A10 Networks, Inc.
System and method for an adaptive TCP SYN cookie with time validation

Last updated:

Abstract:

Provided is a method and system for TCP SYN cookie validation. The method includes receiving a session SYN packet by a TCP session setup module of a host server, generating a transition cookie including a time value representing the actual time, sending a session SYN/ACK packet, including the transition cookie, in response to the received session SYN packet, receiving a session ACK packet, and determining whether a candidate transition cookie in the received session ACK packet comprises a time value representing a time within a predetermined time interval from the time the session ACK packet is received.

Status:
Grant
Type:

Utility

Filling date:

28 Dec 2018

Issue date:

26 Apr 2022