Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Content distribution network based DDoS (distributed denial of service) attack protecting method and content distribution network based DDoS attack protecting system for cloud distribution platform

A content distribution network and distribution platform technology, which is applied in the field of DDoS attack protection based on content distribution network (CDN network), can solve the problems of limited bandwidth, insufficient defense capabilities, and difficulty in defending against large-scale attacks, and achieve high availability.

Active Publication Date: 2013-04-03
CHINANETCENT TECH
View PDF5 Cites 48 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0007] (2) Insufficient defense capabilities: the prepared bandwidth is limited, making it difficult to defend against large-scale attacks;
[0008] (3) Low usability: Once the equipment cannot be defended, the website will not function normally

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Content distribution network based DDoS (distributed denial of service) attack protecting method and content distribution network based DDoS attack protecting system for cloud distribution platform
  • Content distribution network based DDoS (distributed denial of service) attack protecting method and content distribution network based DDoS attack protecting system for cloud distribution platform

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0029] The present invention will be further described below in conjunction with the accompanying drawings and embodiments.

[0030] Embodiment of the DDoS attack protection system based on the cloud distribution platform of content distribution network

[0031] figure 1 A preferred embodiment of the DDoS attack protection system based on the cloud distribution platform of the content distribution network of the present invention is shown. See figure 1 , The DDoS attack protection system of this embodiment includes: a plurality of content distribution network security nodes 1 , an alarm component 2 , a decision component 3 , and a DNS component 4 .

[0032] Each content distribution network security node 1 detects a DDoS attack, and executes a defense strategy against the DDoS attack. Each content distribution network security node 1 realizes hiding the source station, so that the IP of the source station is not exposed to the outside. After the source site is hidden, in...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a content distribution network based DDoS (distributed denial of service) attack protecting method and a content distribution network based DDoS attack protecting system for a cloud distribution platform. The method and the system can effectively protect the cloud distribution platform from large-scale DDoS attacks. The technical scheme includes that the system comprises a plurality of content distribution network security nodes, an alarm component, a decision making component and a DNS (domain name server) component, wherein the content distribution network security nodes are used for detecting the DDoS attacks and executing protection strategies; the alarm component is connected with the content distribution network security nodes and is used for collecting and analyzing flow of the content distribution network security nodes and attack behavior characteristic matching and sending DDoS attack alarm information; the decision making component is connected with the alarm component and is used for analyzing the alarm information, generating the protection strategies aiming at the DDoS attacks, sending the protection strategies to the content distribution network security nodes and sending a switching instruction to the DNS component if the protection strategies include service switching nodes; and the DNS component is connected with the decision making component and is used for switching service nodes of a website according to the switching instruction.

Description

technical field [0001] The invention relates to a DDoS attack protection technology, in particular to a DDoS attack protection method and system based on a content distribution network (CDN network). Background technique [0002] The DDoS attack on content distribution network has the characteristics of obvious attack effect and difficult to prevent, which has become the attack method often used by hackers. There are two main types of defense technologies against DDoS attacks: [0003] (1) Hardware firewall: Deploy anti-attack equipment at the front end of the website to resist a certain amount of attacks; [0004] (2) Traffic traction technology: Deploy special traffic traction and traffic cleaning equipment at the network entrance of the computer room. When an attack is detected, the attack traffic is diverted to the traffic cleaning device. [0005] There are following disadvantages in the above two technical solutions: [0006] (1) Expose the attacked target: Hackers...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L29/08
Inventor 洪珂武志鹏许少年
Owner CHINANETCENT TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com