Device and method for defending prepositioned reconfigurable DDoS (distributed denial of service) attack

A technology of control module and detection module, which is applied in the direction of digital transmission system, electrical components, transmission system, etc., to meet the requirements of flexibility and ensure the effect of high efficiency

Active Publication Date: 2011-08-24
SHANGHAI REDNEURONS +1
View PDF7 Cites 5 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0009] Aiming at the problem that existing mechanisms are difficult to effectively defend against various DDoS attacks, the present invention provides a pre-reconfigurable DDoS attack defense device and method, which configures corresponding detection and defense strategies according to DDoS attack types to achieve accurate and efficient protection

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Device and method for defending prepositioned reconfigurable DDoS (distributed denial of service) attack
  • Device and method for defending prepositioned reconfigurable DDoS (distributed denial of service) attack
  • Device and method for defending prepositioned reconfigurable DDoS (distributed denial of service) attack

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0027] like figure 2 , 3 As shown, a pre-reconfigurable DDoS attack defense device includes the following parts: an access module, a detection module, a TCP state monitoring module, a control module, and a processing module. The access module receives the data flow from the network; the detection module extracts the characteristic value of the data flow, such as IP address, port number, packet information, etc., and detects the type of DDoS attack according to the characteristic value; the TCP status monitoring module monitors the status of the IP protocol stack Monitor to determine whether a DDoS attack occurs and the extent of the attack; the control module controls the system behavior according to the feedback information; the processing module completes different levels of DDoS protection functions according to the instructions of the control module.

[0028] figure 2 Provided the block diagram of the DDoS attack defense device provided by the present invention, the ac...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to a device and method for defending prepositioned reconfigurable DDoS (distributed denial of service) attack. The device comprises an access module which is connected to an external network and is used for receiving the dataflow from the network, wherein the access module is respectively connected to a detection module and a processing module; the detection module is connected to a control module; the control module is connected to the output port of a TCP (transmission control protocol) state monitoring module; the input port of the TCP state monitoring module is used for receiving the state information of an IP (internet protocol) protocol stack processing element; the TCP state monitoring module is used for monitoring the state of the IP protocol stack, so as to judge whether DDoS attack occurs and determine the degree of the attack; the processing module is respectively connected to the control module and the access module; the output port of the processing module is used for sending a processed packet to the IP protocol stack and the various-level DDoS defending function is achieved according to an instruction of the control module; and corresponding detecting and defending strategies are configured according to the classification of DDoS attack, thereby realizing the accurate efficient defense.

Description

technical field [0001] The invention relates to a computer network security technology, in particular to a pre-reconfigurable DDoS attack defense device and method for DDoS attacks. Background technique [0002] Denial of service attack (DoS) means that the attacker deliberately causes the computer or network to fail to operate normally through some means, so that the required service cannot be provided to legitimate users or the service quality is reduced. There are many types of DoS attacks. The most basic DoS attack is to use reasonable service requests to occupy too many service resources, so that the server cannot process the instructions of legitimate users. A single DoS attack generally adopts a one-to-one method, and its effect is obvious when the performance indicators such as low CPU speed, small memory or small network bandwidth of the attacked target are not high. With the development of computer and network technology, the processing power of the computer has i...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L29/08H04L12/26
Inventor 邬江兴罗兴国张兴明庞建民祝永新张铮张帆祝卫华李弋陈韬谢同飞
Owner SHANGHAI REDNEURONS
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap