Content distribution network based DDoS (distributed denial of service) attack protecting method and content distribution network based DDoS attack protecting system for cloud distribution platform

Abstract

The invention discloses a content distribution network based DDoS (distributed denial of service) attack protecting method and a content distribution network based DDoS attack protecting system for a cloud distribution platform. The method and the system can effectively protect the cloud distribution platform from large-scale DDoS attacks. The technical scheme includes that the system comprises a plurality of content distribution network security nodes, an alarm component, a decision making component and a DNS (domain name server) component, wherein the content distribution network security nodes are used for detecting the DDoS attacks and executing protection strategies; the alarm component is connected with the content distribution network security nodes and is used for collecting and analyzing flow of the content distribution network security nodes and attack behavior characteristic matching and sending DDoS attack alarm information; the decision making component is connected with the alarm component and is used for analyzing the alarm information, generating the protection strategies aiming at the DDoS attacks, sending the protection strategies to the content distribution network security nodes and sending a switching instruction to the DNS component if the protection strategies include service switching nodes; and the DNS component is connected with the decision making component and is used for switching service nodes of a website according to the switching instruction.

Description

technical field [0001] The invention relates to a DDoS attack protection technology, in particular to a DDoS attack protection method and system based on a content distribution network (CDN network). Background technique [0002] The DDoS attack on content distribution network has the characteristics of obvious attack effect and difficult to prevent, which has become the attack method often used by hackers. There are two main types of defense technologies against DDoS attacks: [0003] (1) Hardware firewall: Deploy anti-attack equipment at the front end of the website to resist a certain amount of attacks; [0004] (2) Traffic traction technology: Deploy special traffic traction and traffic cleaning equipment at the network entrance of the computer room. When an attack is detected, the attack traffic is diverted to the traffic cleaning device. [0005] There are following disadvantages in the above two technical solutions: [0006] (1) Expose the attacked target: Hackers...

AI Technical Summary

Problems solved by technology

[0007] (2) Insufficient defense capabilities: the prepared bandwidth is limited, making it difficult to defend against large-scale attacks;

[0008] (3) Low usability: Once the equipment cannot be defended, the website will not function normally

Images