公开(公告)号：US20080134327A1

公开(公告)日：2008-06-05

申请号：US11565940

申请日：2006-12-01

申请人： Shaun Jaikarran Bharrat ,  Mark Duffy ,  Ronald V. Grippo ,  Shiping Li ,  John A. Perreault ,  Jian Yang

发明人： Shaun Jaikarran Bharrat ,  Mark Duffy ,  Ronald V. Grippo ,  Shiping Li ,  John A. Perreault ,  Jian Yang

IPC分类号： G06F21/00

CPC分类号： H04L63/1458 ,  H04L2463/141

摘要： Described are computer-based methods and apparatuses, including computer program products, for filtering and policing for defending against denial of service attacks on a network. A data packet is filtered by a multi-tiered filtering and transmission system. Data packets matching the first tier filter are discarded. Data packets matching the second tier filter are transmitted to an output module based on a criterion. Data packets in the third tier filter are hashed into bins and data packets matching an entry in the bin are transmitted to the output module based on a criterion for the bin. Data packets in the fourth tier transmission system are transmitted to the output module based on a criterion. Data packets that do not meet the criterion for transmission to the output module are transmitted to an attack identification module which analyzes the data packets to identify attacks.

摘要翻译： 描述了基于计算机的方法和装置，包括计算机程序产品，用于过滤和监管以防止网络上的拒绝服务攻击。 数据包被多层过滤和传输系统过滤。 与第一层过滤器匹配的数据包将被丢弃。 基于标准将与第二层过滤器匹配的数据包发送到输出模块。 第三层过滤器中的数据包被散列到箱中，并且与箱中的条目匹配的数据包根据箱的标准传输到输出模块。 基于标准将第四层传输系统中的数据包发送到输出模块。 不符合传输到输出模块标准的数据包被传送到攻击识别模块，该模块分析数据包以识别攻击。

公开(公告)号：US07672336B2

公开(公告)日：2010-03-02

申请号：US11565940

申请日：2006-12-01

申请人： Shaun Jaikarran Bharrat ,  Mark Duffy ,  Ronald V. Grippo ,  Shiping Li ,  John A. Perreault ,  Jian Yang

发明人： Shaun Jaikarran Bharrat ,  Mark Duffy ,  Ronald V. Grippo ,  Shiping Li ,  John A. Perreault ,  Jian Yang

IPC分类号： H04J3/00

CPC分类号： H04L63/1458 ,  H04L2463/141

摘要： Described are computer-based methods and apparatuses, including computer program products, for filtering and policing for defending against denial of service attacks on a network. A data packet is filtered by a multi-tiered filtering and transmission system. Data packets matching the first tier filter are discarded. Data packets matching the second tier filter are transmitted to an output module based on a criterion. Data packets in the third tier filter are hashed into bins and data packets matching an entry in the bin are transmitted to the output module based on a criterion for the bin. Data packets in the fourth tier transmission system are transmitted to the output module based on a criterion. Data packets that do not meet the criterion for transmission to the output module are transmitted to an attack identification module which analyzes the data packets to identify attacks.

摘要翻译： 描述了基于计算机的方法和装置，包括计算机程序产品，用于过滤和监管以防止网络上的拒绝服务攻击。 数据包被多层过滤和传输系统过滤。 与第一层过滤器匹配的数据包将被丢弃。 基于标准将与第二层过滤器匹配的数据包发送到输出模块。 第三层过滤器中的数据包被散列到箱中，并且与箱中的条目匹配的数据包根据箱的标准传输到输出模块。 基于标准将第四层传输系统中的数据包发送到输出模块。 不符合传输到输出模块标准的数据包被传送到攻击识别模块，该模块分析数据包以识别攻击。

公开(公告)号：US07940657B2

公开(公告)日：2011-05-10

申请号：US11565944

申请日：2006-12-01

申请人： John A. Perreault ,  Shaun Jaikarran Bharrat ,  Mark Duffy ,  Gary Robert McCarthy ,  Jian Yang ,  Shiping Li

发明人： John A. Perreault ,  Shaun Jaikarran Bharrat ,  Mark Duffy ,  Gary Robert McCarthy ,  Jian Yang ,  Shiping Li

IPC分类号： G06F15/16

CPC分类号： H04L63/0227 ,  H04L63/101 ,  H04L63/12 ,  H04L2463/141

摘要： Described are computer-based methods and apparatuses, including computer program products, for identifying attackers on a network. A data packet is filtered by a multi-tiered filtering and transmission system. Data packets matching the first tier filter are discarded. Data packets matching the second tier filter are transmitted to an output module based on a criterion. Data packets in the third tier filter are hashed into bins and data packets matching an entry in the bin are transmitted to the output module based on a criterion for the bin. Data packets in the fourth tier transmission system are transmitted to the output module based on a criterion. Data packets that do not meet the criterion for transmission to the output module are transmitted to an attack identification module which analyzes the data packets to identify attacks.

