专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US08843645B2 Systems and methods for detecting incomplete requests, TCP timeouts and application timeouts 有权
标题翻译：用于检测不完整请求，TCP超时和应用程序超时的系统和方法
公开(公告)号：US08843645B2
公开(公告)日：2014-09-23
申请号：US12822825
申请日：2010-06-24
申请人： Saravanakumar Annamalaisami , Ashok Kumar Jagadeeswaran , Mahesh Mylarappa , Roy Rajan
发明人： Saravanakumar Annamalaisami , Ashok Kumar Jagadeeswaran , Mahesh Mylarappa , Roy Rajan
IPC分类号： G06F15/16 , H04L29/06
CPC分类号： H04L63/1458 , H04L63/166 , H04L63/168
摘要： Described herein is a method and system for preventing Denial of Service (DoS) attacks. An intermediary device is deployed between clients and servers. The device receives a first packet of an application layer transaction via a transport layer connection between the device and client. The device records a last activity time for the transport layer connection based upon the timestamp of the first packet. The device receives subsequent data packets and determines whether the data in the packets completes a protocol data structure of the application layer protocol. If the device determines that the subsequent packet completes the protocol data structure, the last activity time is updated. If the device determines that the application layer protocol remains incomplete, the device retains the last activity time and determines that the duration of inactivity for the transport layer connection exceeds a predetermined threshold. The device may subsequently drop the connection.
摘要翻译：这里描述了防止拒绝服务（DoS）攻击的方法和系统。中间设备部署在客户端和服务器之间。设备经由设备和客户端之间的传输层连接来接收应用层事务的第一分组。设备根据第一个数据包的时间戳记记录传输层连接的最后活动时间。该设备接收后续的数据包，并确定包中的数据是否完成了应用层协议的协议数据结构。如果设备确定后续分组完成协议数据结构，则最后的活动时间被更新。如果设备确定应用层协议保持不完整，则设备保留最后的活动时间，并确定传输层连接的不活动持续时间超过预定阈值。该设备可以随后丢弃连接。

2. 发明申请

US20110320617A1 SYSTEMS AND METHODS FOR DETECTING INCOMPLETE REQUESTS, TCP TIMEOUTS AND APPLICATION TIMEOUTS 有权
标题翻译：用于检测不完整请求，TCP TIMEOUTS和应用程序时间的系统和方法
公开(公告)号：US20110320617A1
公开(公告)日：2011-12-29
申请号：US12822825
申请日：2010-06-24
申请人： Saravanakumar Annamalaisami , Ashok Kumar Jagadeeswaran , Mahesh Mylarappa , Roy Rajan
发明人： Saravanakumar Annamalaisami , Ashok Kumar Jagadeeswaran , Mahesh Mylarappa , Roy Rajan
IPC分类号： G06F15/16
CPC分类号： H04L63/1458 , H04L63/166 , H04L63/168
摘要： Described herein is a method and system for preventing Denial of Service (DoS) attacks. An intermediary device is deployed between clients and servers. The device receives a first packet of an application layer transaction via a transport layer connection between the device and client. The device records a last activity time for the transport layer connection based upon the timestamp of the first packet. The device receives subsequent data packets and determines whether the data in the packets completes a protocol data structure of the application layer protocol. If the device determines that the subsequent packet completes the protocol data structure, the last activity time is updated. If the device determines that the application layer protocol remains incomplete, the device retains the last activity time and determines that the duration of inactivity for the transport layer connection exceeds a predetermined threshold. The device may subsequently drop the connection.
摘要翻译：这里描述了防止拒绝服务（DoS）攻击的方法和系统。中间设备部署在客户端和服务器之间。设备经由设备和客户端之间的传输层连接来接收应用层事务的第一分组。设备根据第一个数据包的时间戳记记录传输层连接的最后活动时间。该设备接收后续的数据包，并确定包中的数据是否完成了应用层协议的协议数据结构。如果设备确定后续分组完成协议数据结构，则最后的活动时间被更新。如果设备确定应用层协议保持不完整，则设备保留最后的活动时间，并确定传输层连接的不活动持续时间超过预定阈值。该设备可以随后丢弃连接。

3. 发明授权

US08214505B2 Systems and methods of handling non-HTTP client or server push on HTTP Vserver 有权
标题翻译：在HTTP Vserver上处理非HTTP客户端或服务器的系统和方法
公开(公告)号：US08214505B2
公开(公告)日：2012-07-03
申请号：US12820730
申请日：2010-06-22
申请人： Ashok Kumar Jagadeeswaran , Roy Rajan , Saravanakumar Annamalaisami
发明人： Ashok Kumar Jagadeeswaran , Roy Rajan , Saravanakumar Annamalaisami
IPC分类号： G06F15/16
CPC分类号： H04L67/22 , H04L67/02
摘要： The present application presents systems and methods for handling by an HTTP virtual server (HTTPVS), connections via which non-HTTP data is transmitted between clients and servers. HTTPVS intercepts a request from a client to establish first transport layer connection (TLC) with a server. HTTPVS establishes second TLC with the servers in response to receiving an acknowledgment from a client to establish the first TLC. HTTPVS determines if a first network packet transmitted via first TLC comprises an HTTP payload or non-HTTP payload. If HTTPVP the first network packet includes HTTP payload, HTTPVS may process all transmissions from the first TLC in accordance with connection tracking and forward the processed transmissions to the server via the second TLC. If HTTPVS determines that the first network packet does not include an HTTP payload, HTTPVS may link the first TLC and the second TLC so the client and server exchange non-HTTP communication without interruption.
摘要翻译：本应用程序提供了由HTTP虚拟服务器（HTTPVS）处理的系统和方法，通过该连接在客户端和服务器之间传输非HTTP数据。 HTTPVS拦截来自客户端的请求，以建立与服务器的第一传输层连接（TLC）。 HTTPVS与服务器建立第二个TLC，响应于从客户端收到建立第一个TLC的确认。 HTTPVS确定通过第一TLC发送的第一网络分组是否包含HTTP有效载荷或非HTTP有效载荷。如果第一网络分组的HTTPVP包括HTTP有效载荷，则HTTPVS可以根据连接跟踪处理来自第一TLC的所有传输，并且经由第二TLC将处理后的传输转发到服务器。如果HTTPVS确定第一个网络数据包不包含HTTP有效载荷，则HTTPVS可以链接第一个TLC和第二个TLC，以便客户端和服务器不间断地交换非HTTP通信。

4. 发明申请

US20100325287A1 SYSTEMS AND METHODS OF HANDLING NON-HTTP CLIENT OR SERVER PUSH ON HTTP VSERVER 有权
标题翻译：在HTTP VSERVER上处理非HTTP客户端或服务器推送的系统和方法
公开(公告)号：US20100325287A1
公开(公告)日：2010-12-23
申请号：US12820730
申请日：2010-06-22
申请人： Ashok Kumar Jagadeeswaran , Roy Rajan , Saravanakumar Annamalaisami
发明人： Ashok Kumar Jagadeeswaran , Roy Rajan , Saravanakumar Annamalaisami
IPC分类号： G06F15/16
CPC分类号： H04L67/22 , H04L67/02
摘要： The present application presents systems and methods for handling by an HTTP virtual server (HTTPVS), connections via which non-HTTP data is transmitted between clients and servers. HTTPVS intercepts a request from a client to establish first transport layer connection (TLC) with a server. HTTPVS establishes second TLC with the servers in response to receiving an acknowledgment from a client to establish the first TLC. HTTPVS determines if a first network packet transmitted via first TLC comprises an HTTP payload or non-HTTP payload. If HTTPVP the first network packet includes HTTP payload, HTTPVS may process all transmissions from the first TLC in accordance with connection tracking and forward the processed transmissions to the server via the second TLC. If HTTPVS determines that the first network packet does not include an HTTP payload, HTTPVS may link the first TLC and the second TLC so the client and server exchange non-HTTP communication without interruption.
摘要翻译：本应用程序提供了由HTTP虚拟服务器（HTTPVS）处理的系统和方法，通过该连接在客户端和服务器之间传输非HTTP数据。 HTTPVS拦截来自客户端的请求，以建立与服务器的第一传输层连接（TLC）。 HTTPVS与服务器建立第二个TLC，响应于从客户端收到建立第一个TLC的确认。 HTTPVS确定通过第一TLC发送的第一网络分组是否包含HTTP有效载荷或非HTTP有效载荷。如果第一网络分组的HTTPVP包括HTTP有效载荷，则HTTPVS可以根据连接跟踪处理来自第一TLC的所有传输，并且经由第二TLC将处理后的传输转发到服务器。如果HTTPVS确定第一个网络数据包不包含HTTP有效载荷，则HTTPVS可以链接第一个TLC和第二个TLC，以便客户端和服务器不间断地交换非HTTP通信。

