According to GlobalData’s company profile on NetScout Systems, Cloud computing disaster recovery was a key innovation area identified from patents. NetScout Systems's grant share as of September 2023 was 75%. Grant share is based on the ratio of number of grants to total number of patents.

Method and apparatus for processing flowspec messages for network attack mitigation

Source: United States Patent and Trademark Office (USPTO). Credit: NetScout Systems Inc

A recently filed patent (Publication Number: US20230319082A1) describes a method for processing flow specification (FlowSpec) messages to mitigate network attacks in customer networks. The method involves a controller device that is connected to multiple customer networks. The controller device monitors the network traffic flowing through each customer network and detects any network attacks. Once a network attack is detected, the controller device generates a Flowspec message specifically configured for the affected customer network. This Flowspec message is then transmitted to the customer network for implementation, enabling the mitigation of the detected network attack.

The patent also mentions that the controller device may be provided by a network service provider that offers internet services to the customer networks. In such cases, the generated Flowspec message can also be transmitted to and implemented in one or more router devices within the network service provider. This allows the router devices to perform mitigation of the network attack on the traffic flowing through the affected customer network without affecting the traffic of other customer networks connected to the network service provider.

The method further includes the selection and reconfiguration of Flowspec messages from a stack of pre-existing messages based on specific criteria determined by the network service provider. The reconfigured Flowspec messages can be stored in the stack for future use by the controller device for other customer networks, provided they are reconfigured based on specific criteria for those networks.

Additionally, the patent describes the generation of a BGP (Border Gateway Protocol) Flowspec for port 53/UDP, which is used for an edge router device in the affected customer network and one or more router devices in the network service provider. The Flowspec message is distributed as a BGP NLRI (Network Layer Reachability Information) in a BGP announcement message. The Flowspec message consists of an n-tuple with multiple matching criteria applied to IP traffic in the edge device and router devices, implementing a filter for mitigating DDoS (Distributed Denial of Service) network attacks.

In summary, the patent presents a method for processing FlowSpec messages to detect and mitigate network attacks in customer networks. The method involves a controller device connected to multiple customer networks, monitoring network traffic, detecting network attacks, generating specific Flowspec messages, and transmitting them for implementation in the affected customer network. The method also allows for the involvement of router devices within the network service provider and the selection and reconfiguration of Flowspec messages based on specific criteria.

To know more about GlobalData’s detailed insights on NetScout Systems, buy the report here.

Premium Insights

From

The gold standard of business intelligence.

Blending expert knowledge with cutting-edge technology, GlobalData’s unrivalled proprietary data will enable you to decode what’s happening in your market. You can make better informed decisions and gain a future-proof advantage over your competitors.

GlobalData, the leading provider of industry intelligence, provided the underlying data, research, and analysis used to produce this article.

GlobalData Patent Analytics tracks bibliographic data, legal events data, point in time patent ownerships, and backward and forward citations from global patenting offices. Textual analysis and official patent classifications are used to group patents into key thematic areas and link them to specific companies across the world’s largest industries.