SYN Cookie source authentication method and device for preventing DDOS attack

A DDOS, source authentication technology, applied in the field of network communication security, can solve problems such as consumption and large detection system resources, and achieve the effect of saving system resources and reducing running speed

Inactive Publication Date: 2014-01-29
UNITED ELECTRONICS
View PDF1 Cites 24 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Because the shortcomings of the first two methods are obvious, that is, the consumption of a large amount of detection system resources and the existence of false positives and false negatives, the SYN Cookie detection method is generally used

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • SYN Cookie source authentication method and device for preventing DDOS attack
  • SYN Cookie source authentication method and device for preventing DDOS attack
  • SYN Cookie source authentication method and device for preventing DDOS attack

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0032] In order to make the object, technical solution and advantages of the present invention clearer, the present invention will be described in further detail below in conjunction with specific embodiments and with reference to the accompanying drawings.

[0033] figure 1It is a schematic diagram of the SYN Cookie (referred to as Cookie in this article) source authentication method for preventing DDOS attacks according to the embodiment of the present invention. After the SYN packets received by the victim (the server under attack) exceed the set threshold, the anti-DDOS device starts source authentication defense against subsequent SYN packets. The anti-DDOS device generates a SYN Cookie for the SYN message, and sends a SYN_ACK message to the source of the SYN message encapsulated as the TCP sequence number. After the received ACK message passes the verification of the SYN Cookie, the subsequent messages of the source of the SYN message are transparent. Pass to Victim. ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a SYN Cookie source authentication method for preventing a DDOS attack. The SYN Cookie source authentication method is characterized in that after a SYN message received by an attacked server Victim exceeds a set threshold, a DDOS attack preventing device generates SYN Cookie according to the SYN message, the SYN Cookie serves as the TCP serial number to be packaged, the SYN_ACK message is sent to a SYN message sending source, and after the SYN Cookie is verified by the ACK message of the DDOS attack preventing device, a follow-up message of the SYN message sending source is transmitted to the Victim through the DDOS attack preventing device. The invention further provides a SYN cookie source authentication device for preventing the DDOS attack. The DDOS attack is prevented through the method.

Description

technical field [0001] The invention relates to network communication security, in particular to a SYN Cookie source authentication method and device thereof against DDOS attacks. Background technique [0002] SYN (SYNchronous, synchronous) is a handshake signal used by TCP / IP Transmission Control Protocol / Internet Protocol, Transmission Control Protocol / Internet Internet Protocol) to establish a connection. When establishing a normal TCP network connection between the client and the server, the client first sends a SYN message, the server responds with SYN+ACK (ACKnowledgment, confirmation character) to indicate that it has received the message, and finally the client responds with an ACK message. In this way, a reliable TCP connection can be established between the client computer and the server, and data can be transmitted between the client computer and the server. [0003] SYN Flood attack is a typical DDOS (Distributed Denial of Service) attack. The SYN Flood attack ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
Inventor 李安坤丁洪震王东辉
Owner UNITED ELECTRONICS
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap