Method and system for detecting distributed denial of service attack

A technology of distributed rejection and detection methods, applied in transmission systems, digital transmission systems, instruments, etc., can solve the problems of high false alarm rate and poor adaptability
CN101547129AInactive Publication Date: 2009-09-30烟台中科网络技术研究所
0 Cites 30 Cited by

Patent Information

Authority / Receiving Office
CN · China
Current Assignee / Owner
烟台中科网络技术研究所
Publication Date
2009-09-30
Estimated Expiration
Not applicable · inactive patent

Smart Images

  • Figure 1
    Figure 1
  • Figure 2
    Figure 2
  • Figure 3
    Figure 3
Patent Text Reader

Abstract

The invention provides a method for detecting a distributed denial of service attack, which comprises the following steps: receiving a network data packet, and extracting detection features which are related to the detection of the distributed denial of the service attack and used for proving the existence of the distributed denial of the service attack from the network data packet; using the detection features as an evidence in a simple reliability model, and calculating the reliability of the evidence; creating knowledge in the simple reliability model according to the detection features and calculating the reliability of the knowledge, wherein in the knowledge of the simple reliability model, an independent feature among the detection features corresponds to independent knowledge, and related detection features among the detection features are in the same knowledge; and calculating the reliability of conclusion events related to the distributed denial of the service attack by introducing the reliability of the evidence and the reliability of the knowledge into a reliability calculation formula of the simple reliability model. The method and the system have high detection capacity, high detection accuracy and excellent processing capacity.
Need to check novelty before this filing date? Find Prior Art

Description

technical field

[0001] The invention relates to the field of network security monitoring, in particular to a detection method and system for a distributed denial of service attack. Background technique

[0002] In recent years, the global Internet has been frequently attacked by Distributed Denial of Service (DDoS, Distributed Denial of Service), which has paralyzed a large area of ​​the basic operation network, threatened the security of important information systems, and seriously endangered economic development, social stability and even national security. Therefore, the detection and defense of DDoS attacks has become a major problem to be solved in the field of network security. Among them, DDoS attack detection technology, as a technical means and basic work to effectively solve the problem of DDoS attack defense, has attracted widespread attention from all walks of life.

[0003] DDoS attack detection techniques can generally be divided into two categories: misuse de...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More