5. 发明授权

US09088611B2 Systems and methods for client IP address insertion via TCP options 有权
标题翻译：通过TCP选项插入客户端IP地址的系统和方法
公开(公告)号：US09088611B2
公开(公告)日：2015-07-21
申请号：US12954319
申请日：2010-11-24
申请人： Ashok Kumar Jagadeeswaran , Saravanakumar Annamalaisami
发明人： Ashok Kumar Jagadeeswaran , Saravanakumar Annamalaisami
IPC分类号： G06F15/173 , G06F15/16 , H04L29/06 , H04L12/801 , H04L29/12 , H04L29/08
CPC分类号： H04L69/16 , G06F15/16 , H04L29/12066 , H04L47/10 , H04L61/1511 , H04L67/2804 , H04L69/08 , H04L69/161 , H04L69/163
摘要： The present disclosure presents systems and methods for maintaining identification of network devices sending or traversing a network packet en route to an intermediary device deployed between a source and a destination network device. An intermediary may receive an acknowledgement packet comprising an option field identified by an option number for a transport layer connection established via the intermediary, comprising overlay network data that identifies IP addresses of the originating network device and host network devices intercepting and forwarding the network packet to the intermediary, and may determine the option number for the option field from which to obtain the overlay network data identifying IP addresses. The intermediary device may receive a second request of the client to access the server via the transport layer connection and insert IP addresses from the overlay network data into an application layer protocol header of the second request forwarded to the server.
摘要翻译：本公开提供了用于维护在路由上发送或遍历网络分组的网络设备的识别的系统和方法，所述中间设备部署在源网络设备和目的地网络设备之间。中介可以接收确认分组，该确认分组包括由通过中介建立的传输层连接的选项号码所标识的选项字段，包括标识始发网络设备的IP地址的覆盖网络数据和拦截并转发网络分组的主机网络设备并且可以确定用于获取识别IP地址的覆盖网络数据的选项字段的选项号。中间设备可以接收客户端经由传输层连接访问服务器的第二请求，并将IP地址从覆盖网络数据插入转发到服务器的第二请求的应用层协议头。

