A method of defending against ddos ​​attacks based on channel hopping mode

A DDOS and channel technology, which is applied in the field of defending against DDOS attacks based on the hopping channel mode, can solve the problems of data without reorganization and encryption, without considering protocol channels, and data packets are easy to be disassembled, so as to prevent packet loss and deduplication, Improved safety and reliability, high reliability effect

Active Publication Date: 2018-09-11
XIDIAN UNIV
View PDF4 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0010] (1) Port jumping is only performed on one side of the communication, and port jumping is not performed on both sides of the communication at the same time
[0011] (2) Port hopping is only performed in the TCP / UDP protocol, and other protocol channels such as ICMP and IP are not considered
[0012] (3) The port number is generated by the lookup table and is not random
[0013] (4) The data packaging process does not carry out data reorganization and encryption, and the data package is easy to be disassembled
[0014] (5) No encryption algorithm is used in the transmission process, and the security is not high

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A method of defending against ddos ​​attacks based on channel hopping mode
  • A method of defending against ddos ​​attacks based on channel hopping mode
  • A method of defending against ddos ​​attacks based on channel hopping mode

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0031] The present invention will be described in detail below in conjunction with the accompanying drawings and embodiments.

[0032] Aiming at the deficiencies of the above-mentioned prior art, the present invention proposes a multi-channel jump port communication mode against DDOS attacks, so that the networks can communicate more securely. The implementation process is: Let the communication parties temporarily negotiate multiple different communication channels, so that the attacker cannot determine the attack target. As long as one of the multiple channels can transmit data normally at any time, the communication parties can maintain a secure data channel; Map the temporary key to the port number, the port number is randomly generated, making it difficult for the enemy to attack, define the data packet in XML format, check the flag bit after receiving the data packet, prevent packet loss and deduplication, and improve the security and security of communication Reliabilit...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to a method for resisting DDOS attacks based on a channel hopping mode. According to the method, communication parties negotiate about different communication channels temporarily, attackers cannot determine an attack target, and as long as one channel of the multiple channels can normally transmit data at any time, the communication parties can maintain a safe data channel; temporary keys are mapped to port numbers, the port numbers are generated in a random manner, the attackers are difficult to attack, a data packet is defined in the XML format, after the data packet is received, a flag bit is checked, duplicate removal is facilitated, packet loss is prevented, communication security and reliability are improved, and the DDOS attacks can be effectively resisted.

Description

technical field [0001] The invention specifically relates to a method for defending against DDOS attacks based on channel hopping mode. Background technique [0002] The full English name of DDOS is Distributed Denial of Service, which translates into distributed denial of service attack in Chinese. The full name of STS in English is Station-to-Station, which is translated into station-to-station in Chinese. It combines the Diffie-Hellman key agreement scheme with a secure interactive identification scheme. Interactive authentication is provided by signing a random challenge. [0003] With the continuous expansion of Internet applications, ordinary people can control multiple computers, and they can launch attacks by searching for easy-to-use attack tools on the Internet, especially DDOS attacks without technical content, which bring unprecedented levels to network security. technical challenge. DDOS uses client / server technology to combine multiple computers as an attack...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06
CPCH04L63/0428H04L63/1458
Inventor 赵兴文李晖朱辉林佳萍毛小乐赵高飞
Owner XIDIAN UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap