Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Distributed service attack refusing defense method, apparatus and system

A technology of distributed denial and attack source, applied in the network field

Active Publication Date: 2012-06-27
CHENGDU HUAWEI TECH
View PDF2 Cites 1 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0008] The embodiment of the present invention provides a distributed denial of service attack defense method, device and system, which can solve the problem that the network cleaning device can only obtain one-way network data flow The problem of low cleaning accuracy caused by cleaning

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Distributed service attack refusing defense method, apparatus and system
  • Distributed service attack refusing defense method, apparatus and system
  • Distributed service attack refusing defense method, apparatus and system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0038] The technical solutions in the embodiments of the present invention will be clearly and completely described below in conjunction with the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are only some, not all, embodiments of the present invention. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without creative efforts fall within the protection scope of the present invention.

[0039] Embodiments of the present invention aim to provide a defense method, device and system for distributed denial-of-service attacks, which can solve the problem of low cleaning accuracy caused by network cleaning devices that can only obtain unidirectional network data streams for cleaning. The method, device and system for defending against DDoS attacks according to the embodiments of the present invention will be described in detail below in conjunction with th...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention embodiment discloses a defense method, a device and a system for the DDos attack, which relate to the network technology and aim to solve the problem of low cleaning accuracy caused by the cleaning of the unidirectional data flow obtained by the network cleaning device found in the prior art. The defense method of the DDos attack in the invention embodiment includes that the data flow in the network is acquired and detected to obtain the attack information; the upstream data flow in the network is acquired and filtered to obtain the upstream data information of the protected host; the downstream data flow with the target of the protected host is processed with conduction, supplement and cleaning according to the attack information and the upstream data flow from the protected host. The invention embodiment also provides a measurement-control device, a cleaning device and a defense system for the DDos attack. The defense method, the device and the system for the DDos attack are applicable to the detection and defense of the DDos attack in the network technology.

Description

technical field [0001] The present invention relates to network technology, in particular to defense against distributed denial of service (DDoS: Distributed Denial of Service) attack. Background technique [0002] DDOS attack means that the attacker uses the master host (possibly multi-level and multi-layer) to control a large number of infected and controlled hosts to form an attack network to carry out a large-scale denial of service attack on the victim host. This kind of attack can often amplify the attack of a single attacker in the form of series. Under the attack of high-speed data packets, the key resources of the victim host, such as bandwidth, buffer, and CPU resources, are quickly exhausted, and the victim host either crashes, or spends a lot of time processing the attack packets and cannot serve normally, causing serious damage to victims and users. Cause serious economic losses, so effectively detecting and defending against DDoS attacks is an important part o...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L9/36H04L29/06
Inventor 孙志敏张静蒋武
Owner CHENGDU HUAWEI TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products