CN107018084A - 基于sdn架构的ddos攻击防御网络安全系统和方法 - Google Patents
基于sdn架构的ddos攻击防御网络安全系统和方法 Download PDFInfo
- Publication number
- CN107018084A CN107018084A CN201710234826.8A CN201710234826A CN107018084A CN 107018084 A CN107018084 A CN 107018084A CN 201710234826 A CN201710234826 A CN 201710234826A CN 107018084 A CN107018084 A CN 107018084A
- Authority
- CN
- China
- Prior art keywords
- packet
- address
- module
- server
- database
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 33
- 238000001514 detection method Methods 0.000 claims abstract description 51
- 238000004140 cleaning Methods 0.000 claims abstract description 36
- 238000012545 processing Methods 0.000 claims abstract description 23
- 230000008569 process Effects 0.000 claims abstract description 19
- 238000000605 extraction Methods 0.000 claims description 9
- 102000006479 Heterogeneous-Nuclear Ribonucleoproteins Human genes 0.000 claims description 8
- 108010019372 Heterogeneous-Nuclear Ribonucleoproteins Proteins 0.000 claims description 8
- 206010033799 Paralysis Diseases 0.000 claims description 8
- 238000004458 analytical method Methods 0.000 claims description 7
- 230000000694 effects Effects 0.000 claims description 4
- 230000009977 dual effect Effects 0.000 claims description 3
- 238000005538 encapsulation Methods 0.000 claims description 3
- 230000009172 bursting Effects 0.000 claims 1
- 239000000284 extract Substances 0.000 claims 1
- 238000012546 transfer Methods 0.000 abstract description 2
- 238000005516 engineering process Methods 0.000 description 3
- 238000010586 diagram Methods 0.000 description 2
- 238000001914 filtration Methods 0.000 description 2
- 230000009545 invasion Effects 0.000 description 2
- 208000019901 Anxiety disease Diseases 0.000 description 1
- 238000006424 Flood reaction Methods 0.000 description 1
- 241001465754 Metazoa Species 0.000 description 1
- 241000700605 Viruses Species 0.000 description 1
- 230000016571 aggressive behavior Effects 0.000 description 1
- 230000036506 anxiety Effects 0.000 description 1
- 230000006399 behavior Effects 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000008901 benefit Effects 0.000 description 1
- 238000004364 calculation method Methods 0.000 description 1
- 230000007123 defense Effects 0.000 description 1
- 230000001066 destructive effect Effects 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 238000002513 implantation Methods 0.000 description 1
- 238000007689 inspection Methods 0.000 description 1
- 238000011835 investigation Methods 0.000 description 1
- 230000002045 lasting effect Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000004044 response Effects 0.000 description 1
- 238000012795 verification Methods 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/1458—Denial of Service
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L47/00—Traffic control in data switching networks
- H04L47/10—Flow control; Congestion control
- H04L47/12—Avoiding congestion; Recovering from congestion
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L47/00—Traffic control in data switching networks
- H04L47/10—Flow control; Congestion control
- H04L47/32—Flow control; Congestion control by discarding or delaying data units, e.g. packets or frames
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0227—Filtering policies
- H04L63/0236—Filtering by address, protocol, port number or service, e.g. IP-address or URL
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
Description
