首页> 外国专利> Techniques for defense against domain name system (DNS) cyber-attacks

Techniques for defense against domain name system (DNS) cyber-attacks

机译：防御域名系统的技术（DNS）网络攻击

页面导航

摘要
著录项
相似文献

摘要

A method and system for detecting and mitigation recursive domain name system (DNS) cyber-attacks are disclosed. The method includes receiving DNS queries directed to a DNS resolver, wherein the DNS resolver is communicatively connected between at least one client and at least one name server; parsing each received DNS query to extract a hostname identified therein; updating at least one array of Bloom filters using the extracted hostname; computing a ratio of an unrecognized hostnames per sample (UPS) based on the contents of the at least one array; and determining if the UPS ratio is abnormal, wherein an abnormal UPS ratio is an indication of an attack.

机译：公开了一种用于检测和缓解递归域名系统（DNS）网络攻击的方法和系统。该方法包括接收指向DNS解析器的DNS查询，其中DNS解析器是通信地连接在至少一个客户端和至少一个名称服务器之间;解析每个接收的DNS查询以提取其中识别的主机名;使用提取的主机名更新至少一系列盛开过滤器;根据至少一个阵列的内容计算每个样本（UPS）的未识别主机名的比率;并确定UPS比率是否异常，其中异常UPS比率是攻击的指示。

著录项

公开/公告号US10938851B2

专利类型
公开/公告日2021-03-02

原文格式PDF
申请/专利权人 RADWARE LTD.;
展开▼

申请/专利号US201815940371
发明设计人 LEV MEDVEDOVSKY;DAVID AVIV;
展开▼

申请日2018-03-29
分类号H04L29/06;H04L29/12;H04L12/743;
国家 US
入库时间 2022-08-24 17:25:50

相似文献

专利
外文文献
中文文献