According to GlobalData’s company profile on NetScout Systems, cloud computing disaster recovery was a key innovation area identified from patents. NetScout Systems's grant share as of September 2023 was 75%. Grant share is based on the ratio of number of grants to total number of patents.

Automated selection of countermeasures for ddos attacks

A recently granted patent (Publication Number: US11770405B2) describes a method and system for automatically selecting countermeasures to Distributed Denial of Service (DDoS) attacks. The method involves receiving a network traffic snapshot and generating a statistical data structure that includes unique combinations of data stored in packet fields. Each combination has an associated counter and timestamps indicating when it was observed. An observed vector is determined from the statistical data structure, and its attribute/value pairs are compared to known attribute/value pairs associated with known DDoS attack vectors in an attack vector database. If a match is found, mitigation parameters associated with the known attack vector are selected for applying a countermeasure to the network traffic and mitigating the attack.

The method also includes selecting mitigation parameters only if a certain percentage of the unique combinations in the statistical data structure match the attribute/value pairs of the known attack vector. If the percentage does not exceed the threshold, the attribute/value pairs of the next observed vector are compared to the known attribute/value pairs until a match is found. Additionally, the method involves determining detailed attack parameters stored in association with the known attack vector from the attack vector database. The selected mitigation parameters are based on these detailed attack parameters.

The system described in the patent includes a network attack monitor with a memory and a processor. The processor receives a network traffic snapshot, generates a statistical data structure, determines an observed vector, compares its attribute/value pairs to known attribute/value pairs in the attack vector database, and selects mitigation parameters if a match is found. The system also includes the ability to adjust the selected mitigation parameters based on the packets of a snapshot of peacetime network traffic that are blocked by the applied countermeasure.

Overall, this patent presents a method and system for automatically detecting and mitigating DDoS attacks by analyzing network traffic snapshots and comparing observed vectors to known attack vectors. The approach allows for the selection of appropriate countermeasures based on the characteristics of the attack, improving the effectiveness of DDoS attack mitigation.

To know more about GlobalData’s detailed insights on NetScout Systems, buy the report here.

Data Insights

From

The gold standard of business intelligence.

Blending expert knowledge with cutting-edge technology, GlobalData’s unrivalled proprietary data will enable you to decode what’s happening in your market. You can make better informed decisions and gain a future-proof advantage over your competitors.

Be better informed