Unlock instant, AI-driven research and patent intelligence for your innovation.

A method and system for preventing from TCP attack based on network stream technology

A technology of network flow and technology, applied in the field of communication, can solve problems such as the inability to accurately detect TCP attack types, and achieve the effect of avoiding resource consumption

Active Publication Date: 2008-04-30
HUAWEI TECH CO LTD
View PDF0 Cites 21 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Collect flag bit information of TCP packets through Netstream to solve the problem of inability to accurately detect TCP attack types in the prior art

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A method and system for preventing from TCP attack based on network stream technology
  • A method and system for preventing from TCP attack based on network stream technology

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0015] In order to make the object, technical solution and advantages of the present invention clearer, the present invention will be further described in detail below with reference to the accompanying drawings and examples.

[0016] The basic idea of ​​the present invention is to use the flag bit field of the TCP message as the KEY value of a flow of Netstream, about source IP address, destination IP address, source port number, destination port number, in / out interface, protocol type, service type, Packets with the same flag bit fields in TCP packets are regarded as a flow, which can accurately detect the type of TCP attack and perform traffic statistics, so as to carry out targeted defense.

[0017] Fig. 1 is a flow chart of a preferred embodiment of the method of the present invention. As shown in Figure 1, the following steps are included:

[0018] Step 101: Sampling the traffic of the network device. A TCP packet with the same information as follows will be regarded a...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to the communication technology field and discloses a method by adopting network flow technology to defend TCP attack. The invention solves the problem in the prior art that the TCP attack type can not be accurately detected. The method takes the same flag bit field of such messages as a source IP address, a destination IP address, a source protocol port number, a destination protocol port number, an input interface, an output interface, a protocol type, a service type and a TCP message as a flow; the TCP attack type is determined by the flag bit field of the flow; the TCP attack is defended in accordance with the TCP attack type. The invention is mainly applied for the network equipment attacked by the TCP. The invention also discloses a TCP attack defense system by adopting the network flow technology.

Description

technical field [0001] The invention relates to the field of communication technology, in particular to a method and system for defending against TCP (Transmission Control Protocol, Transmission Control Protocol) attacks by using netflow technology. Background technique [0002] In recent years, with the rapid development of Internet technology, network services have become more and more abundant, and network traffic has grown rapidly. The traditional extensive traffic statistics management is far from meeting the needs of current business development for network traffic monitoring, network security management, and network monitoring and analysis. The emergence of Netstream technology provides an important basic data platform for fine-grained management of traffic. [0003] Netstream is a technology for sampling, extracting, and analyzing packet information on network devices. It can provide statistics, monitoring, and analysis of network traffic. Netstream technology is b...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L9/00H04L29/06H04L12/56
CPCH04L63/1458H04L41/20
Inventor 梅继红
Owner HUAWEI TECH CO LTD
Features
  • R&D
  • Intellectual Property
  • Life Sciences
  • Materials
  • Tech Scout
Why Patsnap Eureka
  • Unparalleled Data Quality
  • Higher Quality Content
  • 60% Fewer Hallucinations
Social media
Patsnap Eureka Blog
Learn More

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2025 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com