Protecting against malicious traffic

Yehuda Afek, Anat Bremler-Barr
DDoS attack


A method for screening packet-based communication traffic. At least a first data packet, sent over a network (40) from a source address to a destination address, is received. A determination is made, by analyzing the first data packet, that the first data packet was generated by a worm. In response to the determination, a second data packet sent over the network from the source address is blocked.