Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Lightweight DDoS attack detection device and method on high-speed network

An attack detection and high-speed network technology, applied in data exchange networks, digital transmission systems, electrical components, etc., can solve the problems of large occupied space, large number of counters, space waste, etc., to improve accuracy and control space overhead Upper limit, the effect of reducing false positives

Active Publication Date: 2019-07-23
NANJING UNIV OF POSTS & TELECOMM
View PDF4 Cites 9 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

First, in network traffic, large traffic is very important. When detecting DDoS attacks, the main purpose is to detect traffic exceeding the threshold. However, the number of large traffic in the network is relatively small, and most of them are small traffic. Traffic and small traffic conflict when stored, and many small traffic will be overestimated when querying, resulting in false positives
Second, due to the need to store all traffic in the network, the number of counters in Sketch is relatively large, resulting in a large space occupation, but only a small number of large traffic requires relatively large counters, and a lot of space is wasted

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Lightweight DDoS attack detection device and method on high-speed network
  • Lightweight DDoS attack detection device and method on high-speed network
  • Lightweight DDoS attack detection device and method on high-speed network

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0048] The present invention discloses a light-weight DDoS attack detection device and detection method on a high-speed network. The present invention will be further described below in conjunction with the embodiments of specific solutions. It should be understood that these embodiments are only used to illustrate the present invention and not to limit the present invention range.

[0049] The overall idea of ​​the present invention is: since the performance of DDoS flood attack on traffic is usually the rapid increase of traffic, the structure of Sketch is used to store, summarize and detect the traffic in the network. Aiming at the problems of large usage space and space waste in Sketch, a combination of multiple Sketches with small spaces is used to dynamically create Sketch and dynamically apply for space to avoid space waste as much as possible. In this structure, the large traffic will be concentrated in the high-level Sketch, which is convenient for the detection of DD...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a lightweight DDoS attack detection device and method on a high-speed network. The device comprises a CBFSketch module and a DDoS attack detection module. The method comprisesthe following steps: S1, acquiring network flow, and recording and storing data flow information; S2, according to the recorded data flow information, inquiring the flow size or occurrence frequency of a specific data flow, and judging whether the data flow is DDoS attack flow or not according to an inquiry result; and S3, setting a threshold value, detecting the data flow exceeding the thresholdvalue according to the recorded data flow information, and completing DDoS attack detection. The multi-level Sketch structure is adopted to store the data flow, the space can be dynamically applied, the space overhead upper limit can be effectively controlled, the flow exceeding the threshold value can be rapidly detected to detect the DDoS attack, misinformation is reduced, and the detection accuracy is improved.

Description

technical field [0001] The invention relates to a detection device and a corresponding detection method, in particular to a lightweight DDoS attack detection device and detection method on a high-speed network, belonging to the technical fields of high-speed network flow measurement and network security. Background technique [0002] With the development and popularization of the Internet, information security has gradually become a serious problem faced by the country's political, economic, military, cultural and ideological fields. How to ensure information security has gradually become a common appeal of all industries. [0003] Specifically, network security is an important part of information security, and among many factors affecting network performance, network traffic is the most important. With the development of Internet technology, network traffic analysis technology emerges as the times require. This technology captures the data packets flowing in the network, ch...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06H04L12/26
CPCH04L43/16H04L63/1416H04L63/1425H04L63/1458
Inventor 朱海婷张媛何高峰张浩邓莹莹朱铭远
Owner NANJING UNIV OF POSTS & TELECOMM
Features
  • Generate Ideas
  • Intellectual Property
  • Life Sciences
  • Materials
  • Tech Scout
Why Patsnap Eureka
  • Unparalleled Data Quality
  • Higher Quality Content
  • 60% Fewer Hallucinations
Social media
Patsnap Eureka Blog
Learn More

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2025 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com