| CPC H04L 63/1458 (2013.01) [H04L 41/12 (2013.01); H04L 41/145 (2013.01); H04L 45/745 (2013.01); H04L 63/0263 (2013.01); H04L 63/1416 (2013.01); H04L 63/20 (2013.01)] | 15 Claims |
|
1. A network element to perform cooperative mitigation of distributed denial of service attacks associated with network traffic received by an Internet service provider network, the network element comprising:
at least one memory;
computer readable instructions; and
at least one processor to execute the computer readable instructions to at least:
detect a first distributed denial of service attack associated with first network traffic received by the Internet service provider network, the first network traffic originating from a first device connected to a local network; and
implement a threat signaling client to:
transmit first information describing the first distributed denial of service attack to a first threat signaling server implemented by a local network router of the local network;
receive second information from the first threat signaling server of the local network, the second information to provide a notification when the first network traffic associated with the first distributed denial of service attack has been mitigated;
prior to transmission of the first information, emulate a second threat signaling server, the second threat signaling server to receive a request from the first threat signaling server of the local network to establish a secure connection; and
after receipt of the request, switch from emulating the second threat signaling server to operating as the threat signaling client to (i) transmit messages to the first threat signaling server of the local network conveying information describing distributed denial of service attacks and (ii) receive corresponding notifications from the first threat signaling server of the local network concerning the distributed denial of service attacks.
|