DNS distributed denial of service defense method, device and apparatus and storage medium

A technology of distributed denial of service and storage media, applied in electrical components, transmission systems, etc., can solve the problem of low accuracy of DNS distributed denial of service defense, achieve the effect of enhancing defense level, preventing manslaughter, and improving accuracy

Active Publication Date: 2021-03-12
PING AN TECH (SHENZHEN) CO LTD
View PDF4 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] The main purpose of the present invention is to provide a DNS distributed denial of service defense method, device, equipment a

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • DNS distributed denial of service defense method, device and apparatus and storage medium
  • DNS distributed denial of service defense method, device and apparatus and storage medium
  • DNS distributed denial of service defense method, device and apparatus and storage medium

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0047] It should be understood that the specific embodiments described here are only used to explain the present invention, not to limit the present invention.

[0048] refer to figure 1 , figure 1 It is a schematic structural diagram of a DNS distributed denial-of-service defense device in the hardware operating environment involved in the solution of the embodiment of the present invention.

[0049] Such as figure 1As shown, the DNS DDoS defense device may include: a processor 1001 , such as a central processing unit (Central Processing Unit, CPU), a communication bus 1002 , a user interface 1003 , a network interface 1004 , and a memory 1005 . Wherein, the communication bus 1002 is used to realize connection and communication between these components. The user interface 1003 may include a display screen (Display), an input unit such as a keyboard (Keyboard), and the optional user interface 1003 may also include a standard wired interface and a wireless interface. The ne...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to the technical field of security protection, and discloses a DNS distributed denial of service defense method, device and apparatus and a storage medium, and the method comprises the steps: receiving to-be-detected DNS data, carrying out the flow statistics of the to-be-detected DNS data, and obtaining a flow statistics result; performing static verification on the to-be-detected DNS data according to a preset static condition to obtain a static verification result; dynamically verifying the to-be-detected DNS data according to the dynamic verification condition to obtain a dynamic verification result; determining an attack level of the to-be-detected DNS data according to the flow statistics result, the static verification result and the dynamic verification result; and defending the to-be-detected DNS data according to the attack level. According to the method, static detection and dynamic detection are combined to detect the DNS data, the attack detection accuracy is improved, meanwhile, the DNS data is defended through the attack level, and the problem that the DNS distributed denial of service defense accuracy is low is solved.

Description

technical field [0001] The present invention relates to the technical field of security protection, in particular to a DNS distributed denial of service defense method, device, equipment and storage medium. Background technique [0002] For the distributed denial of service attack (Distributed Denial of Service, DDOS) of the domain name resolution system (Domain Name System, DNS), the attacker usually sends a large amount of invalid data to the server corresponding to the domain name resolution system for the domain name resolution function of the domain name resolution system Resolution requests for existing domain names eventually cause the server to be overloaded with a large number of DNS requests. Due to the complexity of the DNS defense system, there is no existing method for DNS DDOS that can defend against all attacks. There are risks of easy accidental killing of normal traffic, slow response, and high coupling of DNS defense and business, resulting in inflexible de...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/06H04L29/12
CPCH04L63/1458H04L63/1408H04L63/1416H04L61/4511
Inventor 莫生平
Owner PING AN TECH (SHENZHEN) CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap