Method, apparatus and program for detecting spoofed network traffic

Method, apparatus and program for detecting spoofed network traffic

A method, an apparatus and a program for detecting spoofed Internet Protocol (IP) traffic directed to a network having a plurality of autonomous systems (AS) is provided. The method comprises receiving an incoming packet through an AS, the incoming packet containing a source IP address and a destina...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: GHOSH ABHRAJIT, NAIDU ADITYA, VAIDYANATHAN RAVICHANDER, YAMADA AKIRA, SAWAYA YUKIKO, MIYAKE YUTAKA, KUBOTA AYUMU
Format: Patent
Sprache:eng
Schlagworte:
ALARM SYSTEMS
CALCULATING
COMPUTING
COUNTING
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRIC DIGITAL DATA PROCESSING
ELECTRICITY
ORDER TELEGRAPHS
PHYSICS
SIGNALLING
SIGNALLING OR CALLING SYSTEMS
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
container_end_page
container_issue
container_start_page
container_title
container_volume
creator GHOSH ABHRAJIT
NAIDU ADITYA
VAIDYANATHAN RAVICHANDER
YAMADA AKIRA
SAWAYA YUKIKO
MIYAKE YUTAKA
KUBOTA AYUMU
description A method, an apparatus and a program for detecting spoofed Internet Protocol (IP) traffic directed to a network having a plurality of autonomous systems (AS) is provided. The method comprises receiving an incoming packet through an AS, the incoming packet containing a source IP address and a destination IP address, acquiring a corresponding source and destination IP address prefixes, converting the corresponding source and destination IP address prefixes into a source AS number and a destination AS number, determining if the incoming packet arrived from an unexpected source based upon the corresponding destination IP address prefix and the converted source and destination AS number using an unexpected pair tuple table generated from network routing information and generating an alert indicating that the incoming packet is not allowed to enter the network.
format Patent
fullrecord <record><control><sourceid>epo_EVB</sourceid><recordid>TN_cdi_epo_espacenet_US8925079B2</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>US8925079B2</sourcerecordid><originalsourceid>FETCH-epo_espacenet_US8925079B23</originalsourceid><addsrcrecordid>eNrjZHD2TS3JyE_RUUgsKEgsSiwpLVZIzEtRKCjKTy9KzFVIyy9SSEktSU0uycxLVyguyM9PS01RyEstKc8vylYoKUpMS8tM5mFgTUvMKU7lhdLcDApuriHOHrqpBfnxqcUFicmpQB3xocEWlkamBuaWTkbGRCgBACTXMmw</addsrcrecordid><sourcetype>Open Access Repository</sourcetype><iscdi>true</iscdi><recordtype>patent</recordtype></control><display><type>patent</type><title>Method, apparatus and program for detecting spoofed network traffic</title><source>esp@cenet</source><creator>GHOSH ABHRAJIT ; NAIDU ADITYA ; VAIDYANATHAN RAVICHANDER ; YAMADA AKIRA ; SAWAYA YUKIKO ; MIYAKE YUTAKA ; KUBOTA AYUMU</creator><creatorcontrib>GHOSH ABHRAJIT ; NAIDU ADITYA ; VAIDYANATHAN RAVICHANDER ; YAMADA AKIRA ; SAWAYA YUKIKO ; MIYAKE YUTAKA ; KUBOTA AYUMU</creatorcontrib><description>A method, an apparatus and a program for detecting spoofed Internet Protocol (IP) traffic directed to a network having a plurality of autonomous systems (AS) is provided. The method comprises receiving an incoming packet through an AS, the incoming packet containing a source IP address and a destination IP address, acquiring a corresponding source and destination IP address prefixes, converting the corresponding source and destination IP address prefixes into a source AS number and a destination AS number, determining if the incoming packet arrived from an unexpected source based upon the corresponding destination IP address prefix and the converted source and destination AS number using an unexpected pair tuple table generated from network routing information and generating an alert indicating that the incoming packet is not allowed to enter the network.</description><language>eng</language><subject>ALARM SYSTEMS ; CALCULATING ; COMPUTING ; COUNTING ; ELECTRIC COMMUNICATION TECHNIQUE ; ELECTRIC DIGITAL DATA PROCESSING ; ELECTRICITY ; ORDER TELEGRAPHS ; PHYSICS ; SIGNALLING ; SIGNALLING OR CALLING SYSTEMS ; TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</subject><creationdate>2014</creationdate><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&amp;date=20141230&amp;DB=EPODOC&amp;CC=US&amp;NR=8925079B2$$EHTML$$P50$$Gepo$$Hfree_for_read</linktohtml><link.rule.ids>230,308,780,885,25564,76547</link.rule.ids><linktorsrc>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&amp;date=20141230&amp;DB=EPODOC&amp;CC=US&amp;NR=8925079B2$$EView_record_in_European_Patent_Office$$FView_record_in_$$GEuropean_Patent_Office$$Hfree_for_read</linktorsrc></links><search><creatorcontrib>GHOSH ABHRAJIT</creatorcontrib><creatorcontrib>NAIDU ADITYA</creatorcontrib><creatorcontrib>VAIDYANATHAN RAVICHANDER</creatorcontrib><creatorcontrib>YAMADA AKIRA</creatorcontrib><creatorcontrib>SAWAYA YUKIKO</creatorcontrib><creatorcontrib>MIYAKE YUTAKA</creatorcontrib><creatorcontrib>KUBOTA AYUMU</creatorcontrib><title>Method, apparatus and program for detecting spoofed network traffic</title><description>A method, an apparatus and a program for detecting spoofed Internet Protocol (IP) traffic directed to a network having a plurality of autonomous systems (AS) is provided. The method comprises receiving an incoming packet through an AS, the incoming packet containing a source IP address and a destination IP address, acquiring a corresponding source and destination IP address prefixes, converting the corresponding source and destination IP address prefixes into a source AS number and a destination AS number, determining if the incoming packet arrived from an unexpected source based upon the corresponding destination IP address prefix and the converted source and destination AS number using an unexpected pair tuple table generated from network routing information and generating an alert indicating that the incoming packet is not allowed to enter the network.