公开(公告)号：US08739250B2

公开(公告)日：2014-05-27

申请号：US13310816

申请日：2011-12-05

申请人： Lee Holmes ,  Hitesh Raigandhi ,  Nathan Burkhart ,  David B. Cross ,  Manoj K. Ampalam

发明人： Lee Holmes ,  Hitesh Raigandhi ,  Nathan Burkhart ,  David B. Cross ,  Manoj K. Ampalam

IPC分类号： H04L29/06 ,  G06F7/04 ,  G06F15/16 ,  G06F17/30

CPC分类号： G06F21/44 ,  G06F21/554 ,  G06F2221/2141 ,  H04L63/08 ,  H04L63/101 ,  H04L63/1458

摘要： An input port for a computer system may retain potentially authenticable requests for processing while removing other connection requests from an incoming queue or request pool. The input port may continue to receive new requests even during a denial of service attack, allowing potentially legitimate requests to be processed. In a typical embodiment, a first in, first out buffer may be used to receive and process connection requests. When the buffer is full, any request that comes from a device having a previous connection with the computer system may be retained for authentication, while removing requests that come from unknown devices. Some embodiments may retain a list of known devices associated with administrators or other known users, and the list may be updated as those users are authenticated.

摘要翻译： 用于计算机系统的输入端口可以保留潜在的可验证的处理请求，同时从输入队列或请求池中移除其他连接请求。 即使在拒绝服务攻击期间，输入端口也可能继续接收新的请求，从而允许处理潜在的合法请求。 在典型的实施例中，可以使用先入先出缓冲器来接收和处理连接请求。 当缓冲区已满时，可以保留来自具有与计算机系统的先前连接的设备的任何请求，同时移除来自未知设备的请求。 一些实施例可以保留与管理员或其他已知用户相关联的已知设备的列表，并且可以在用户认证时更新列表。