摘要翻译： 描述了基于计算机的方法和设备，包括用于识别网络上的攻击者的计算机程序产品。 数据包被多层过滤和传输系统过滤。 与第一层过滤器匹配的数据包将被丢弃。 基于标准将与第二层过滤器匹配的数据包发送到输出模块。 第三层过滤器中的数据包被散列到箱中，并且与箱中的条目匹配的数据包根据箱的标准传输到输出模块。 基于标准将第四层传输系统中的数据包发送到输出模块。 不符合传输到输出模块的标准的数据包被传送到攻击识别模块，该模块分析数据包以识别攻击。

公开(公告)号：US20080134329A1

公开(公告)日：2008-06-05

申请号：US11565944

申请日：2006-12-01

申请人： John A. Perreault ,  Shaun Jaikarran Bharrat ,  Mark Duffy ,  Gary Robert McCarthy ,  Jian Yang ,  Shiping Li

发明人： John A. Perreault ,  Shaun Jaikarran Bharrat ,  Mark Duffy ,  Gary Robert McCarthy ,  Jian Yang ,  Shiping Li

IPC分类号： G06F21/00

CPC分类号： H04L63/0227 ,  H04L63/101 ,  H04L63/12 ,  H04L2463/141

摘要： Described are computer-based methods and apparatuses, including computer program products, for identifying attackers on a network. A data packet is filtered by a multi-tiered filtering and transmission system. Data packets matching the first tier filter are discarded. Data packets matching the second tier filter are transmitted to an output module based on a criterion. Data packets in the third tier filter are hashed into bins and data packets matching an entry in the bin are transmitted to the output module based on a criterion for the bin. Data packets in the fourth tier transmission system are transmitted to the output module based on a criterion. Data packets that do not meet the criterion for transmission to the output module are transmitted to an attack identification module which analyzes the data packets to identify attacks.

摘要翻译： 描述了基于计算机的方法和设备，包括用于识别网络上的攻击者的计算机程序产品。 数据包被多层过滤和传输系统过滤。 与第一层过滤器匹配的数据包将被丢弃。 基于标准将与第二层过滤器匹配的数据包发送到输出模块。 第三层过滤器中的数据包被散列到箱中，并且与箱中的条目匹配的数据包根据箱的标准传输到输出模块。 基于标准将第四层传输系统中的数据包发送到输出模块。 不符合传输到输出模块的标准的数据包被传送到攻击识别模块，该模块分析数据包以识别攻击。

公开(公告)号：US07804774B2

公开(公告)日：2010-09-28

申请号：US11565942

申请日：2006-12-01

申请人： Jian Yang ,  Shiping Li ,  Mark Duffy ,  Shaun Jaikarran Bharrat

发明人： Jian Yang ,  Shiping Li ,  Mark Duffy ,  Shaun Jaikarran Bharrat

IPC分类号： H04L9/32

CPC分类号： H04L63/0227 ,  H04L63/101 ,  H04L63/12 ,  H04L63/14 ,  H04L2463/141

摘要： Described are computer-based methods and apparatuses, including computer program products, for scalable filtering and policing mechanism for protecting user traffic in a network. A data packet is filtered by a multi-tiered filtering and transmission system. Data packets matching the first tier filter are discarded. Data packets matching the second tier filter are transmitted to an output module based on a criterion. Data packets in the third tier filter are hashed into bins and data packets matching an entry in the bin are transmitted to the output module based on a criterion for the bin. Data packets in the fourth tier transmission system are transmitted to the output module based on a criterion. Data packets that do not meet the criterion for transmission to the output module are transmitted to an attack identification module which analyzes the data packets to identify attacks.

