-
1.发明授权System and method for protecting a TCP connection serving system from high-volume of TCP connection requests 有权用于保护TCP连接服务系统免受大量TCP连接请求的系统和方法公开(公告)号:US07143180B2
公开(公告)日:2006-11-28
申请号:US09931225
申请日:2001-08-16
IPC分类号: G06F15/16
CPC分类号: H04L63/1458 , H04L69/16 , H04L69/161 , H04L69/163 , H04L69/28
摘要: To prevent system crashes, as by denial-of-service attacks, of TCP/IP (Transmission Control Protocol/Internet Protocol) networks, this invention regulates the volume of TCP connection requests that await service at a TCP/IP connection control table. For this purpose, the usage of the system is monitored on a dynamic basis, the time-out value Tho is dynamically computed, and requests that have been awaiting service for a period of time that exceeds Tho are removed from the TCP/IP connection control table.
摘要翻译: 为防止TCP / IP(传输控制协议/互联网协议)网络的拒绝服务攻击造成系统崩溃,本发明规定了TCP / IP连接控制表等待服务的TCP连接请求的数量。 为此,动态地监视系统的使用情况,动态地计算超时值T H,并且等待服务的请求超过T < SUB> ho 从TCP / IP连接控制表中删除。
-
2.发明申请Control of Collaboration Workspaces and Information Objects Using Business Rules 审中-公开使用业务规则控制协作工作区和信息对象公开(公告)号:US20130332564A1
公开(公告)日:2013-12-12
申请号:US13605009
申请日:2012-09-06
申请人: Andrew R. Jones , Gregory J. Boss , C. Steven Lingafelt , Kevin C. McConnell , John E. Moore, JR.
发明人: Andrew R. Jones , Gregory J. Boss , C. Steven Lingafelt , Kevin C. McConnell , John E. Moore, JR.
IPC分类号: G06F15/16
CPC分类号: G06Q10/101 , G06F16/24564
摘要: An embodiment of the invention provides a method for sending a data object to an endpoint, wherein rules are added to the data object with a processor. The rules include a requisite endpoint attribute and/or a requisite user attribute of the endpoint, and wherein the requisite user attribute of the endpoint includes an approved role. The data object is sent to the endpoint with a communications module; and a rule-analyzing module determines whether the endpoint satisfies the rules. If the endpoint satisfies a threshold number of rules, the data object is received, stored in a memory device, and/or displayed on a display at the endpoint. The processor changes at least one of the rules after a threshold period of time that the data object is created, sent, and/or received.
摘要翻译: 本发明的实施例提供了一种用于将数据对象发送到端点的方法,其中使用处理器将规则添加到数据对象。 规则包括端点的必需端点属性和/或必需用户属性,并且其中端点的必需用户属性包括已批准的角色。 数据对象通过通信模块发送到端点; 并且规则分析模块确定端点是否满足规则。 如果端点满足阈值数量的规则,则数据对象被接收,存储在存储设备中,和/或显示在端点的显示器上。 在创建,发送和/或接收数据对象的阈值时间段之后,处理器改变至少一个规则。
-
3.发明申请Control of Collaboration Workspaces and Information Objects using Business Rules 审中-公开使用业务规则控制协作工作区和信息对象公开(公告)号:US20130332561A1
公开(公告)日:2013-12-12
申请号:US13493088
申请日:2012-06-11
申请人: Andrew R. Jones , Gregory J. Boss , C. Steven Lingafelt , Kevin C. McConnell , John E. Moore, JR.
发明人: Andrew R. Jones , Gregory J. Boss , C. Steven Lingafelt , Kevin C. McConnell , John E. Moore, JR.
IPC分类号: G06F15/16
CPC分类号: G06Q10/101 , G06F16/24564
摘要: An embodiment of the invention provides a method for sending a data object to an endpoint, wherein rules are added to the data object with a processor. The rules include a requisite endpoint attribute and/or a requisite user attribute of the endpoint, and wherein the requisite user attribute of the endpoint includes an approved role. The data object is sent to the endpoint with a communications module; and a rule-analyzing module determines whether the endpoint satisfies the rules. If the endpoint satisfies a threshold number of rules, the data object is received, stored in a memory device, and/or displayed on a display at the endpoint. The processor changes at least one of the rules after a threshold period of time that the data object is created, sent, and/or received.
摘要翻译: 本发明的实施例提供了一种用于将数据对象发送到端点的方法,其中使用处理器将规则添加到数据对象。 规则包括端点的必需端点属性和/或必需用户属性,并且其中端点的必需用户属性包括已批准的角色。 数据对象通过通信模块发送到端点; 并且规则分析模块确定端点是否满足规则。 如果端点满足阈值数量的规则,则数据对象被接收,存储在存储设备中,和/或显示在端点的显示器上。 在创建,发送和/或接收数据对象的阈值时间段之后,处理器改变至少一个规则。
-
4.发明授权Apparatus and method for using a network processor to guard against a “denial-of-service” attack on a server or server cluster 失效用于使用网络处理器来防止服务器或服务器集群上的“拒绝服务”攻击的装置和方法公开(公告)号:US07047303B2
公开(公告)日:2006-05-16
申请号:US09915611
申请日:2001-07-26
IPC分类号: G06F15/173 , G06F7/58 , G06F17/30 , G06F9/32 , G06F15/16 , G06F7/04 , G06F17/00 , G06F9/00 , G06F19/00
CPC分类号: H04L47/10 , H04L47/11 , H04L47/32 , H04L63/1458 , H04L67/1002
摘要: A system comprising a network resource server or a server farm formed by a plurality of computer systems and a network processor which transfers data exchanged with an external network supported by the server farm at a data rate substantially the same as the data flow rate of the network and related method. The network processor protects the network resource server against attacks such as a denial of service attack by monitoring data flow, computing a derivative of the data flow over time to determine the rate of change of data flow, and modifying instructions for the discarding of packets in response to rates of change which are outside predetermined boundaries.
摘要翻译: 一种系统,包括由多个计算机系统形成的网络资源服务器或服务器场,以及网络处理器,其以与所述网络的数据流速基本相同的数据速率传送与由所述服务器场支持的外部网络交换的数据 和相关方法。 网络处理器通过监视数据流来保护网络资源服务器免受诸如拒绝服务攻击等攻击,随着时间的推移计算数据流的导数以确定数据流的变化速率,并修改丢弃数据流的指令 响应超出预定边界的变化率。
-
-
-
搜索结果
4 条记录 (耗时 0.022 秒)