Claims (5)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710234826.8A CN107018084B (zh) | 2017-04-12 | 2017-04-12 | 基于sdn架构的ddos攻击防御网络安全方法 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710234826.8A CN107018084B (zh) | 2017-04-12 | 2017-04-12 | 基于sdn架构的ddos攻击防御网络安全方法 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN107018084A true CN107018084A (zh) | 2017-08-04 |
CN107018084B CN107018084B (zh) | 2020-10-27 |
Family
ID=59445975
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201710234826.8A Expired - Fee Related CN107018084B (zh) | 2017-04-12 | 2017-04-12 | 基于sdn架构的ddos攻击防御网络安全方法 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN107018084B (zh) |
Cited By (12)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107659402A (zh) * | 2017-10-18 | 2018-02-02 | 浪潮(北京)电子信息产业有限公司 | 一种数字加密货币的交易数据签名方法、装置及介质 |
CN108519912A (zh) * | 2018-04-04 | 2018-09-11 | 网易(杭州)网络有限公司 | 数据清洗方法、装置、计算机可读存储介质及电子设备 |
CN108667804A (zh) * | 2018-04-08 | 2018-10-16 | 北京大学 | 一种基于SDN架构的DDoS攻击检测及防护方法和系统 |
CN108712364A (zh) * | 2018-03-22 | 2018-10-26 | 西安电子科技大学 | 一种sdn网络的安全防御系统及方法 |
CN108881324A (zh) * | 2018-09-21 | 2018-11-23 | 电子科技大学 | 一种SDN网络的DoS攻击分布式检测与防御方法 |
CN109167767A (zh) * | 2018-08-17 | 2019-01-08 | 苏州亮磊知识产权运营有限公司 | 一种对于DHCP架构的DDoS攻击防御系统的工作方法 |
CN109391600A (zh) * | 2017-08-10 | 2019-02-26 | 东软集团股份有限公司 | 分布式拒绝服务攻击防护方法、装置、系统、介质及设备 |
CN110166480A (zh) * | 2019-05-31 | 2019-08-23 | 新华三信息安全技术有限公司 | 一种数据包的分析方法及装置 |
CN112968913A (zh) * | 2021-04-15 | 2021-06-15 | 浪潮思科网络科技有限公司 | 一种基于可编程交换机的ddos防御方法、装置、设备及介质 |
CN113411350A (zh) * | 2021-07-28 | 2021-09-17 | 广东省大湾区集成电路与系统应用研究院 | 防御ddos攻击的网络系统 |
CN114338206A (zh) * | 2021-12-31 | 2022-04-12 | 曙光网络科技有限公司 | Ddos攻击检测方法、装置、设备以及存储介质 |
CN114826741A (zh) * | 2022-04-27 | 2022-07-29 | 新华三信息安全技术有限公司 | 一种攻击监测系统及攻击监测方法 |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101447996A (zh) * | 2008-12-31 | 2009-06-03 | 成都市华为赛门铁克科技有限公司 | 分布式拒绝服务攻击防护方法、系统及设备 |
CN104104561A (zh) * | 2014-08-11 | 2014-10-15 | 武汉大学 | 一种基于OpenFlow协议的SDN防火墙状态检测方法及系统 |
CN104539625A (zh) * | 2015-01-09 | 2015-04-22 | 江苏理工学院 | 一种基于软件定义的网络安全防御系统及其工作方法 |
CN104767762A (zh) * | 2015-04-28 | 2015-07-08 | 亚信科技(南京)有限公司 | 一种安全防护系统 |
CN106534048A (zh) * | 2015-09-11 | 2017-03-22 | 中国电信股份有限公司 | 一种防范sdn拒绝服务攻击的方法、交换机和系统 |
-
2017
- 2017-04-12 CN CN201710234826.8A patent/CN107018084B/zh not_active Expired - Fee Related
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101447996A (zh) * | 2008-12-31 | 2009-06-03 | 成都市华为赛门铁克科技有限公司 | 分布式拒绝服务攻击防护方法、系统及设备 |
CN104104561A (zh) * | 2014-08-11 | 2014-10-15 | 武汉大学 | 一种基于OpenFlow协议的SDN防火墙状态检测方法及系统 |
CN104539625A (zh) * | 2015-01-09 | 2015-04-22 | 江苏理工学院 | 一种基于软件定义的网络安全防御系统及其工作方法 |
CN104767762A (zh) * | 2015-04-28 | 2015-07-08 | 亚信科技(南京)有限公司 | 一种安全防护系统 |
CN106534048A (zh) * | 2015-09-11 | 2017-03-22 | 中国电信股份有限公司 | 一种防范sdn拒绝服务攻击的方法、交换机和系统 |
Non-Patent Citations (1)
Title |
---|
徐川 等: "DDoS攻击检测研究综述", 《电信科学》 * |
Cited By (18)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109391600A (zh) * | 2017-08-10 | 2019-02-26 | 东软集团股份有限公司 | 分布式拒绝服务攻击防护方法、装置、系统、介质及设备 |
CN107659402A (zh) * | 2017-10-18 | 2018-02-02 | 浪潮(北京)电子信息产业有限公司 | 一种数字加密货币的交易数据签名方法、装置及介质 |
CN108712364B (zh) * | 2018-03-22 | 2021-01-26 | 西安电子科技大学 | 一种sdn网络的安全防御系统及方法 |
CN108712364A (zh) * | 2018-03-22 | 2018-10-26 | 西安电子科技大学 | 一种sdn网络的安全防御系统及方法 |
CN108519912A (zh) * | 2018-04-04 | 2018-09-11 | 网易(杭州)网络有限公司 | 数据清洗方法、装置、计算机可读存储介质及电子设备 |
CN108519912B (zh) * | 2018-04-04 | 2021-05-11 | 网易(杭州)网络有限公司 | 数据清洗方法、装置、计算机可读存储介质及电子设备 |
CN108667804A (zh) * | 2018-04-08 | 2018-10-16 | 北京大学 | 一种基于SDN架构的DDoS攻击检测及防护方法和系统 |
CN108667804B (zh) * | 2018-04-08 | 2020-09-29 | 北京大学 | 一种基于SDN架构的DDoS攻击检测及防护方法和系统 |
CN109167767A (zh) * | 2018-08-17 | 2019-01-08 | 苏州亮磊知识产权运营有限公司 | 一种对于DHCP架构的DDoS攻击防御系统的工作方法 |
CN108881324A (zh) * | 2018-09-21 | 2018-11-23 | 电子科技大学 | 一种SDN网络的DoS攻击分布式检测与防御方法 |
CN110166480A (zh) * | 2019-05-31 | 2019-08-23 | 新华三信息安全技术有限公司 | 一种数据包的分析方法及装置 |
CN112968913A (zh) * | 2021-04-15 | 2021-06-15 | 浪潮思科网络科技有限公司 | 一种基于可编程交换机的ddos防御方法、装置、设备及介质 |
CN113411350A (zh) * | 2021-07-28 | 2021-09-17 | 广东省大湾区集成电路与系统应用研究院 | 防御ddos攻击的网络系统 |
CN113411350B (zh) * | 2021-07-28 | 2023-02-24 | 广东省大湾区集成电路与系统应用研究院 | 防御ddos攻击的网络系统 |
CN114338206A (zh) * | 2021-12-31 | 2022-04-12 | 曙光网络科技有限公司 | Ddos攻击检测方法、装置、设备以及存储介质 |
CN114338206B (zh) * | 2021-12-31 | 2024-05-07 | 曙光网络科技有限公司 | Ddos攻击检测方法、装置、设备以及存储介质 |
CN114826741A (zh) * | 2022-04-27 | 2022-07-29 | 新华三信息安全技术有限公司 | 一种攻击监测系统及攻击监测方法 |
CN114826741B (zh) * | 2022-04-27 | 2024-02-09 | 新华三信息安全技术有限公司 | 一种攻击监测系统及攻击监测方法 |
Also Published As
Publication number | Publication date |
---|---|
CN107018084B (zh) | 2020-10-27 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN107018084A (zh) | 基于sdn架构的ddos攻击防御网络安全系统和方法 | |
CN109951500B (zh) | 网络攻击检测方法及装置 | |
Pang et al. | The devil and packet trace anonymization | |
CN106027559B (zh) | 基于网络会话统计特征的大规模网络扫描检测方法 | |
CN102271068B (zh) | 一种dos/ddos攻击检测方法 | |
DE60307581T2 (de) | Verbessertes geheimes Hashen der TCP SYN/FIN-Korrespondenz | |
CN103428224B (zh) | 一种智能防御DDoS攻击的方法和装置 | |
US20040054925A1 (en) | System and method for detecting and countering a network attack | |
US20130305365A1 (en) | System and method for optimization of security traffic monitoring | |
CN102487339A (zh) | 一种网络设备攻击防范方法及装置 | |
CN103297433A (zh) | 基于网络数据流的http僵尸网络检测方法及系统 | |
CN103746982B (zh) | 一种http网络特征码自动生成方法及其系统 | |
CN104135474B (zh) | 基于主机出入度的网络异常行为检测方法 | |
CN106357685A (zh) | 一种防御分布式拒绝服务攻击的方法及装置 | |
KR100684602B1 (ko) | 세션 상태전이를 이용한 시나리오 기반 침입대응 시스템 및그 방법 | |
KR20080028381A (ko) | 타겟 희생자 자체-식별 및 제어에 의해 ip네트워크들에서 서비스 거부 공격들에 대한 방어 방법 | |
Sun et al. | Detection and classification of malicious patterns in network traffic using Benford's law | |
CN103944788B (zh) | 基于网络通信行为的未知木马检测方法 | |
KR20080026122A (ko) | 타겟 희생자 자체-식별 및 제어에 의해 ip네트워크들에서 서비스 거부 공격들에 대한 방어 방법 | |
CN106302450A (zh) | 一种基于ddos攻击中恶意地址的检测方法及装置 | |
CN106850571A (zh) | 僵尸网络家族的识别方法和装置 | |
US20180020014A1 (en) | Malicious communication pattern extraction device, malicious communication pattern extraction system, malicious communication pattern extraction method, and malicious communication pattern extraction program | |
Saad et al. | ICMPv6 flood attack detection using DENFIS algorithms | |
JP2004140524A (ja) | DoS攻撃検知方法、DoS攻撃検知装置及びプログラム | |
JP2002124996A (ja) | 高速パケット取得エンジン・セキュリティ |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
TR01 | Transfer of patent right | ||
TR01 | Transfer of patent right |
Effective date of registration: 20210425 Address after: 510000 room 101-1, building 2, 95 daguanzhong Road, Tianhe District, Guangzhou City, Guangdong Province (office only) Patentee after: Guangzhou Zhongtian Technology Consulting Co.,Ltd. Address before: 1 No. 211167 Jiangsu city of Nanjing province Jiangning Science Park Hongjing Road Patentee before: NANJING INSTITUTE OF TECHNOLOGY Effective date of registration: 20210425 Address after: 518000 c2204, block ABCD, building 3, phase I, Tianan cloud Valley Industrial Park, Gangtou community, Bantian street, Longgang District, Shenzhen City, Guangdong Province Patentee after: Shenzhen fengyuanxin Technology Industry Holding Co.,Ltd. Address before: 510000 room 101-1, building 2, 95 daguanzhong Road, Tianhe District, Guangzhou City, Guangdong Province (office only) Patentee before: Guangzhou Zhongtian Technology Consulting Co.,Ltd. |
|
CF01 | Termination of patent right due to non-payment of annual fee | ||
CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20201027 |