首页>
外国专利>
TRAFFIC ANALYSIS DIAGNOSIS DEVICE, TRAFFIC ANALYSIS DIAGNOSIS SYSTEM, AND TRAFFIC TRACKING SYSTEM
TRAFFIC ANALYSIS DIAGNOSIS DEVICE, TRAFFIC ANALYSIS DIAGNOSIS SYSTEM, AND TRAFFIC TRACKING SYSTEM
展开▼
机译:交通分析诊断设备,交通分析诊断系统和交通跟踪系统
展开▼
页面导航
摘要
著录项
相似文献
摘要
Provided are a traffic analysis diagnosis device, a traffic analysis diagnosis system, and a traffic trace system capable of easily and accurately detecting an unauthorized access such as (D)DoS attack. The traffic analysis diagnosis device (105) includes: means for classifying packets into k packet types (k is a natural number not smaller than 1) according to the protocol type, the port number, and the like and monitoring the number of values of the field having the header of a packet passing through an observation point set on a network for each of the packet types; means for monitoring the number of values of a specific field of the payload section of the packets for each of the packet types; and means for performing network traffic diagnosis by analyzing the fluctuation of the number of values of the field for each of the packet types. Thus, it is possible to detect a small-scale (D)DoS attack in which the number of addresses only slightly changes, thereby improving the detection accuracy of an unauthorized access.
展开▼