Systems and methods for an improved DDoS mitigation approach are provided. According to one embodiment, a current threshold for a network connection characteristic is established within a Denial-of-Service (DoS) mitigation device logically interposed between a protected resource of a private network and multiple client devices residing external to the private network. A number of connections between the client devices and the protected network resource are tracked. During a period of time in which the number of connections exceeds a connection count threshold: (i) for each of the connections, a measured value for the network connection characteristic is compared to the current threshold; (ii) responsive to a determination that the measured value exceeds the current threshold, the connection is dropped; and (iii) the current threshold is periodically reduced, such that only those connections complying with the current threshold are maintained.

A communication system may include a plurality of geographically proximate nodes that communicate via one or more range-limited wireless technologies such as BLUETOOTH® low energy (BLE). An origin node may generate and communicate a first message responsive to detecting an event occurrence. The message may include an identifier associated with the origin node, data indicative of the event occurrence, a hop count, a maximum hop count, and a number of designated recipient nodes within the communication system. A first designated recipient node may, upon receiving the first message, attempt to confirm the event occurrence included in the first message. Upon confirming the event occurrence, the first designated recipient node may communicate a notification to an external third party. If unable to confirm the event occurrence, the first designated recipient node may generate and communicate a second message to a second designated recipient node included in the first message.

In one embodiment, a method is provided for customization of a mobile communications device's data session retry mechanism in a wireless packet data service network. The mobile communication device requests activation of a data session with a node via the wireless network and receives a reject message via the wireless network in response to the request for activation of the data session, the reject message including a cause code. If the cause code corresponds to a no-retry behavior of the data session retry mechanism of the mobile communication device, the mobile communications device no longer requesting activation of a data session with the node.

An approach is provided for controlling a rate at which requests from a client computer will be received by a server application executed on a server computer. Requests are received by the server computer at different times from the client computer and time intervals between different pairs of successive requests are measured. Based on the time intervals, (1) a historical rate of requests from the client computer is determined and a limit on a rate for the server application to receive subsequent requests from the client computer is determined and enforced based on the historical rate of requests, or (2) a range of the time intervals is determined to be within a predefined range of time intervals and based on the range being within the predefined range, a denial of service attack or an overload of requests from the client computer is determined and blocked.

An interaction router includes a computerized server executing a routing engine stored on a machine-readable medium, an interface at the server receiving information from an interaction switching element, the information regarding an interaction received at the switching element to be routed, an interface at the server to a wide area network (WAN), a function of the routing engine judging if one or more business-logic determinations are to be made to select a routing destination for the interaction, and a function for controlling the switch to route the interaction. If if one or more business-logic determinations are to be made, the routing engine requests the business-logic determination from a remote server over the WAN, and upon receiving the determination from the remote server, uses the determination in controlling the switching element to route the interaction.

Methods, devices, and systems for management of a cloud computing environment for use by a software application. The cloud computing environment may be an N-tier environment. Multiple cloud providers may be used to provide the cloud computing environment.

In a wireless OFDM multi-carrier communication system, a mobile station obtains measurement result of a first received signal strength indication (RSSI) of a first preamble signal transmitted from a base station over a first radio frequency (RF) carrier. The mobile station also obtains signal offset information between the first RF carrier and a second RF carrier of the base station. In response to the measurement result and the signal offset information, the mobile station estimates a second RSSI of a second preamble signal transmitted by the base station over the second RF carrier without performing scanning over the second RF carrier. In one novel aspect, the mobile station identifies a carrier group containing multiple carriers that belong to the same base station. Measurement optimization, initial cell selection and cell reselection optimization, report reduction, and other carrier group based optimization can be achieved in the multi-carrier system based on identified carrier group.

The invention relates to a central control entity (200) configured to control a data plane flow of a stream of data packages in a radio access network part of a mobile communications network. The central control entity (200) comprises an information detecting unit (210), configured to detect information about data plane applications (41-44) attached to forwarding elements (120-124; 131-134) of the radio access network part and configured to detect information about at least one data plane application (41-44) that is to be applied to said data plane flow. Furthermore, the central control entity (200) comprises a control unit (230), configured to determine a path of the data plane flow through the forwarding elements (120-24; 131-134) of the radio access network part, wherein the control unit (230) is configured to determine the path taking into account said at least one data plane application (41-44) to be applied to said data plane flow, the control unit (230) being further configured to instruct the forwarding element in the path, to which said at least one data place application is attached, to pass the data plane flow through said at least one data plane application (41-44).

Method and radio node (500) for controlling a change of communication mode between transmit mode and receive mode according to a Time Division Duplex, TDD, scheme. The radio node has at least two parallel branches (504, 06) for transmission and reception of radio signals, wherein the branches currently operate in a first communication mode. The radio node obtains one or more indication signals (S1A, S1B) generated by one or more of the branches to indicate that the first mode has been turned off. When it is determined that the first communication mode has not been turned off in a faulty branch, e.g. by not receiving an indication signal in time from that branch, the first mode is disabled in the faulty branch, and/or the faulty branch is reported to a supervision center (510). Thereby, it can be discovered when one of the branches is misaligned or otherwise faulty and suitable actions can be taken for repairing or replacing the faulty branch.

System and method for improving channel efficiency in a wireless link between an access-point transceiver and a first transceiver. The first transceiver may have a first data throughput rate that is lower than the maximum possible data throughput rate of the wireless link. The first transceiver may include a first receive buffer. An indication of the first data throughput rate and a size of the first receive buffer may be received and stored by the access-point transceiver. A first size of a first data packet for transmission to the first transceiver may be determined by the access-point transceiver based on one or more of the first data throughput rate and/or the size of the first receive buffer. The first data packet of the first size may be transmitted to the first transceiver by the access-point transceiver at a data rate that is higher than the first data throughput rate.