Arbor Secures Three New Patents for DDoS Detection & Mitigation

Arbor now has 25 patents focused on DDoS defense.

Arbor Networks has registered three new patents for different aspects of distributed denial-of-service (DDoS) attack detection and mitigation. Arbor now has 25 patents focused on DDoS defense. Arbor Networks was founded in year 2000, when the technology developed by the Lighthouse Project at theUniversity of Michigan was commercialized. The new patents cover the following areas:

1. Adjusting DDoS protection based on traffic type: A system, method and computer readable storage medium that receives traffic/packets from external devices attempting to access protected devices in a protected network. A determination is made to whether a received packet belongs to one of a plurality of packet classifications. Each packet classification is indicative of different classes of IP traffic. Countermeasures are applied to a received packet to prevent attack upon the protected devices. Applying a countermeasure to a received packet determined to belong to one of the plurality of packet classifications includes countermeasure modification/selection contingent upon the determined packet classification for the received packet.

2. Method and system for monitoring flows in network traffic: A method and system for correlating web content with content providers to determine the origin of the content such that it is not necessary to look inside the information exchange. The method and system maintains sequences of reference points, which are ordered lists of content providers accessed by subscribers over time, and correlates the Internet content applications, such as video, found in network traffic to the sequence of reference points accessed by subscribers to determine the origins of the content even when the content is being delivered by third-party content delivery networks. 

3. Building filter through utilization of automated generation of regular expression: A system and method performed by a computing device connected to a network and having one or more processors and memory storing one or more programs for execution by the one or more processors. At least one packet is received over a network. The packet is analyzed to detect predetermined content. The predetermined content is selected if it is determined that the packet contains the predetermined content. Future transmission of any packet containing the predetermined content is prevented in response to selection of the predetermined content.


Add new comment