Method and system for detecting distributed denial of service attack

A technology of distributed rejection and detection methods, applied in transmission systems, digital transmission systems, instruments, etc., can solve the problems of high false alarm rate and poor adaptability

Inactive Publication Date: 2009-09-30
烟台中科网络技术研究所
View PDF0 Cites 30 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0008] The purpose of the present invention is to overcome the defects of poor adaptability and high false alarm rate caused by relying on a single detection featur

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and system for detecting distributed denial of service attack
  • Method and system for detecting distributed denial of service attack
  • Method and system for detecting distributed denial of service attack

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0060] The present invention will be described below in conjunction with the accompanying drawings and specific embodiments.

[0061] Uncertainty reasoning is an important part of the field of artificial intelligence research. It provides a solid theoretical basis and effective means for solving application problems where the required knowledge is insufficient, inaccurate, or multiple reasons lead to the same conclusion. In 1975, Shortliffe et al. (E.H.Shortliffe and B.G.Buchanan, "A Model of Inexact Reasoning in Medicine," Mathematical Biosciences, vol.23, pp.351-379, 1975) proposed a possible uncertainty reasoning Reliability model (Certainty Factor model, referred to as CF model), and has been successfully applied in the medical consultation system MYCIN. Scientific practice shows that different network behaviors are often abnormal in the DDoS attack process. At the same time, the DDoS attack detection problem also has the characteristics of incomplete and inaccurate known ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides a method for detecting a distributed denial of service attack, which comprises the following steps: receiving a network data packet, and extracting detection features which are related to the detection of the distributed denial of the service attack and used for proving the existence of the distributed denial of the service attack from the network data packet; using the detection features as an evidence in a simple reliability model, and calculating the reliability of the evidence; creating knowledge in the simple reliability model according to the detection features and calculating the reliability of the knowledge, wherein in the knowledge of the simple reliability model, an independent feature among the detection features corresponds to independent knowledge, and related detection features among the detection features are in the same knowledge; and calculating the reliability of conclusion events related to the distributed denial of the service attack by introducing the reliability of the evidence and the reliability of the knowledge into a reliability calculation formula of the simple reliability model. The method and the system have high detection capacity, high detection accuracy and excellent processing capacity.

Description

technical field [0001] The invention relates to the field of network security monitoring, in particular to a detection method and system for a distributed denial of service attack. Background technique [0002] In recent years, the global Internet has been frequently attacked by Distributed Denial of Service (DDoS, Distributed Denial of Service), which has paralyzed a large area of ​​the basic operation network, threatened the security of important information systems, and seriously endangered economic development, social stability and even national security. Therefore, the detection and defense of DDoS attacks has become a major problem to be solved in the field of network security. Among them, DDoS attack detection technology, as a technical means and basic work to effectively solve the problem of DDoS attack defense, has attracted widespread attention from all walks of life. [0003] DDoS attack detection techniques can generally be divided into two categories: misuse de...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L12/26H04L29/08H04L29/06G06F21/00G06F21/57
Inventor 张永铮庹宇鹏云晓春
Owner 烟台中科网络技术研究所
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap