Unlock instant, AI-driven research and patent intelligence for your innovation.

DDoS attack prevention method

A unique and abstract algorithm technology, applied in the field of network security, can solve problems such as network congestion, traffic impact, impact or loss, and achieve the effect of avoiding secondary attacks

Active Publication Date: 2020-06-05
深圳前海智安信息科技有限公司
View PDF6 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0002]With the popularization of network applications, it has brought a lot of convenience to our life and work, but network security is also what we need to pay attention to, otherwise the network will give us normal users To cause impact or loss, the existing technology is to process the traffic of DDoS attack through traffic cleaning technology. When the DDoS attack traffic is detected to attack the business server, the illegal traffic is introduced to the traffic processing device or server, and the normal access traffic is guided However, if the traffic of a DDoS attack is extremely large, it will still lead to congestion of the entire network. The traffic cleaning technology can only deal with the traffic flowing into the business processing server. Normal access traffic will still be blocked due to network congestion. affected

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • DDoS attack prevention method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0019] The present invention will be further described in detail below in conjunction with the reaction scheme and specific examples.

[0020] Such as figure 1 As shown, a method for preventing DDoS attacks, including normal access client 1, DDos attack client 2, main switch channel 3, normal access traffic 4, attack traffic 5, business server 6 and channel conversion module 7, specifically includes the following processing step:

[0021] Step 1: The channel conversion module 7 arranges a backup switch channel 8 between the normal access client 1 and the business server 6, and during normal access, the main switch channel 3 is used for connection and access by default, and the backup switch channel is closed 8. Make the IP address of channel 8 of the standby switch inactive;

[0022] Step 2: Embed and install the pre-channel negotiation module 9 in the normal access client, and install the post-channel negotiation module 10 in the service server 6; when the normal access cli...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to a DDoS attack prevention method. The method comprises the following steps: a channel conversion module arranging a standby switch channel between a normal access client and aservice server, and the IP address of the standby switch channel being in an inactive state during normal access; the channel conversion module respectively distributing respective private keys to thenormal access client and the service server, and also distributing a public key of the service server to the normal access client; when the service server side detects a DDoS attack, the service server side closing an attacked main switch channel, refusing a main channel IP address data request, activating a standby switch channel IP address at the same time, and starting to process data receivedby the standby channel IP address; and after the normal access client receives the return information of the channel conversion module, completing the normal access of the service server. The DDoS attack prevention method provided by the invention is good in protection effect, more accurate and efficient in flow scheduling and capable of effectively ensuring normal user broadband.

Description

technical field [0001] The invention relates to the technical field of network security, in particular to a method for preventing DDoS attacks. Background technique [0002] With the popularization of network applications, it has brought a lot of convenience to our life and work, but network security is also what we need to focus on, otherwise the network will cause impact or loss to our normal users. The existing technology uses traffic cleaning technology to deal with DDoS Attack traffic is processed. When DDoS attack traffic is detected to attack the business server, illegal traffic is introduced to the traffic processing device or server, and normal access traffic is guided to the business processing server. However, if the traffic of the DDoS attack is extremely large, It will still lead to the congestion of the entire network. The traffic cleaning technology can only process the traffic flowing into the business processing server, and the normal access traffic will sti...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06
CPCH04L63/1458H04L63/18
Inventor 邹飞于修良
Owner 深圳前海智安信息科技有限公司