</description><subject>ALARM SYSTEMS</subject><subject>CALCULATING</subject><subject>COMPUTING</subject><subject>COUNTING</subject><subject>ELECTRIC COMMUNICATION TECHNIQUE</subject><subject>ELECTRIC DIGITAL DATA PROCESSING</subject><subject>ELECTRICITY</subject><subject>ORDER TELEGRAPHS</subject><subject>PHYSICS</subject><subject>SIGNALLING</subject><subject>SIGNALLING OR CALLING SYSTEMS</subject><subject>TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</subject><fulltext>true</fulltext><rsrctype>patent</rsrctype><creationdate>2014</creationdate><recordtype>patent</recordtype><sourceid>EVB</sourceid><recordid>eNrjZHD2TS3JyE_RUUgsKEgsSiwpLVZIzEtRKCjKTy9KzFVIyy9SSEktSU0uycxLVyguyM9PS01RyEstKc8vylYoKUpMS8tM5mFgTUvMKU7lhdLcDApuriHOHrqpBfnxqcUFicmpQB3xocEWlkamBuaWTkbGRCgBACTXMmw</recordid><startdate>20141230</startdate><enddate>20141230</enddate><creator>GHOSH ABHRAJIT</creator><creator>NAIDU ADITYA</creator><creator>VAIDYANATHAN RAVICHANDER</creator><creator>YAMADA AKIRA</creator><creator>SAWAYA YUKIKO</creator><creator>MIYAKE YUTAKA</creator><creator>KUBOTA AYUMU</creator><scope>EVB</scope></search><sort><creationdate>20141230</creationdate><title>Method, apparatus and program for detecting spoofed network traffic</title><author>GHOSH ABHRAJIT ; NAIDU ADITYA ; VAIDYANATHAN RAVICHANDER ; YAMADA AKIRA ; SAWAYA YUKIKO ; MIYAKE YUTAKA ; KUBOTA AYUMU</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-epo_espacenet_US8925079B23</frbrgroupid><rsrctype>patents</rsrctype><prefilter>patents</prefilter><language>eng</language><creationdate>2014</creationdate><topic>ALARM SYSTEMS</topic><topic>CALCULATING</topic><topic>COMPUTING</topic><topic>COUNTING</topic><topic>ELECTRIC COMMUNICATION TECHNIQUE</topic><topic>ELECTRIC DIGITAL DATA PROCESSING</topic><topic>ELECTRICITY</topic><topic>ORDER TELEGRAPHS</topic><topic>PHYSICS</topic><topic>SIGNALLING</topic><topic>SIGNALLING OR CALLING SYSTEMS</topic><topic>TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</topic><toplevel>online_resources</toplevel><creatorcontrib>GHOSH ABHRAJIT</creatorcontrib><creatorcontrib>NAIDU ADITYA</creatorcontrib><creatorcontrib>VAIDYANATHAN RAVICHANDER</creatorcontrib><creatorcontrib>YAMADA AKIRA</creatorcontrib><creatorcontrib>SAWAYA YUKIKO</creatorcontrib><creatorcontrib>MIYAKE YUTAKA</creatorcontrib><creatorcontrib>KUBOTA AYUMU</creatorcontrib><collection>esp@cenet</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>GHOSH ABHRAJIT</au><au>NAIDU ADITYA</au><au>VAIDYANATHAN RAVICHANDER</au><au>YAMADA AKIRA</au><au>SAWAYA YUKIKO</au><au>MIYAKE YUTAKA</au><au>KUBOTA AYUMU</au><format>patent</format><genre>patent</genre><ristype>GEN</ristype><title>Method, apparatus and program for detecting spoofed network traffic</title><date>2014-12-30</date><risdate>2014</risdate><abstract>A method, an apparatus and a program for detecting spoofed Internet Protocol (IP) traffic directed to a network having a plurality of autonomous systems (AS) is provided. The method comprises receiving an incoming packet through an AS, the incoming packet containing a source IP address and a destination IP address, acquiring a corresponding source and destination IP address prefixes, converting the corresponding source and destination IP address prefixes into a source AS number and a destination AS number, determining if the incoming packet arrived from an unexpected source based upon the corresponding destination IP address prefix and the converted source and destination AS number using an unexpected pair tuple table generated from network routing information and generating an alert indicating that the incoming packet is not allowed to enter the network.</abstract><oa>free_for_read</oa></addata></record>
fulltext fulltext_linktorsrc
identifier
ispartof
issn
language eng
recordid cdi_epo_espacenet_US8925079B2
source esp@cenet
subjects ALARM SYSTEMS
CALCULATING
COMPUTING
COUNTING
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRIC DIGITAL DATA PROCESSING
ELECTRICITY
ORDER TELEGRAPHS
PHYSICS
SIGNALLING
SIGNALLING OR CALLING SYSTEMS
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
title Method, apparatus and program for detecting spoofed network traffic
url https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2024-12-27T14%3A09%3A09IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-epo_EVB&rft_val_fmt=info:ofi/fmt:kev:mtx:patent&rft.genre=patent&rft.au=GHOSH%20ABHRAJIT&rft.date=2014-12-30&rft_id=info:doi/&rft_dat=%3Cepo_EVB%3EUS8925079B2%3C/epo_EVB%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rfr_iscdi=true