TERMINAL DETECTING SERVICE DENIAL ATTACKS TO MINIMIZE PERFORMANCE DEGRADATION DUE TO SIP FLOODING ATTACKS, NETWORK EQUIPMENT, AND A METHOD THEREOF

摘要

PURPOSE: A terminal detecting service, network equipment, and a method thereof are provided to detects service denial attacks based on a SIP(Session Initiation Protocol), and to rapidly cope with the attacks in advance.;CONSTITUTION: An IP address scanning sensing unit(220) checks first pattern information which shows change of a destination IP of packets in preset timeout. An available port scanning sensor(230) checks second pattern information indicating uniform change of destination port numbers with the packets. When the first pattern information or the second pattern information is detected, a network control unit(240) blocks connection requests of the packets transmitted from a source IP.;COPYRIGHT KIPO 2010