Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Method and device for detecting distributed denial-of-service attack

A distributed denial and attack detection technology, applied in electrical components, transmission systems, etc., can solve the problems of poor defense effect, high DDoS attack defense cost, active DDoS attack detection, etc., to eliminate the impact, high DNS detection efficiency and detection. effect, effect of improving accuracy and reliability

Active Publication Date: 2010-09-22
CHINA INTERNET NETWORK INFORMATION CENTER
View PDF3 Cites 28 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] In the process of realizing the present invention, the inventor found that the prior art failed to effectively detect the DDoS attack in the DDoS attack directed at the DNS server, mainly preventing the DDoS attack or reducing the impact of the DDoS attack in a passive defense manner, Make the defense cost of DDoS attack higher, and the defense effect is poor

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and device for detecting distributed denial-of-service attack
  • Method and device for detecting distributed denial-of-service attack
  • Method and device for detecting distributed denial-of-service attack

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0037] In order to make the purpose, technical solutions and advantages of the embodiments of the present invention clearer, the technical solutions in the embodiments of the present invention will be clearly and completely described below in conjunction with the drawings in the embodiments of the present invention. Obviously, the described embodiments It is a part of embodiments of the present invention, but not all embodiments. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the protection scope of the present invention.

[0038] Since DNS is a distributed database, the internal modules of the server and between servers can control the database locally through the DNS protocol, and at the same time allow users in the network to access various parts of the data in the form of clients or servers. Therefore, other When a host user accesses the DNS server, the DNS ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a method and a device for detecting a distributed denial-of-service attack. The method comprises the following steps of: acquiring search log information recorded on a DNS (Domain Name Sever); and detecting whether a DDoS (Distributed Denial of Service) attack behavior aiming at the DNS exists or not according to the obtained search log information. The device comprises an information acquisition module and a detection module. According to the search log information on the DNS, the technical scheme of the invention can effectively detect the DDoS attack behavior and prevent the DNS from being attacked by DDoS.

Description

technical field [0001] The embodiment of the present invention relates to the technical field of distributed denial of service attack detection, and in particular to a method and device for detecting distributed denial of service attack. Background technique [0002] With the continuous development of network technology, there are more and more hackers who use the Internet to attack. Among them, Distributed Denial of Service (Distribution Denial of Service, DDoS) attack is a common hacker attack method. [0003] There are many means and manifestations of DDoS attacks, but their common attack strategy is to use protocol loopholes and send a large number of seemingly legitimate network packets to the victim host through many "zombie hosts", resulting in network congestion or server resource exhaustion. This leads to denial of service, wherein, using DDoS to attack the domain name system (Domain Name System, DNS) is a common attack behavior of hackers. DNS is a core service pr...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06H04L29/12
Inventor 李晓东毛伟吴军王欣金键
Owner CHINA INTERNET NETWORK INFORMATION CENTER
Features
  • Generate Ideas
  • Intellectual Property
  • Life Sciences
  • Materials
  • Tech Scout
Why Patsnap Eureka
  • Unparalleled Data Quality
  • Higher Quality Content
  • 60% Fewer Hallucinations
Social media
Patsnap Eureka Blog
Learn More

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2025 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com