CN103095711B - A kind of application layer ddos attack detection method for website and system of defense - Google Patents
A kind of application layer ddos attack detection method for website and system of defense Download PDFInfo
- Publication number
- CN103095711B CN103095711B CN201310018798.8A CN201310018798A CN103095711B CN 103095711 B CN103095711 B CN 103095711B CN 201310018798 A CN201310018798 A CN 201310018798A CN 103095711 B CN103095711 B CN 103095711B
- Authority
- CN
- China
- Prior art keywords
- sequence
- user
- website
- page
- clicks
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000001514 detection method Methods 0.000 title claims abstract description 23
- 230000007123 defense Effects 0.000 title abstract description 10
- 238000005295 random walk Methods 0.000 claims abstract description 25
- 238000012549 training Methods 0.000 claims abstract description 13
- 239000011159 matrix material Substances 0.000 claims description 17
- 239000013598 vector Substances 0.000 claims description 17
- 230000007704 transition Effects 0.000 claims description 12
- 238000003064 k means clustering Methods 0.000 claims description 3
- 230000005012 migration Effects 0.000 claims description 2
- 238000013508 migration Methods 0.000 claims description 2
- 238000000034 method Methods 0.000 abstract description 17
- 230000008569 process Effects 0.000 abstract description 9
- 238000010586 diagram Methods 0.000 description 7
- 230000005856 abnormality Effects 0.000 description 6
- 230000006399 behavior Effects 0.000 description 6
- 238000012545 processing Methods 0.000 description 3
- 230000008859 change Effects 0.000 description 1
- 238000000205 computational method Methods 0.000 description 1
- 230000007812 deficiency Effects 0.000 description 1
- 238000011160 research Methods 0.000 description 1
- 238000007619 statistical method Methods 0.000 description 1
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
Description
Claims (3)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201310018798.8A CN103095711B (en) | 2013-01-18 | 2013-01-18 | A kind of application layer ddos attack detection method for website and system of defense |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201310018798.8A CN103095711B (en) | 2013-01-18 | 2013-01-18 | A kind of application layer ddos attack detection method for website and system of defense |
Publications (2)
Publication Number | Publication Date |
---|---|
CN103095711A CN103095711A (en) | 2013-05-08 |
CN103095711B true CN103095711B (en) | 2016-10-26 |
Family
ID=48207844
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201310018798.8A Active CN103095711B (en) | 2013-01-18 | 2013-01-18 | A kind of application layer ddos attack detection method for website and system of defense |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN103095711B (en) |
Families Citing this family (18)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN103810241B (en) * | 2013-11-22 | 2017-04-05 | 北京奇虎科技有限公司 | Filter method and device that a kind of low frequency is clicked on |
CN104901971B (en) * | 2015-06-23 | 2019-03-15 | 北京东方棱镜科技有限公司 | The method and apparatus that safety analysis is carried out to network behavior |
TWI562013B (en) * | 2015-07-06 | 2016-12-11 | Wistron Corp | Method, system and apparatus for predicting abnormality |
CN105592070B (en) * | 2015-11-16 | 2018-10-23 | 中国银联股份有限公司 | Application layer DDoS defence methods and system |
CN105510971A (en) * | 2016-02-18 | 2016-04-20 | 福建师范大学 | Seismic data abnormality detection method based on random walk |
CN105812280B (en) * | 2016-05-05 | 2019-06-04 | 四川九洲电器集团有限责任公司 | A kind of classification method and electronic equipment |
CN106209861B (en) * | 2016-07-14 | 2019-07-12 | 南京邮电大学 | One kind being based on broad sense Jie Kade similarity factor Web application layer ddos attack detection method and device |
CN107798571B (en) * | 2016-08-31 | 2019-08-30 | 阿里巴巴集团控股有限公司 | Malice address/malice order identifying system, method and device |
WO2018095192A1 (en) | 2016-11-23 | 2018-05-31 | 腾讯科技(深圳)有限公司 | Method and system for website attack detection and prevention |
CN106778259B (en) * | 2016-12-28 | 2020-01-10 | 北京明朝万达科技股份有限公司 | Abnormal behavior discovery method and system based on big data machine learning |
CN108874813B (en) * | 2017-05-10 | 2022-07-29 | 腾讯科技(北京)有限公司 | Information processing method, device and storage medium |
CN107204991A (en) * | 2017-07-06 | 2017-09-26 | 深信服科技股份有限公司 | A kind of server exception detection method and system |
CN107491970B (en) * | 2017-08-17 | 2021-04-02 | 北京三快在线科技有限公司 | Real-time anti-cheating detection monitoring method and system and computing equipment |
CN107707547A (en) * | 2017-09-29 | 2018-02-16 | 北京神州绿盟信息安全科技股份有限公司 | The detection method and equipment of a kind of ddos attack |
CN108540440A (en) * | 2018-02-02 | 2018-09-14 | 努比亚技术有限公司 | DDOS attack solution, server and computer readable storage medium |
CN111476610B (en) * | 2020-04-16 | 2023-06-09 | 腾讯科技(深圳)有限公司 | Information detection method, device and computer readable storage medium |
CN112488321B (en) * | 2020-12-07 | 2022-07-01 | 重庆邮电大学 | Antagonistic machine learning defense method oriented to generalized nonnegative matrix factorization algorithm |
CN112231700B (en) * | 2020-12-17 | 2021-05-11 | 腾讯科技(深圳)有限公司 | Behavior recognition method and apparatus, storage medium, and electronic device |
Citations (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102184406A (en) * | 2009-11-11 | 2011-09-14 | 索尼公司 | Information processing device, information processing method, and program |
CN102487293A (en) * | 2010-12-06 | 2012-06-06 | 中国人民解放军理工大学 | Satellite communication network abnormity detection method based on network control |
-
2013
- 2013-01-18 CN CN201310018798.8A patent/CN103095711B/en active Active
Patent Citations (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102184406A (en) * | 2009-11-11 | 2011-09-14 | 索尼公司 | Information processing device, information processing method, and program |
CN102487293A (en) * | 2010-12-06 | 2012-06-06 | 中国人民解放军理工大学 | Satellite communication network abnormity detection method based on network control |
Non-Patent Citations (2)
Title |
---|
基于shell命令和多阶Markov链模型的用户伪装攻击检测;肖喜 翟起滨 田新广 陈小娟 叶润国;《电子学报》;20110531;第39卷(第5期);正文第1201页 * |
基于用户行为分析的应用层DDoS攻击检测方法;赵国锋 喻守成 文晟;《计算机应用研究》;20110228;第28卷(第2期);全文 * |
Also Published As
Publication number | Publication date |
---|---|
CN103095711A (en) | 2013-05-08 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN103095711B (en) | A kind of application layer ddos attack detection method for website and system of defense | |
Xie et al. | Monitoring the application-layer DDoS attacks for popular websites | |
Sun et al. | {HinDom}: A robust malicious domain detection system based on heterogeneous information network with transductive classification | |
Xie et al. | A large-scale hidden semi-Markov model for anomaly detection on user browsing behaviors | |
Jyothi et al. | Brain: Behavior based adaptive intrusion detection in networks: Using hardware performance counters to detect ddos attacks | |
CN113079143A (en) | Flow data-based anomaly detection method and system | |
Zhu et al. | A deep learning approach for network anomaly detection based on AMF-LSTM | |
CN109117634A (en) | Malware detection method and system based on network flow multi-view integration | |
CN109600363A (en) | A kind of internet-of-things terminal network portrait and abnormal network access behavioral value method | |
CN107392016A (en) | A kind of web data storehouse attack detecting system based on agency | |
CN109284296A (en) | A kind of big data PB grades of distributed informationm storage and retrieval platforms | |
Patil et al. | S-DDoS: Apache spark based real-time DDoS detection system | |
Xu et al. | Detection on application layer DDoS using random walk model | |
Ye et al. | Application layer DDoS detection using clustering analysis | |
CN104113544B (en) | Network inbreak detection method and system based on fuzzy hidden conditional random fields model | |
Liao et al. | Feature extraction and construction of application layer DDoS attack based on user behavior | |
Meng et al. | Ddos attack detection system based on analysis of users' behaviors for application layer | |
Beckett et al. | New sensing technique for detecting application layer DDoS attacks targeting back-end database resources | |
Lei et al. | Detecting malicious domains with behavioral modeling and graph embedding | |
Liang et al. | Unveiling fake accounts at the time of registration: An unsupervised approach | |
CN107231383A (en) | The detection method and device of CC attacks | |
Agrawal et al. | Estimating strength of a DDoS attack in real time using ANN based scheme | |
Wang et al. | HTTP-SoLDiER: An HTTP-flooding attack detection scheme with the large deviation principle | |
Badis et al. | Toward a source detection of botclouds: a pca-based approach | |
Jiang et al. | A highly efficient remote access Trojan detection method |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C14 | Grant of patent or utility model | ||
GR01 | Patent grant | ||
TR01 | Transfer of patent right |
Effective date of registration: 20221104 Address after: 710061 Room 222, East of Floor 2, Office Building, Hanguang Community, No. 10, Hanguang South Section, Yanta District, Xi'an, Shaanxi Patentee after: Xi'an Longhe Linchuang Intellectual Property Agency Co.,Ltd. Address before: 400065 Chongqing Nan'an District huangjuezhen pass Chongwen Road No. 2 Patentee before: CHONGQING University OF POSTS AND TELECOMMUNICATIONS Effective date of registration: 20221104 Address after: Room 1111, Building 1, Wanting Building, Labor Community, Xixiang Street, Bao'an District, Shenzhen City, Guangdong Province, 518101 Patentee after: Shenzhen Occupy Information Technology Co.,Ltd. Address before: 710061 Room 222, East of Floor 2, Office Building, Hanguang Community, No. 10, Hanguang South Section, Yanta District, Xi'an, Shaanxi Patentee before: Xi'an Longhe Linchuang Intellectual Property Agency Co.,Ltd. |
|
TR01 | Transfer of patent right | ||
TR01 | Transfer of patent right |
Effective date of registration: 20240408 Address after: Room 05-5, 8th Floor, Hesheng Industrial and Commercial Building, No. 89 Fuxin Middle Road, Wangzhuang Street, Jin'an District, Fuzhou City, Fujian Province, 350000 Patentee after: Fuzhou Qilian Information Consulting Co.,Ltd. Country or region after: China Address before: Room 1111, Building 1, Wanting Building, Labor Community, Xixiang Street, Bao'an District, Shenzhen City, Guangdong Province, 518101 Patentee before: Shenzhen Occupy Information Technology Co.,Ltd. Country or region before: China |
|
TR01 | Transfer of patent right |