Security attack detection method, device, computer equipment and storage medium

A detection method and security attack technology, applied in the computer field, can solve the problems of high false detection rate of security attack detection, and achieve the effect of solving false detection rate, accurate detection and protection

Active Publication Date: 2022-03-25
SHENZHEN TENCENT COMP SYST CO LTD
View PDF5 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] In order to solve the problem of high false detection rate in security attack detection in related technologies, each embodiment of the present invention provides a security attack detection method, device, computer equipment and storage medium

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Security attack detection method, device, computer equipment and storage medium
  • Security attack detection method, device, computer equipment and storage medium
  • Security attack detection method, device, computer equipment and storage medium

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0038] The description will now be made in detail of exemplary embodiments, examples of which are illustrated in the accompanying drawings. Where the following description refers to the drawings, the same numerals in different drawings refer to the same or similar elements unless otherwise indicated. The implementations described in the illustrative examples below are not intended to represent all implementations consistent with the present invention. Rather, they are merely examples of apparatus and methods consistent with some aspects of the invention as recited in the appended claims.

[0039] As mentioned above, DDOS type security attacks mainly include: synack forgery attack, UDP (User Datagram Protocol, User Datagram Protocol) reflection attack, TCP (Transmission Control Protocol) reflection attack, and so on.

[0040] Take TCP reflection attack as an example to illustrate the general process of security attack protection.

[0041] like figure 1As shown, the attacker ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a security attack detection method, device, computer equipment and storage medium. The security attack detection method includes: acquiring mirrored traffic; and creating the source according to the mirrored traffic for a source terminal requesting to connect to the destination terminal. The session between the end and the destination end; discarding the first specific message corresponding to the session in the mirrored traffic, waiting for the source end to retransmit the first specific message; The first specific message retransmitted by the source end is forwarded to the destination end, and by tracking the session, it is detected whether the source end has entered the connection establishment state; if it is detected that the source end has not entered the If the above connection establishment status is established, it is confirmed that the destination end is subjected to a TCP reflection attack from the source end, and the flow corresponding to the session in the flow to be transmitted to the destination end is intercepted. The invention solves the problem of high false detection rate in security attack detection in the prior art.

Description

technical field [0001] The present invention relates to the field of computer technology, and in particular, to a security attack detection method, device, computer equipment and storage medium. Background technique [0002] DDOS is the abbreviation of Distributed Denial of Service in English, which is "distributed denial of service". DDOS type security attack means that the attacker initiates a large number of seemingly legitimate and malicious business requests to the attack target (such as a server) by controlling botnets distributed all over the Internet, in order to consume or occupy a large amount of resources of the attack target for a long time. As a result, the attack target cannot respond to normal business requests, thereby achieving the purpose of denial of service for the attack target. [0003] At present, DDOS-type security attacks mainly include: synack forgery attack, UDP (User Datagram Protocol, User Datagram Protocol) reflection attack, TCP (Transmission ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L9/40H04L69/16
CPCH04L63/1416H04L63/1458H04L69/16
Inventor 陈国
Owner SHENZHEN TENCENT COMP SYST CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap