FIELD: information technology.
SUBSTANCE: objective is achieved by detecting and preprocessing at a firewall set up at the input of a secure computer network, input fragmented network packets containing a request for establishing a connection with a node (server) on the secure computer network, allocating for this purpose a separate pre-cyclic buffer, as well as a separate cyclic buffer for holding the fragmented packets coming from the same sender. Thus, the disclosed method (versions) enables to block computer attacks of the type of a "storm" of false requests for establishing connection, aimed at wasting resources of secure nodes (servers), realised by fragmenting network packets, which increases the level of security of computer networks using firewalls.
EFFECT: high level of security of computer networks using firewalls.
3 cl, 4 dwg
| Title | Year | Author | Number |
|---|---|---|---|
| METHOD FOR PROCESSING NETWORK TRAFFIC DATAGRAMS FOR DELIMITING ACCESS TO INFORMATIONAL AND COMPUTING RESOURCES OF COMPUTER NETWORKS | 2006 |
|
RU2314562C1 |
| METHOD FOR PROCESSING NETWORK PACKETS TO DETECT COMPUTER ATTACKS | 2005 |
|
RU2304302C2 |
| METHOD OF COMPUTER NETWORKS PROTECTION | 2017 |
|
RU2649789C1 |
| METHOD FOR PROCESSING NETWORK TRAFFIC DATAGRAMS TO HIDE CORRESPONDING PAIRS OF SUBSCRIBERS OF INFORMATION AND TELECOMMUNICATION SYSTEMS | 2020 |
|
RU2763261C1 |
| METHOD OF PROTECTING COMPUTER NETWORKS | 2018 |
|
RU2696330C1 |
| METHOD OF COMPUTER NETWORKS PROTECTION | 2018 |
|
RU2680038C1 |
| METHOD OF PROTECTING COMPUTER NETWORK HAVING DEDICATED SERVER | 2009 |
|
RU2449361C2 |
| METHOD FOR PROTECTING INFORMATION AND TELECOMMUNICATION NETWORK FROM PASSIVE COMPUTER ATTACKS | 2016 |
|
RU2642403C1 |
| METHOD FOR PROTECTING COMPUTER NETWORKS FROM COMPUTER ATTACKS | 2005 |
|
RU2285287C1 |
| METHOD OF PROTECTING COMPUTING NETWORK FROM UNAUTHORIZED SCANNING AND BLOCKING NETWORK SERVICES | 2017 |
|
RU2648949C1 |
