METHOD OF COMPUTER NETWORKS PROTECTION Russian patent published in 2018 - IPC H04L12/801 H04L29/06 H04L9/32 

FIELD: information technologies.

SUBSTANCE: invention relates to the attacks detection with the aim of prompt detecting and countering unauthorized influences in computer networks. Remembering the authorized information flows reference identifiers, which allows to detect unauthorized influences on the computer network at the initial stage and block them. If the intruder addresses to the predetermined false addresses of the computer network subscribers, the response messages packets are transmitted with excessive fragmentation and a decrease in the transmission rate, which simulates the poor quality communication channel. Recording the maximum number of received and unprocessed messages packets, which the computer network can process without overload. Keeping in two-way communication order with the messages packets sender while increasing the unauthorized information flows intensity causing overload, and blocking the sender attempts to disconnect. This provides an increase in the destructive impact subject discomfort and advantage in time for the information security service, which is necessary for the implementation of the trace formation mechanisms and response measures.

EFFECT: technical result is increase in the protection effectiveness and misleading the offender with respect to the computer network structure due to the accounting if the maximum number of messages received from the sender and unprocessed messages packets, which the computer network can process without overload, in a two-way keeping connection with the messages packets sender with the increase in the unauthorized information flows intensity and blocking the sender attempts to break the connection.

1 cl, 9 dwg