公开(公告)号：US20050111367A1

公开(公告)日：2005-05-26

申请号：US10723450

申请日：2003-11-26

申请人： Hung-Hsiang Jonathan Chao ,  Mooi Chuah ,  Yoohwan Kim ,  Wing Lau

发明人： Hung-Hsiang Jonathan Chao ,  Mooi Chuah ,  Yoohwan Kim ,  Wing Lau

IPC分类号： H04L12/26 ,  H04L29/06

CPC分类号： H04L63/1408 ,  H04L63/1458

摘要： In a network including a centralized controller and a plurality of routers forming a security perimeter, a method for selectively discarding packets during a distributed denial-of-service (DDoS) attack over the network. The method includes aggregating victim destination prefix lists and attack statistics associated with incoming packets received from the plurality of routers to confirm a DDoS attack victim, and aggregating packet attribute distribution frequencies for incoming victim related packets received from the plurality of security perimeter routers. Common scorebooks are generated from the aggregated packet attribute distribution frequencies and nominal traffic profiles, and local cumulative distribution function (CDF) of the local scores derived from the plurality of security perimeter routers are aggregated. A common discarding threshold is derived from the CDF and sent to each of the plurality of security perimeter routers, where the discarding threshold defines a condition in which an incoming packet may be discarded at the security perimeter.

摘要翻译： 在包括集中控制器和形成安全边界的多个路由器的网络中，提供了一种在通过网络的分布式拒绝服务（DDoS）攻击中选择性地丢弃分组的方法。 该方法包括聚合受害目的地前缀列表和与从多个路由器接收的传入分组相关联的攻击统计信息，以确认DDoS攻击受害者，并且聚合从多个安全边界路由器接收到的传入的受害者相关分组的分组属性分布频率。 从聚合的分组属性分布频率和标称流量简档生成常用记分簿，并且聚合从多个安全边界路由器导出的局部分数的局部累积分布函数（CDF）。 从CDF导出常见的丢弃阈值，并将其发送到多个安全边界路由器中的每一个，其中丢弃阈值定义了可能在安全边界丢弃输入分组的状况。

公开(公告)号：US07526807B2

公开(公告)日：2009-04-28

申请号：US10723450

申请日：2003-11-26

申请人： Hung-Hsiang Jonathan Chao ,  Mooi Choo Chuah ,  Yoohwan Kim ,  Wing Cheong Lau

发明人： Hung-Hsiang Jonathan Chao ,  Mooi Choo Chuah ,  Yoohwan Kim ,  Wing Cheong Lau

IPC分类号： G06F21/00

CPC分类号： H04L63/1408 ,  H04L63/1458

摘要： In a network including a centralized controller and a plurality of routers forming a security perimeter, a method for selectively discarding packets during a distributed denial-of-service (DDoS) attack over the network. The method includes aggregating victim destination prefix lists and attack statistics associated with incoming packets received from the plurality of routers to confirm a DDoS attack victim, and aggregating packet attribute distribution frequencies for incoming victim related packets received from the plurality of security perimeter routers. Common scorebooks are generated from the aggregated packet attribute distribution frequencies and nominal traffic profiles, and local cumulative distribution function (CDF) of the local scores derived from the plurality of security perimeter routers are aggregated. A common discarding threshold is derived from the CDF and sent to each of the plurality of security perimeter routers, where the discarding threshold defines a condition in which an incoming packet may be discarded at the security perimeter.

摘要翻译： 在包括集中控制器和形成安全边界的多个路由器的网络中，提供了一种在通过网络的分布式拒绝服务（DDoS）攻击中选择性地丢弃分组的方法。 该方法包括聚合受害目的地前缀列表和与从多个路由器接收的传入分组相关联的攻击统计信息，以确认DDoS攻击受害者，并且聚合从多个安全边界路由器接收到的传入的受害者相关分组的分组属性分布频率。 从聚合的分组属性分布频率和标称流量简档生成常用记分簿，并且聚合从多个安全边界路由器导出的局部分数的局部累积分布函数（CDF）。 从CDF导出常见的丢弃阈值，并将其发送到多个安全边界路由器中的每一个，其中丢弃阈值定义了可能在安全边界丢弃输入分组的状况。

公开(公告)号：US09036782B2

公开(公告)日：2015-05-19

申请号：US13205370

申请日：2011-08-08

申请人： Samuel M. Song ,  Brian Kauke ,  Yoohwan Kim ,  Douglas P. Boyd

发明人： Samuel M. Song ,  Brian Kauke ,  Yoohwan Kim ,  Douglas P. Boyd

IPC分类号： G06K9/00 ,  G01N23/203 ,  G01V5/00

CPC分类号： G01V5/0025 ,  G06K2209/09

摘要： Dual-energy backscatter x-ray shoe scanning including: pre-processing input image information received from a shoe scanning device and image calibration data received from a database to output an atomic number image; detecting at least one suspect region based off the atomic number image; identifying the at least one detected suspect region as an object class using a changeable list of attributes; and classifying the object class according to a changeable list of categories.

摘要翻译： 双能量反向散射x射线靴扫描，包括：从鞋类扫描装置接收的预处理输入图像信息和从数据库接收的图像校准数据，以输出原子序数图像; 基于原子序数图像检测至少一个可疑区域; 使用可更改的属性列表将所述至少一个检测到的可疑区域识别为对象类; 并根据可更改的类别列表对对象类进行分类。

公开(公告)号：US20120069963A1

公开(公告)日：2012-03-22

申请号：US13205370

申请日：2011-08-08

申请人： Samuel M. Song ,  Brian Kauke ,  Yoohwan Kim ,  Douglas P. Boyd

发明人： Samuel M. Song ,  Brian Kauke ,  Yoohwan Kim ,  Douglas P. Boyd

IPC分类号： G06K9/00 ,  G01N23/203

CPC分类号： G01V5/0025 ,  G06K2209/09

摘要： Dual-energy backscatter x-ray shoe scanning including: pre-processing input image information received from a shoe scanning device and image calibration data received from a database to output an atomic number image; detecting at least one suspect region based off the atomic number image; identifying the at least one detected suspect region as an object class using a changeable list of attributes; and classifying the object class according to a changeable list of categories.

摘要翻译： 双能量反向散射x射线靴扫描，包括：从鞋类扫描装置接收的预处理输入图像信息和从数据库接收的图像校准数据，以输出原子序数图像; 基于原子序数图像检测至少一个可疑区域; 使用可更改的属性列表将所述至少一个检测到的可疑区域识别为对象类; 并根据可更改的类别列表对对象类进行分类。