Application layer denial of service (DoS) protective method and system based on client detection

A denial of service and protection system technology, applied in the field of information science, can solve problems such as spending resources, and achieve the effect of avoiding waste, improving speed and high accuracy

Active Publication Date: 2013-06-05
FORTINET
View PDF7 Cites 25 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0008] The shortcomings of this detection mechanism are relatively obvious, and the DoS attack request will still be received and processed by the Web Server
Although the number and rate of Dos attack requests are limited to a very small range, which will not allow it to achieve the purpose of Dos attacks, Web Sever will still spend part of the resources for these Dos attack requests

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Application layer denial of service (DoS) protective method and system based on client detection
  • Application layer denial of service (DoS) protective method and system based on client detection

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0031] In order to detect and guard against Web application denial of service attacks, the present invention adopts a mechanism for distinguishing legal Web requests and Dos attack requests. Based on the Web request client, the invention uses a client identification technology to intelligently identify the specific type of the client. In order to further detect whether a web request is legal or an illegal DoS attack.

[0032] For all attack techniques of WEB servers, the client that initiates the attack uses the attack program to send a large number of requests in a short period of time to complete the attack. If the client is using a browser, the client cannot make a large number of requests. It can be seen that there is a corresponding relationship between the client type (using a browser) and the legal WEB request. Therefore, a means is needed to identify the type of the client, that is, to distinguish whether the client is using a browser or a packet sending program for ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides an application layer DoS protective method and system based on client detection. The method includes step one, a protective device intercepts an initial connection request sent by a WEB client to a WEB server and sends a javascript verification code to the client; step two, the WEB client operates the javascript verification code, if the WEB client cannot operate the javascript verification code successfully, the initial connection request is discarded, if the WEB client can operate the javascript verification code successfully, the WEB client generates authority information and sends a reconnection request containing the authority information to the WEB server; and step three, the protective device intercepts reconnection request, verifies the authority information and allows the reconnection request to pass through if the verification is successful.

Description

technical field [0001] The present invention relates to the field of information science and technology, in particular to an application layer denial of service protection method and system based on client detection. Background technique [0002] Dos attacks based on WEB Server are becoming more and more common. The client can send a large number of WEB requests to the WEB server through a simple attack program. Every time the client sends a request, the WEB server needs to complete a series of tasks. Script analysis , database query, etc., if the client sends too many requests, it will cause the server to consume too much system resources and stop the client response. [0003] Traditional detection of denial-of-service attacks at the application layer is done at the network layer (TCP / UDP), and the attack behavior is determined based on past experience thresholds. Based on empirical thresholds to detect denial-of-service attacks, theoretically and in terms of product react...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
Inventor 许世强阎尖将姚熙
Owner FORTINET
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap