder compares the received access filter value to the stored access filter value. If such values match or otherwise correspond, the responder authenticates the message frame. However, if such values do not match or otherwise correspond, the responder discards the message frame. Thus, the responder processes authenticated message frames and discards unauthenticated message frames thereby preventing denial of service attacks from malicious users.
摘要翻译：本公开通常涉及用于保护网络资源免受拒绝服务攻击的系统和方法。在一个示例性实施例中，响应者存储用于确定进入消息帧是否已经从授权用户发送的访问过滤器值。在这方面，用户通信设备包括用于确定在应答器处存储的接入过滤器值的逻辑，并且包括从计算机向响应者发送的消息帧中的接入过滤器值。响应者将接收到的访问过滤器值与存储的访问过滤器值进行比较。如果这样的值匹配或以其他方式对应，则响应者认证消息帧。然而，如果这样的值不匹配或不对应，则应答者丢弃该消息帧。因此，响应者处理经过认证的消息帧并丢弃未认证的消息帧，从而防止恶意用户的拒绝服务攻击。

7. 发明申请

US20070266241A1 SYSTEM AND METHOD FOR PROTECTING COMMUNICATION DEVICES FROM DENIAL OF SERVICE ATTACKS 有权
标题翻译：用于从通话服务攻击中保护通信设备的系统和方法
公开(公告)号：US20070266241A1
公开(公告)日：2007-11-15
申请号：US11694174
申请日：2007-03-30
申请人： Chwan-Hwa Wu , J. Irwin , Chien-Cheng Wang , Chun-Ching Huang
发明人： Chwan-Hwa Wu , J. Irwin , Chien-Cheng Wang , Chun-Ching Huang
IPC分类号： H04L9/00
CPC分类号： H04L63/0227 , H04L9/3242 , H04L63/08 , H04L63/10 , H04L63/1458 , H04L2209/80
摘要： A system for preventing successful denial of service attacks comprises a first communication device, a second communication device, and a network. The first and second communication devices establish a communication session via the network. Based on various information, such as a pre-shared secret, one of the communication devices determines a network access filter value and compares this value to at least one data frame in order to authenticate such data frame without committing significant computing resource and any memory space. By updating the network access filter over time, an unauthorized user who discovers the outdated network access filter values is prevented from successfully launching a denial of service attack.
摘要翻译：用于防止成功拒绝服务攻击的系统包括第一通信设备，第二通信设备和网络。第一和第二通信设备经由网络建立通信会话。基于诸如预共享秘密的各种信息，通信设备中的一个确定网络访问过滤器值，并将该值与至少一个数据帧进行比较，以便认证这样的数据帧而不提交重要的计算资源和任何存储空间。通过随时间更新网络访问过滤器，防止发现过时的网络访问过滤器值的未经授权的用户成功启动拒绝服务攻击。

8. 发明授权

US07774841B2 System and method for protecting network resources from denial of service attacks 有权
标题翻译：保护网络资源免受拒绝服务攻击的系统和方法
公开(公告)号：US07774841B2
公开(公告)日：2010-08-10
申请号：US10956568
申请日：2004-10-01
申请人： Chwan-Hwa Wu , J. David Irwin , Chien-Cheng Wang
发明人： Chwan-Hwa Wu , J. David Irwin , Chien-Cheng Wang
IPC分类号： G06F12/14
CPC分类号： H04L63/0227 , H04L9/3297 , H04L63/1458
摘要： The present disclosure generally pertains to systems and methods for protecting network resources from denial of service attacks. In one exemplary embodiment, a responder stores an access filter value used to determine whether an incoming message frame has been transmitted from an authorized user. In this regard, a user communication device includes logic for determining the access filter value stored at the responder and includes the access filter value in a message frame transmitted from the computer to the responder. The responder compares the received access filter value to the stored access filter value. If such values match or otherwise correspond, the responder authenticates the message frame. However, if such values do not match or otherwise correspond, the responder discards the message frame. Thus, the responder processes authenticated message frames and discards unauthenticated message frames thereby preventing denial of service attacks from malicious users.
摘要翻译：本公开通常涉及用于保护网络资源免受拒绝服务攻击的系统和方法。在一个示例性实施例中，响应者存储用于确定进入消息帧是否已经从授权用户发送的访问过滤器值。在这方面，用户通信设备包括用于确定在应答器处存储的接入过滤器值的逻辑，并且包括从计算机向响应者发送的消息帧中的接入过滤器值。响应者将接收到的访问过滤器值与存储的访问过滤器值进行比较。如果这样的值匹配或以其他方式对应，则响应者认证消息帧。然而，如果这样的值不匹配或不对应，则应答者丢弃该消息帧。因此，响应者处理经过认证的消息帧并丢弃未认证的消息帧，从而防止恶意用户的拒绝服务攻击。

9. 发明授权

US08127355B2 System and method for protecting network resources from denial of service attacks 有权
标题翻译：保护网络资源免受拒绝服务攻击的系统和方法
公开(公告)号：US08127355B2
公开(公告)日：2012-02-28
申请号：US12791482
申请日：2010-06-01
申请人： Chwan-Hwa Wu , J. David Irwin , Chien-Cheng Wang
发明人： Chwan-Hwa Wu , J. David Irwin , Chien-Cheng Wang
IPC分类号： G06F12/14
CPC分类号： H04L63/0227 , H04L9/3297 , H04L63/1458
摘要： The present disclosure generally pertains to systems and methods for protecting network resources from denial of service attacks. In one exemplary embodiment, a responder stores an access filter value used to determine whether an incoming message frame has been transmitted from an authorized user. In this regard, a user communication device includes logic for determining the access filter value stored at the responder and includes the access filter value in a message frame transmitted from the computer to the responder. The responder compares the received access filter value to the stored access filter value. If such values match or otherwise correspond, the responder authenticates the message frame. However, if such values do not match or otherwise correspond, the responder discards the message frame. Thus, the responder processes authenticated message frames and discards unauthenticated message frames thereby preventing denial of service attacks from malicious users.
摘要翻译：本公开通常涉及用于保护网络资源免受拒绝服务攻击的系统和方法。在一个示例性实施例中，响应者存储用于确定进入消息帧是否已经从授权用户发送的访问过滤器值。在这方面，用户通信设备包括用于确定在应答器处存储的接入过滤器值的逻辑，并且包括从计算机向响应者发送的消息帧中的接入过滤器值。响应者将接收到的访问过滤器值与存储的访问过滤器值进行比较。如果这样的值匹配或以其他方式对应，则响应者认证消息帧。然而，如果这样的值不匹配或不对应，则应答者丢弃该消息帧。因此，响应者处理经过认证的消息帧并丢弃未认证的消息帧，从而防止恶意用户的拒绝服务攻击。

10. 发明申请

US20110099630A1 SYSTEM AND METHOD FOR PROTECTING COMMUNICATION DEVICES FROM DENIAL OF SERVICE ATTACKS 有权
标题翻译：用于从通话服务攻击中保护通信设备的系统和方法
公开(公告)号：US20110099630A1
公开(公告)日：2011-04-28
申请号：US12985082
申请日：2011-01-05
申请人： Chwan-Hwa Wu , J. David Irwin , Chien-Cheng Wang , Chun-Ching Huang
发明人： Chwan-Hwa Wu , J. David Irwin , Chien-Cheng Wang , Chun-Ching Huang
IPC分类号： G06F11/00
CPC分类号： H04L63/0227 , H04L9/3242 , H04L63/08 , H04L63/10 , H04L63/1458 , H04L2209/80
摘要： A system for preventing successful denial of service attacks comprises a first communication device, a second communication device, and a network. The first and second communication devices establish a communication session via the network. Based on various information, such as a pre-shared secret, one of the communication devices determines a network access filter value and compares this value to at least one data frame in order to authenticate such data frame without committing significant computing resource and any memory space. By updating the network access filter over time, an unauthorized user who discovers the outdated network access filter values is prevented from successfully launching a denial of service attack.
摘要翻译：用于防止成功拒绝服务攻击的系统包括第一通信设备，第二通信设备和网络。第一和第二通信设备经由网络建立通信会话。基于诸如预共享秘密的各种信息，通信设备中的一个确定网络访问过滤器值，并将该值与至少一个数据帧进行比较，以便认证这样的数据帧而不提交重要的计算资源和任何存储空间。通过随时间更新网络访问过滤器，防止发现过时的网络访问过滤器值的未经授权的用户成功启动拒绝服务攻击。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式