Unlock instant, AI-driven research and patent intelligence for your innovation.

A method and apparatus for detecting a distributed denial of service DDoS attack target

A technology of distributed rejection and detection method, which is applied in the computer field, can solve problems such as DNS server paralysis and inability to determine the attack target, and achieve the effect of improving efficiency

Inactive Publication Date: 2018-12-11
CHINANETCENT TECH
View PDF6 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] The embodiment of the present invention provides a distributed denial of service DDoS attack target detection method and device, which is used to solve the technical problem in the prior art that the DNS server is paralyzed due to the inability to determine the attack target

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A method and apparatus for detecting a distributed denial of service DDoS attack target
  • A method and apparatus for detecting a distributed denial of service DDoS attack target
  • A method and apparatus for detecting a distributed denial of service DDoS attack target

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0061] The present application will be described in detail below in conjunction with the accompanying drawings, and the specific operation methods in the method embodiments can also be applied to the device embodiments.

[0062] figure 1 It exemplarily shows the applicable system architecture diagram of the embodiment of the present invention, such as figure 1 As shown, the system 100 includes an upper-level DNS server 101 and multiple DNS servers, for example, figure 1 DNS server 102, DNS server 103, DNS server 104, and DNS server 105 are shown in FIG. Wherein, the upper-level DNS server 101 can be connected to any server in the multiple DNS servers through the network, and can also manage any server in the multiple DNS servers. For example, the upper-level DNS server 101 can communicate with the DNS server 102 through the network, and can Manage the DNS server 102 (for example, the authorization information of each zone in the DNS server 102 can be managed).

[0063] Furt...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a method and a device for detecting a distributed denial of service DDoS attack target. The method comprises: after determining that the first DNS server is under a DDoS attack, a first zone may be determined from the first DNS server, and the authorization information of the first area is modified, so that by judging whether that second DNS server corresponding to the first zone after modifying the authorization information is subjected to a DDoS attack, when it is determined that no more than N first zones are attacked by DDoS in the second DNS server, the attack targets can be determined to be N zones, so that whether each zone is attacked by DDoS can be effectively detected, and then the specific zone of the target can be attacked. Further, the embodiment of the invention takes the IP address as the identification of the attacked area, avoiding the problem that the attack target cannot be accurately distinguished when the domain name is unavailable, therebydistinguishing the attack target from the non-attack target, and improving the efficiency of attack detection.

Description

technical field [0001] The invention relates to the field of computer technology, in particular to a detection method and device for a distributed denial-of-service DDoS attack target. Background technique [0002] The Domain Name System (DNS) is a distributed database on the Internet that maps domain names and IP addresses to each other, enabling users to access the Internet more conveniently. As the addressing method of most applications in the Internet, the importance of DNS is self-evident. Attacks against DNS servers are also becoming more frequent and larger in scale. [0003] Distributed denial of service (Distributed Denial of Service, DDoS) attack, as an attack on DNS servers, can use client / server technology to combine multiple computers as an attack platform to launch DDoS attacks on one or more targets. As a result, the attack power is doubled and the entire DNS server is paralyzed. However, because some DDoS attacks are non-DNS packet attacks, when the attack...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L29/12
CPCH04L63/1416H04L63/1458H04L61/4511
Inventor 曹聪
Owner CHINANETCENT TECH