Method and device for detecting distributed denial-of-service attack

A distributed denial and attack detection technology, applied in electrical components, transmission systems, etc., can solve the problems of poor defense effect, high DDoS attack defense cost, active DDoS attack detection, etc., to eliminate the impact, high DNS detection efficiency and detection. effect, effect of improving accuracy and reliability

Active Publication Date: 2010-09-22
CHINA INTERNET NETWORK INFORMATION CENTER
View PDF3 Cites 28 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] In the process of realizing the present invention, the inventor found that the prior art failed to effectively detect the DDoS attack in the DDoS attack directed at the DNS serv

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and device for detecting distributed denial-of-service attack
  • Method and device for detecting distributed denial-of-service attack
  • Method and device for detecting distributed denial-of-service attack

Examples

Experimental program
Comparison scheme
Effect test

Example Embodiment

[0037] In order to make the objectives, technical solutions, and advantages of the embodiments of the present invention clearer, the technical solutions in the embodiments of the present invention will be described clearly and completely in conjunction with the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments It is a part of the embodiments of the present invention, not all the embodiments. Based on the embodiments of the present invention, all other embodiments obtained by those of ordinary skill in the art without creative work shall fall within the protection scope of the present invention.

[0038] Since DNS is a distributed database, the internal modules of the server and between the servers can control the database locally through the DNS protocol. At the same time, users in the network are allowed to use the client or server to access each part of the data. Therefore, other When a host user accesses the DNS server, the...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a method and a device for detecting a distributed denial-of-service attack. The method comprises the following steps of: acquiring search log information recorded on a DNS (Domain Name Sever); and detecting whether a DDoS (Distributed Denial of Service) attack behavior aiming at the DNS exists or not according to the obtained search log information. The device comprises an information acquisition module and a detection module. According to the search log information on the DNS, the technical scheme of the invention can effectively detect the DDoS attack behavior and prevent the DNS from being attacked by DDoS.

Description

technical field [0001] The embodiment of the present invention relates to the technical field of distributed denial of service attack detection, and in particular to a method and device for detecting distributed denial of service attack. Background technique [0002] With the continuous development of network technology, there are more and more hackers who use the Internet to attack. Among them, Distributed Denial of Service (Distribution Denial of Service, DDoS) attack is a common hacker attack method. [0003] There are many means and manifestations of DDoS attacks, but their common attack strategy is to use protocol loopholes and send a large number of seemingly legitimate network packets to the victim host through many "zombie hosts", resulting in network congestion or server resource exhaustion. This leads to denial of service, wherein, using DDoS to attack the domain name system (Domain Name System, DNS) is a common attack behavior of hackers. DNS is a core service pr...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/06H04L29/12
Inventor 李晓东毛伟吴军王欣金键
Owner CHINA INTERNET NETWORK INFORMATION CENTER
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap