WO2023094853 - CHARACTERIZATION OF HTTP FLOOD DDOS ATTACKS
National phase entry is expected:
Publication Number
WO/2023/094853
Publication Date
01.06.2023
International Application No.
PCT/IB2021/060895
International Filing Date
23.11.2021
Title **
[English]
CHARACTERIZATION OF HTTP FLOOD DDOS ATTACKS
[French]
CARACTÉRISATION D'ATTAQUES DDOS PAR INONDATION HTTP
Applicants **
RADWARE LTD.
22 Raoul Wallenberg Street
69710 Tel Aviv, IL
Inventors
DORON, Ehud
Radware Ltd.
22 Raoul Wallenberg Street
69710 Tel Aviv, IL
HAHAM, Koral
Radware Ltd.
22 Raoul Wallenberg Street
69710 Tel Aviv, IL
AVIV, David
Radware Ltd.
22 Raoul Wallenberg Street
69710 Tel Aviv, IL
Application details
| Total Number of Claims/PCT | * |
| Number of Independent Claims | * |
| Number of Priorities | * |
| Number of Multi-Dependent Claims | * |
| Number of Drawings | * |
| Pages for Publication | * |
| Number of Pages with Drawings | * |
| Pages of Specification | * |
| * | |
| * | |
International Searching Authority |
ILPO
* |
| Applicant's Legal Status |
Legal Entity
* |
| * | |
| * | |
| * | |
| * | |
| Entry into National Phase under |
Chapter I
* |
| Translation |
|
Recalculate
* The data is based on automatic recognition. Please verify and amend if necessary.
** IP-Coster compiles data from publicly available sources. If this data includes your personal information, you can contact us to request its removal.
Quotation for National Phase entry
| Country | Stages | Total | |
|---|---|---|---|
| China | Filing | 1754 | |
| EPO | Filing, Examination | 14458 | |
| Japan | Filing | 591 | |
| South Korea | Filing | 482 | |
| USA | Filing, Examination | 5710 |
Total: 22995 USD
The term for entry into the National Phase has expired. This quotation is for informational purposes only
Abstract[English]
A method and system for characterizing application layer flood denial-of-service (DDoS) attacks are provided. The method includes receiving an indication on an on-going DDoS attack directed to a protected entity; generating a dynamic applicative signature by analyzing requests received during the on-going DDoS attack, wherein the dynamic applicative signature characterizes requests generated by an attack tool executing the on-going DDoS attack; and characterizing each incoming request based on the generated dynamic applicative signature, wherein the characterization provides an indication for each incoming request whether a request is generated by the attack tool.[French]
L'invention concerne un procédé et un système pour caractériser des attaques par déni de service (DDoS) par inondation de couche d'application. Le procédé comprend la réception d'une indication sur une attaque DDoS en cours dirigée contre une entité protégée ; la génération d'une signature applicative dynamique par analyse de requêtes reçues pendant l'attaque DDoS en cours, la signature applicative dynamique caractérisant des requêtes générées par un outil d'attaque exécutant l'attaque DDoS en cours ; et la caractérisation de chaque requête entrante sur la base de la signature applicative dynamique générée, la caractérisation fournissant une indication pour chaque requête entrante si une requête est générée par l'outil d'attaque.