| CPC H04L 63/1458 (2013.01) [H04L 65/1016 (2013.01); H04L 65/1104 (2022.05); H04M 3/436 (2013.01)] | 20 Claims |
|
1. A method for preventing one or more denial-of-service attacks at one or more victim devices of a telecommunications network, the method comprising:
by a session management system communicatively coupled to one or more attacker agents and one or more victim agents;
receiving a call termination message during a session;
determining whether the call termination message comprises a first call termination message or a subsequent call termination message, wherein the subsequent call termination message comprises a call termination received after the first call termination message;
activating a timer if the call termination message comprises the first call termination message, wherein the timer comprises a variable unit;
determining that a number of call termination messages received by the session management system is greater than or equal to a threshold;
based on the number of call termination messages being greater than or equal to the threshold, determining an occurrence of a denial-of-service attack at the one or more victim agents; and
based on the occurrence of the denial-of-service attack, forwarding one or more calls associated with the one or more victim agents during a period of time.
|