摘要翻译： 描述了基于计算机的方法和装置，包括计算机程序产品，用于可扩展过滤和监管机制，用于保护网络中的用户流量。 数据包被多层过滤和传输系统过滤。 与第一层过滤器匹配的数据包将被丢弃。 基于标准将与第二层过滤器匹配的数据包发送到输出模块。 第三层过滤器中的数据包被散列到箱中，并且与箱中的条目匹配的数据包根据箱的标准传输到输出模块。 基于标准将第四层传输系统中的数据包发送到输出模块。 不符合传输到输出模块的标准的数据包被传送到攻击识别模块，该模块分析数据包以识别攻击。

公开(公告)号：US20080134328A1

公开(公告)日：2008-06-05

申请号：US11565942

申请日：2006-12-01

申请人： Jian Yang ,  Shiping Li ,  Mark Duffy ,  Shaun Jaikarran Bharrat

发明人： Jian Yang ,  Shiping Li ,  Mark Duffy ,  Shaun Jaikarran Bharrat

IPC分类号： G06F11/00

CPC分类号： H04L63/0227 ,  H04L63/101 ,  H04L63/12 ,  H04L63/14 ,  H04L2463/141

摘要： Described are computer-based methods and apparatuses, including computer program products, for scalable filtering and policing mechanism for protecting user traffic in a network. A data packet is filtered by a multi-tiered filtering and transmission system. Data packets matching the first tier filter are discarded. Data packets matching the second tier filter are transmitted to an output module based on a criterion. Data packets in the third tier filter are hashed into bins and data packets matching an entry in the bin are transmitted to the output module based on a criterion for the bin. Data packets in the fourth tier transmission system are transmitted to the output module based on a criterion. Data packets that do not meet the criterion for transmission to the output module are transmitted to an attack identification module which analyzes the data packets to identify attacks.

摘要翻译： 描述了基于计算机的方法和装置，包括计算机程序产品，用于可扩展过滤和监管机制，用于保护网络中的用户流量。 数据包被多层过滤和传输系统过滤。 与第一层过滤器匹配的数据包将被丢弃。 基于标准将与第二层过滤器匹配的数据包发送到输出模块。 第三层过滤器中的数据包被散列到箱中，并且与箱中的条目匹配的数据包根据箱的标准传输到输出模块。 基于标准将第四层传输系统中的数据包发送到输出模块。 不符合传输到输出模块标准的数据包被传送到攻击识别模块，该模块分析数据包以识别攻击。

公开(公告)号：US08681820B2

公开(公告)日：2014-03-25

申请号：US13100035

申请日：2011-05-03

申请人： Shiping Li ,  Tolga Asveren ,  Keith M. Conger ,  Ronald V. Grippo

发明人： Shiping Li ,  Tolga Asveren ,  Keith M. Conger ,  Ronald V. Grippo

IPC分类号： H04J3/24

CPC分类号： H04L65/602 ,  H04L65/608

摘要： A computer-implemented method for inserting an out-of-band signaling packet into a real-time protocol (RTP) stream is provided. The method includes receiving the out-of-band signaling packet intended for transmission to a user device and forming a synthesized packet based on payload information from the out-of-band signaling packet and header information stored in a data structure describing the RTP stream. The method also includes inserting the synthesized packet into the RTP stream. The method further includes receiving an RTP packet intended for transmission to the user device via the RTP stream, analyzing an insertion sequence number and an insertion flag maintained in the data structure, and discarding or forwarding the RTP packet via the RTP stream based on the analyzing.

摘要翻译： 提供了一种用于将带外信令分组插入到实时协议（RTP）流中的计算机实现的方法。 该方法包括：接收用于传输给用户设备的带外信令分组，并根据存储在描述RTP流的数据结构中的带外信令分组和报头信息，基于有效载荷信息形成合成分组。 该方法还包括将合成的分组插入到RTP流中。 该方法还包括经由RTP流接收用于传输到用户设备的RTP分组，分析在数据结构中维护的插入序列号和插入标记，以及基于分析来通过RTP流丢弃或转发RTP分组 。

公开(公告)号：US20120281690A1

公开(公告)日：2012-11-08

申请号：US13100035

申请日：2011-05-03

申请人： Shiping Li ,  Tolga Asveren ,  Keith M. Conger ,  Ronald V. Grippo

发明人： Shiping Li ,  Tolga Asveren ,  Keith M. Conger ,  Ronald V. Grippo

IPC分类号： H04L12/66

CPC分类号： H04L65/602 ,  H04L65/608

摘要： A computer-implemented method for inserting an out-of-band signaling packet into a real-time protocol (RTP) stream is provided. The method includes receiving the out-of-band signaling packet intended for transmission to a user device and forming a synthesized packet based on payload information from the out-of-band signaling packet and header information stored in a data structure describing the RTP stream. The method also includes inserting the synthesized packet into the RTP stream. The method further includes receiving an RTP packet intended for transmission to the user device via the RTP stream, analyzing an insertion sequence number and an insertion flag maintained in the data structure, and discarding or forwarding the RTP packet via the RTP stream based on the analyzing.

摘要翻译： 提供了一种用于将带外信令分组插入到实时协议（RTP）流中的计算机实现的方法。 该方法包括：接收用于传输给用户设备的带外信令分组，并根据存储在描述RTP流的数据结构中的带外信令分组和报头信息，基于有效载荷信息形成合成分组。 该方法还包括将合成的分组插入到RTP流中。 该方法还包括经由RTP流接收用于传输到用户设备的RTP分组，分析在数据结构中维护的插入序列号和插入标记，以及基于分析来通过RTP流丢弃或转发RTP分组 。

公开(公告)号：US08953752B2

公开(公告)日：2015-02-10

申请号：US13030064

申请日：2011-02-17

申请人： Shiping Li ,  John A. Perreault ,  Xiang Yu

发明人： Shiping Li ,  John A. Perreault ,  Xiang Yu

IPC分类号： H04M1/64 ,  H04M7/12 ,  H04M7/00

CPC分类号： H04M7/0072 ,  H04M7/129

摘要： The invention features a computer-implemented method for playing back an announcement message to a user device. The method includes initiating, by a computing device, an announcement session in response to a user device establishing communication with the computing device and determining, by the computing device, the announcement message to be played back to the user device. The method includes loading, by the computing device, into a queue associated with the announcement session, a descriptor referencing a memory buffer on the computing device. The memory buffer includes a plurality of memory partitions, each memory partition storing at least one portion of the announcement message encoded at a different rate. The method includes the computing device scheduling play back of the announcement message, playing the announcement message to the user device at a first rate and receiving a request from the user device for playback at a second rate.

摘要翻译： 本发明的特征在于一种用于向用户设备回放通知消息的计算机实现的方法。 该方法包括响应于用户设备与计算设备建立通信并由计算设备确定要播放给用户设备的通告消息，由计算设备启动通告会话。 该方法包括由计算设备加载到与通告会话相关联的队列中，描述符引用计算设备上的存储器缓冲器。 存储器缓冲器包括多个存储器分区，每个存储分区存储以不同速率编码的通告消息的至少一部分。 该方法包括计算设备调度播放通知消息，以第一速率向用户设备播放通知消息，并接收来自用户设备的用于以第二速率回放的请求。

公开(公告)号：US20120213340A1

公开(公告)日：2012-08-23

申请号：US13030064

申请日：2011-02-17

申请人： Shiping Li ,  John A. Perreault ,  Xiang Yu

发明人： Shiping Li ,  John A. Perreault ,  Xiang Yu

IPC分类号： H04M1/64

CPC分类号： H04M7/0072 ,  H04M7/129

摘要： The invention features a computer-implemented method for playing back an announcement message to a user device. The method includes initiating, by a computing device, an announcement session in response to a user device establishing communication with the computing device and determining, by the computing device, the announcement message to be played back to the user device. The method includes loading, by the computing device, into a queue associated with the announcement session, a descriptor referencing a memory buffer on the computing device. The memory buffer includes a plurality of memory partitions, each memory partition storing at least one portion of the announcement message encoded at a different rate. The method includes the computing device scheduling play back of the announcement message, playing the announcement message to the user device at a first rate and receiving a request from the user device for playback at a second rate.

摘要翻译： 本发明的特征在于一种用于向用户设备回放通知消息的计算机实现的方法。 该方法包括响应于用户设备与计算设备建立通信并由计算设备确定要播放给用户设备的通告消息，由计算设备启动通告会话。 该方法包括由计算设备加载到与通告会话相关联的队列中，描述符引用计算设备上的存储器缓冲器。 存储器缓冲器包括多个存储器分区，每个存储分区存储以不同速率编码的通告消息的至少一部分。 该方法包括计算设备调度播放通知消息，以第一速率向用户设备播放通知消息，并接收来自用户设备的用于以第二速率回放的请求。