6. 发明申请

US20110185073A1 SYSTEMS AND METHODS FOR CLIENT IP ADDRESS INSERTION VIA TCP OPTIONS 有权
标题翻译：通过TCP选项进行客户IP地址插入的系统和方法
公开(公告)号：US20110185073A1
公开(公告)日：2011-07-28
申请号：US12954319
申请日：2010-11-24
申请人： Ashok Kumar Jagadeeswaran , Saravanakumar Annamalaisami
发明人： Ashok Kumar Jagadeeswaran , Saravanakumar Annamalaisami
IPC分类号： G06F15/16
CPC分类号： H04L69/16 , G06F15/16 , H04L29/12066 , H04L47/10 , H04L61/1511 , H04L67/2804 , H04L69/08 , H04L69/161 , H04L69/163
摘要： The present disclosure presents systems and methods for maintaining identification of network devices sending or traversing a network packet en route to an intermediary device deployed between a source and a destination network device. An intermediary may receive an acknowledgement packet comprising an option field identified by an option number for a transport layer connection established via intermediary. The acknowledgement packet may comprise overlay network data that identifies IP addresses of the originating network device and host network devices intercepting and forwarding the network packet to the intermediary. The intermediary device may determine the option number for the option field from which to obtain the overlay network data identifying IP addresses. The intermediary device may receive a second request of the client to access the server via the transport layer connection and insert IP addresses from the overlay network data into an application layer protocol header of the second request forwarded to the server.
摘要翻译：本公开提供了用于维护在路由上发送或遍历网络分组的网络设备的识别的系统和方法，所述中间设备部署在源网络设备和目的地网络设备之间。中介可以接收确认分组，该确认分组包括由通过中介建立的传输层连接的选项号码所标识的选项字段。确认分组可以包括标识发起网络设备的IP地址和主机网络设备的覆盖网络数据，该网络设备拦截并转发网络分组到中间设备。中间设备可以确定用于获取识别IP地址的覆盖网络数据的选项字段的选项号。中间设备可以接收客户端经由传输层连接访问服务器的第二请求，并将IP地址从覆盖网络数据插入转发到服务器的第二请求的应用层协议头。

7. 发明授权

US08875290B2 Systems and methods for aggressive window probing 有权
标题翻译：积极的窗口探测的系统和方法
公开(公告)号：US08875290B2
公开(公告)日：2014-10-28
申请号：US13769425
申请日：2013-02-18
申请人： Varun Taneja , Mahesh Mylarappa , Saravanakumar Annamalaisami
发明人： Varun Taneja , Mahesh Mylarappa , Saravanakumar Annamalaisami
IPC分类号： G06F21/00
CPC分类号： H04L67/141 , H04L63/1416 , H04L63/1441 , H04L63/1458 , H04L69/16 , H04L69/163
摘要： The present application is directed towards systems and methods for aggressively probing a client side connection to determine and counteract a malicious window size attack or similar behavior from a malfunctioning client. The solution described herein detects when a connection may be under malicious attach via improper or unusual window size settings. Responsive to the detection, the solution described herein will setup probes that determine whether or not the client is malicious and does so within an aggressive time period to avoid the tying up of processing cycles, transport layer sockets and buffers, and other resources of the sender.
摘要翻译：本申请涉及用于积极探测客户端连接以确定和抵消来自故障客户端的恶意窗口大小攻击或类似行为的系统和方法。本文描述的解决方案通过不正确或异常的窗口大小设置来检测连接是否可能处于恶意附着状态。响应于检测，本文所述的解决方案将建立探测器，其确定客户端是否是恶意的并且在激进的时间段内这样做以避免处理周期，传输层套接字和缓冲器的绑定以及发送者的其他资源。

8. 发明授权

US08387143B2 Systems and methods for aggressive window probing 有权
标题翻译：积极的窗口探测的系统和方法
公开(公告)号：US08387143B2
公开(公告)日：2013-02-26
申请号：US12627534
申请日：2009-11-30
申请人： Varun Taneja , Mahesh Mylarappa , Saravanakumar Annamalaisami
发明人： Varun Taneja , Mahesh Mylarappa , Saravanakumar Annamalaisami
IPC分类号： G06F21/00
CPC分类号： H04L67/141 , H04L63/1416 , H04L63/1441 , H04L63/1458 , H04L69/16 , H04L69/163
摘要： The present application is directed towards systems and methods for aggressively probing a client side connection to determine and counteract a malicious window size attack or similar behavior from a malfunctioning client. The solution described herein detects when a connection may be under malicious attach via improper or unusual window size settings. Responsive to the detection, the solution described herein will setup probes that determine whether or not the client is malicious and does so within an aggressive time period to avoid the tying up of processing cycles, transport layer sockets and buffers, and other resources of the sender.
摘要翻译：本申请涉及用于积极地探测客户端连接以确定和抵消来自故障客户端的恶意窗口大小攻击或类似行为的系统和方法。本文描述的解决方案通过不正确或异常的窗口大小设置来检测连接是否可能处于恶意附着状态。响应于检测，本文所述的解决方案将建立探测器，其确定客户端是否是恶意的并且在激进的时间段内这样做以避免处理周期，传输层套接字和缓冲器的绑定以及发送者的其他资源。

