Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Method and device for determining attack destination IP of DDOS attack

A DDOS and purpose technology, applied in the field of security protection, can solve problems such as normal business impact, difficulty in determining the destination IP of DDOS attacks, and attack traffic not being drawn

Inactive Publication Date: 2017-06-27
HANGZHOU DPTECH TECH
View PDF4 Cites 15 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] In view of this, this application provides a method and device for determining the attack destination IP of a DDOS attack, which is used to solve the problem in related technologies that it is difficult to determine the attack destination IP of a DDOS attack, resulting in that the attack traffic is not pulled or the normal business is affected The problem

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and device for determining attack destination IP of DDOS attack
  • Method and device for determining attack destination IP of DDOS attack
  • Method and device for determining attack destination IP of DDOS attack

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0037] In order to enable those skilled in the art to better understand the technical solutions in the embodiments of the present invention, and to make the above-mentioned purposes, features and advantages of the embodiments of the present invention more obvious and understandable, the following describes the existing technical solutions and the present invention in conjunction with the accompanying drawings. The technical solutions in the embodiments of the invention are described in further detail.

[0038] In DDOS attacks, both the source of the attack and the purpose of the attack are uncertain. When a server (or server group) is controlled by a hacker to become a puppet machine and initiates a DDOS attack to multiple IPs in the external network, a general abnormal traffic cleaning device will usually pull the attack traffic based on the attack destination IP.

[0039] see figure 1 , is a schematic diagram of the structure of a DDOS attack shown in this application, as s...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The application provides a method and device for determining an attack destination IP of DDOS attack. The method comprises the following steps: acquiring a traffic ranking list, wherein the traffic ranking list comprises a target source IP, a plurality of destination IPs and the traffic between the target source IP and each destination IP, and the traffics are ranked according to the traffic size; acquiring an abnormal a traffic threshold value by multiplying by the total traffic size according to a preset coefficient; judging whether the maximum traffic in the traffic ranking list is less than the abnormal traffic threshold value; if the maximum traffic is less than the abnormal traffic threshold value, orderly accumulating the maximum traffic and the next traffic in the traffic ranking list, comparing whether an accumulation result is less than the normal traffic threshold value, and determining the destination IP corresponding to the accumulation result as the attack destination IP until the accumulation result is not less than the abnormal traffic threshold value. By use of the method provided by the application, the problem that the attack traffic is not led or the normal service is influenced since the related technology is hard to determine the attack destination IP of the DDOS attack is solved.

Description

technical field [0001] The present application relates to the field of security protection, in particular to a method and device for determining an attack destination IP of a DDOS attack. Background technique [0002] In a DDOS (Distributed Denial of Service, Distributed Denial of Service) attack, both the source of the attack and the purpose of the attack are uncertain. When a server is controlled by a hacker to become a puppet machine and attacks to multiple IPs, a general abnormal traffic cleaning device will pull the attack traffic based on the attack destination IP. If the abnormal traffic cleaning device pulls more attack destination IPs than the actual attacked IPs, misleading will occur, resulting in normal traffic being killed by mistake. Therefore, determining the attack destination IP of a DDOS attack is very important for protecting against DDOS attacks. [0003] In related technologies, when there may be a DDOS attack from any attack source IP in the network, ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L12/26
CPCH04L63/1458H04L43/16H04L63/1416
Inventor 佟立超
Owner HANGZHOU DPTECH TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com