The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.
The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.
Patent No.:
Date of Patent:
Sep. 23, 2014
Filed:
Jun. 24, 2010
Saravanakumar Annamalaisami, Santa Clara, CA (US);
Ashok Kumar Jagadeeswaran, Karnataka, IN;
Mahesh Mylarappa, Karnataka, IN;
Roy Rajan, Karnataka, IN;
Saravanakumar Annamalaisami, Santa Clara, CA (US);
Ashok Kumar Jagadeeswaran, Karnataka, IN;
Mahesh Mylarappa, Karnataka, IN;
Roy Rajan, Karnataka, IN;
Citrix Systems, Inc., Fort Lauderdale, FL (US);
Abstract
Described herein is a method and system for preventing Denial of Service (DoS) attacks. An intermediary device is deployed between clients and servers. The device receives a first packet of an application layer transaction via a transport layer connection between the device and client. The device records a last activity time for the transport layer connection based upon the timestamp of the first packet. The device receives subsequent data packets and determines whether the data in the packets completes a protocol data structure of the application layer protocol. If the device determines that the subsequent packet completes the protocol data structure, the last activity time is updated. If the device determines that the application layer protocol remains incomplete, the device retains the last activity time and determines that the duration of inactivity for the transport layer connection exceeds a predetermined threshold. The device may subsequently drop the connection.