首页>
外国专利>
METHOD, DATA CARRIER, COMPUTER SYSTEM AND COMPUTER PROGRAMME FOR THE IDENTIFICATION AND DEFENCE OF ATTACKS ON SERVER SYSTEMS OF NETWORK SERVICE PROVIDERS AND OPERATORS.
METHOD, DATA CARRIER, COMPUTER SYSTEM AND COMPUTER PROGRAMME FOR THE IDENTIFICATION AND DEFENCE OF ATTACKS ON SERVER SYSTEMS OF NETWORK SERVICE PROVIDERS AND OPERATORS.
The invention relates to a method for the identification and defence of attacks on the server systems of network service providers and operators, using an electronic device (4) that can be integrated into a computer network and that comprises a computer programme, and relates to a data carrier, which contains a computer programme for carrying out said method. The invention also relates to a computer system, which is connected to a network, such as the Internet (6), an intranet or similar and has one or several computers that are configured as server computers (2) or client computers, and to a computer programme containing computer programme codes for the identification and defence of attacks on server systems. The invention comprises - protection against DoS and DDoS attacks (flood attacks)- link-level security,- verification of valid IP headers, - verification of IP packet characteristics, - TCP/IP fingerprint protection,- blocking of all UDP network packets,- exclusion of specific external IP addresses, - packet-level firewall function, - protection of accessible services of the target system. The invention provides the highest possible degree of security and protection against DoS and DDoS attacks.
展开▼