公开(公告)号：US07039950B2

公开(公告)日：2006-05-02

申请号：US10419548

申请日：2003-04-21

申请人： Pankaj Parekh ,  Sandeep Gupta ,  Vijay Mamtani ,  Saurabh Sarpal

发明人： Pankaj Parekh ,  Sandeep Gupta ,  Vijay Mamtani ,  Saurabh Sarpal

IPC分类号： H04L9/00 ,  G06F11/30

CPC分类号： H04L47/10 ,  H04L43/106 ,  H04L47/24 ,  H04L47/25 ,  H04L47/28 ,  H04L47/32 ,  H04L63/10 ,  H04L63/1441

摘要： A system, method and computer program product for ensuring the quality of services being provided by a protected network of computers during an ongoing security breach is provided. The quality of the services is ensured by performing secure Quality of Service actions on data packets on the network. The sQoS actions depend on whether the data packets correspond to an attack on the computer to which they are directed, called the destination computer. If the data packet corresponds to an attack, then the actions also depend on the type of attack. In case there is no attack, the actions depend on the history of attacks by data packets that had originated from the same source computer and were directed towards the same destination computer. Supported actions include HardenFW, ControlBW and ConnectionLimit.

摘要翻译： 提供了一种系统，方法和计算机程序产品，用于在持续的安全漏洞期间确保受保护的计算机网络提供的服务质量。 通过对网络上的数据包执行安全的服务质量保证来保证服务的质量。 sQoS动作取决于数据包是否对应于它们所指向的计算机上的攻击，称为目标计算机。 如果数据包对应于攻击，则动作也取决于攻击的类型。 如果没有攻击，则动作取决于源自同一源计算机的数据包的攻击历史，并且被引导到同一个目标计算机。 支持的操作包括HardenFW，ControlBW和ConnectionLimit。