9. 发明申请

US20110131654A1 SYSTEMS AND METHODS FOR AGGRESSIVE WINDOW PROBING 有权
标题翻译：用于爬行窗口探测的系统和方法
公开(公告)号：US20110131654A1
公开(公告)日：2011-06-02
申请号：US12627534
申请日：2009-11-30
申请人： Varun Taneja , Mahesh Mylarappa , Saravanakumar Annamalaisami
发明人： Varun Taneja , Mahesh Mylarappa , Saravanakumar Annamalaisami
IPC分类号： G06F21/00 , G06F15/173
CPC分类号： H04L67/141 , H04L63/1416 , H04L63/1441 , H04L63/1458 , H04L69/16 , H04L69/163
摘要： The present application is directed towards systems and methods for aggressively probing a client side connection to determine and counteract a malicious window size attack or similar behavior from a malfunctioning client. The solution described herein detects when a connection may be under malicious attach via improper or unusual window size settings. Responsive to the detection, the solution described herein will setup probes that determine whether or not the client is malicious and does so within an aggressive time period to avoid the tying up of processing cycles, transport layer sockets and buffers, and other resources of the sender.
摘要翻译：本申请涉及用于积极探测客户端连接以确定和抵消来自故障客户端的恶意窗口大小攻击或类似行为的系统和方法。本文描述的解决方案通过不正确或异常的窗口大小设置来检测连接是否可能处于恶意附着状态。响应于检测，本文所述的解决方案将建立探测器，其确定客户端是否是恶意的并且在激进的时间段内这样做以避免处理周期，传输层套接字和缓冲器的绑定以及发送者的其他资源。

10. 发明申请

US20130159540A1 SYSTEMS AND METHODS FOR AGGRESSIVE WINDOW PROBING 有权
标题翻译：用于爬行窗口探测的系统和方法
公开(公告)号：US20130159540A1
公开(公告)日：2013-06-20
申请号：US13769425
申请日：2013-02-18
申请人： Varun Taneja , Mahesh Mylarappa , Saravanakumar Annamalaisami
发明人： Varun Taneja , Mahesh Mylarappa , Saravanakumar Annamalaisami
IPC分类号： H04L29/08
CPC分类号： H04L67/141 , H04L63/1416 , H04L63/1441 , H04L63/1458 , H04L69/16 , H04L69/163
摘要： The present application is directed towards systems and methods for aggressively probing a client side connection to determine and counteract a malicious window size attack or similar behavior from a malfunctioning client. The solution described herein detects when a connection may be under malicious attach via improper or unusual window size settings. Responsive to the detection, the solution described herein will setup probes that determine whether or not the client is malicious and does so within an aggressive time period to avoid the tying up of processing cycles, transport layer sockets and buffers, and other resources of the sender.
摘要翻译：本申请涉及用于积极探测客户端连接以确定和抵消来自故障客户端的恶意窗口大小攻击或类似行为的系统和方法。本文描述的解决方案通过不正确或异常的窗口大小设置来检测连接是否可能处于恶意附着状态。响应于检测，本文所述的解决方案将建立探测器，其确定客户端是否是恶意的并且在激进的时间段内这样做以避免处理周期，传输层套接字和缓冲器的绑定以及发送者的其他资源。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式