Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Distributed service attack refusing defense method, apparatus and system

A distributed denial and attack source technology, applied in the network field, can solve the problem of low cleaning accuracy, and achieve the effect of improving the cleaning accuracy

Active Publication Date: 2008-11-19
CHENGDU HUAWEI TECH
View PDF0 Cites 38 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0008] The embodiment of the present invention provides a distributed denial of service attack defense method, device and system, which can solve the problem that the network cleaning device can only obtain one-way network data flow The problem of low cleaning accuracy caused by cleaning

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Distributed service attack refusing defense method, apparatus and system
  • Distributed service attack refusing defense method, apparatus and system
  • Distributed service attack refusing defense method, apparatus and system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0035] The following describes the technical solutions in the embodiments of the present invention clearly and completely with reference to the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are only a part of the embodiments of the present invention, rather than all the embodiments. Based on the embodiments of the present invention, all other embodiments obtained by those of ordinary skill in the art without creative work shall fall within the protection scope of the present invention.

[0036] The embodiments of the present invention aim to provide a method, device and system for preventing distributed denial of service attacks, which can solve the problem of low cleaning accuracy caused by the network cleaning device that can only obtain one-way network data flow for cleaning. The following describes in detail the method, device, and system for preventing distributed denial of service attacks in the embodiments of the pre...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention embodiment discloses a defense method, a device and a system for the DDos attack, which relate to the network technology and aim to solve the problem of low cleaning accuracy caused by the cleaning of the unidirectional data flow obtained by the network cleaning device found in the prior art. The defense method of the DDos attack in the invention embodiment includes that the data flow in the network is acquired and detected to obtain the attack information; the upstream data flow in the network is acquired and filtered to obtain the upstream data information of the protected host; the downstream data flow with the target of the protected host is processed with conduction, supplement and cleaning according to the attack information and the upstream data flow from the protected host. The invention embodiment also provides a measurement-control device, a cleaning device and a defense system for the DDos attack. The defense method, the device and the system for the DDos attack are applicable to the detection and defense of the DDos attack in the network technology.

Description

Technical field [0001] The present invention relates to network technology, in particular to the defense of distributed denial of service (DDoS: Distributed Denial of Service) attacks. Background technique [0002] DDOS attack means that the attacker uses the master control host (possibly multi-level and multi-layer) to control a large number of infected and controlled hosts to form an attack network to carry out a large-scale denial of service attack on the victim host. This kind of attack can often amplify the attack of a single attacker in a series. Under the attack of high-speed data packets, the key resources of the victim's host, such as bandwidth, buffers, and CPU resources, are quickly exhausted. The victim's host may crash or spend a lot of time processing the attack packet and cannot provide normal services to the victim and user. Causes serious economic losses, so effective detection and defense of DDoS attacks is an important part of building a secure network. [0003...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L9/36H04L29/06
Inventor 孙志敏张静蒋武
Owner CHENGDU HUAWEI TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products