Company patents

Arbor Networks, Inc.

Arbor Networks, Inc. demonstrates a highly concentrated patent strategy in Network Security & Access Control, accounting for 85.5% of its portfolio. However, a surprising shift is evident with significant year-over-year declines across nearly all categories in 2025, including a -55.0% drop in Network Security & Access Control and a -75.0% decline in Routing, Switching & QoS, suggesting a broad reprioritization of patenting efforts, with only 1 patent so far in 2026 for its core Network Security & Access Control.

Patent Trend by Technology Area

Yearly patent publications since 2023

Product themes

Product-level themes inferred from filings since 2023, with category chips showing where each theme appears. Select a theme to filter the patents below.

55 US filings (since 2023) · 9 categories · 10 themes

Network Intrusion Detection

Systems and methods for identifying and blocking unauthorized access, malicious activities, or abnormal behavior within a network by analyzing traffic, system logs, or behavioral patterns.

Network Security & Access Control
Who else files here? →
34since 2023
-64.3%YoY
Network Operations, Reliability & Trafficfiltered

Techniques and systems designed to monitor network health, diagnose issues, optimize traffic flow, and ensure continuous operation and reduced downtime in complex network environments, including cloud and storage area networks.

Routing, Switching & QoSNetwork Management & MonitoringWeb & Cloud Service Protocols
Who else files here? →
23since 2023
-80.0%YoY
Network Security & Access Control

Methods and systems for protecting network resources and data from unauthorized access, misuse, or attack, encompassing authentication, authorization, encryption, and traffic filtering mechanisms. This includes securing communication channels and validating network access.

Routing, Switching & QoS
Who else files here? →
21since 2023
-42.9%YoY
Network Data Management

Systems and methods for collecting, processing, and ensuring the quality and consistency of data used for network monitoring, asset management, and operational decision-making, including conflict detection and reliability scoring.

Network Management & Monitoring
Who else files here? →
17since 2023
-66.7%YoY
Network Traffic Management & QoS

Techniques and systems for optimizing network traffic flow, distributing loads across multiple paths or resources, and ensuring quality of service based on various criteria like application type, latency, or resource availability. This includes dynamic path selection, congestion control, and resource allocation.

Routing, Switching & QoS
Who else files here? →
13since 2023
-83.3%YoY
Automated Network Provisioning

Systems and methods for automatically deploying, configuring, and updating network devices and services, including software updates, client onboarding, and topology management across various network types.

Network Management & Monitoring
Who else files here? →
7since 2023
-80.0%YoY
Real-time Anomaly Detection

Methods and systems that identify unusual or suspicious patterns in data streams, often leveraging machine learning models trained on normal behavior, to detect threats, faults, or significant events as they occur.

Pattern Recognition & ML Models
Who else files here? →
7since 2023
-80.0%YoY
Secure Communication Protocols

Technologies for establishing and maintaining secure communication channels between devices or networks, often employing encryption, secure protocols, or virtual private networks (VPNs).

Network Security & Access Control
Who else files here? →
3since 2023
new
Access Control & Identity Management

Systems and methods for authenticating users, devices, or applications, authorizing their access to resources based on policies, and managing digital identities across various platforms.

Network Security & Access ControlWeb & Cloud Service Protocols
Who else files here? →
2since 2023
new
Green Network Optimization

Techniques and systems for reducing energy consumption in computer networks while maintaining or improving performance, often involving predictive modeling, simulation, and dynamic adjustments to network infrastructure.

Network Management & Monitoring
Who else files here? →
1since 2023
n/a

Patents

Page 1 of 4
US 12166791 B2GRANTED
H04L9/40

Detecting DDOS attacks by correlating inbound and outbound network traffic information

Filed:2022-06-01Pub:2024-12-10
Applicant:Arbor Networks, Inc.

A computer system and process for mitigating a Distributed Denial of Service (DDoS) attack by analyzing and correlating inbound and outbound packet information relative to the one or more protected computer networks for detecting novel DDoS Reflection/Amplification attack vectors. Created are separate data repositories that respectively store information relating to captured inbound and outbound packets flowing to and from the protected computer networks. Stored in each respective inbound and outbound data repository are identified inbound destination ports respectively associated with the captured inbound and outbound packets such that each identified inbound destination port number is associated with 1) a packet count relating to the inbound and outbound packets; and 2) a packet byte length count relating to each of the inbound and outbound packets. By accessing the inbound and outbound data repositories, a determination is made as to whether a total inbound packet count for a first inbound destination port is substantially the same to a total outbound packet count for a same inbound destination port. A next determination is then made as to whether a total outbound packet byte length count for the first inbound destination port exceeds a total inbound packet byte length count for the same inbound destination port. DDoS attack mitigation is automatically performed for the protected computer networks responsive to preferably determining 1) the total inbound packet count for a first inbound destination port is substantially the same to a total outbound packet count for a same inbound destination port; and 2) the total outbound packet byte length count exceeds a ratio value relative to the total inbound packet byte length count for the same inbound destination port.