首页> 外国专利> METHOD AND APPARATUS FOR DEFENDING AGAINST DISTRIBUTED DENIAL-OF-SERVICE ATTACK DUE TO TCP STATELESS HOG ON TCP SERVER

METHOD AND APPARATUS FOR DEFENDING AGAINST DISTRIBUTED DENIAL-OF-SERVICE ATTACK DUE TO TCP STATELESS HOG ON TCP SERVER

机译：TCP服务器上基于TCP无状态HOG的分布式拒绝服务攻击的防御方法和装置

页面导航

摘要
著录项
相似文献

摘要

PPROBLEM TO BE SOLVED: To provide a defence against a distributed denial-of-service (DDos) attack in a fixed embodiment. PSOLUTION: The distributed denial-of-service (DDoS) attack due to the TCP stateless hog is defended by using an extension for a keep-alive mechanism given by an RFC 1122. A TCP server receives a new TCP connection request from a possible attacker and sends back a keep-alive probe packet using an "invalid" sequence number in response to the request. Exemplarily, this "invalid" sequence number contains a random number selected to be so far away from a real current sequence number. When a response packet is received from a potential attacker, the TCP server verifies correctness of a positive response number in the received packet, thereby judging whether the potential attacker is possible to be the TCP stateless hog. PCOPYRIGHT: (C)2005,JPO&NCIPI

机译：

要解决的问题：在固定的实施例中，提供针对分布式拒绝服务（DDos）攻击的防御措施。

解决方案：通过使用RFC 1122给出的保持活动机制的扩展，可以防御由于TCP无状态生猪而引起的分布式拒绝服务（DDoS）攻击。TCP服务器从接收到新的TCP连接请求可能的攻击者，并使用“无效”序列号发回保持活动的探测数据包以响应该请求。例如，该“无效”序列号包含一个随机数，该随机数被选择为与实际当前序列号相距甚远。当从潜在攻击者接收到响应数据包时，TCP服务器验证接收到的数据包中正响应号的正确性，从而判断潜在攻击者是否有可能成为TCP无状态生猪。

版权：（C）2005，JPO＆NCIPI 展开▼

著录项

公开/公告号JP2005073272A

专利类型
公开/公告日2005-03-17

原文格式PDF
申请/专利权人 LUCENT TECHNOL INC;
展开▼

申请/专利号JP20040244509
发明设计人 LIN DONG;
展开▼

申请日2004-08-25
分类号H04L12/66;
国家 JP
入库时间 2022-08-21 22:33:34

相似文献

专利
外文文献
中文文献