首页>
外国专利>
System and method for prevention of denial of service attacks for hosted network address translator
System and method for prevention of denial of service attacks for hosted network address translator
展开▼
机译:用于防止托管网络地址转换器的拒绝服务攻击的系统和方法
展开▼
页面导航
摘要
著录项
相似文献
摘要
To determine the correct media stream to latch onto, the system and method uses a hashing algorithm to uniquely identify a legitimate media stream. A first invite message is received at a Session Border Controller (SBC) to establish a communication session. For example a Session Initiation Protocol (SIP) INVITE is received. The first invite message comprises a first hash of a fingerprint. For example, the hash may be a hashed session key. A media message is received that contains the fingerprint to establish a media stream for the communication session. A second hash is created using the fingerprint in the media message. The first hash is compared to the second hash. In response to the first hash matching the second hash, a Network Address Translator (NAT) latches to an address and/or a port in the media message. Thus, the correct media stream is associated with the communication session.
展开▼