DDoS attack detection method and device based on information entropy and electronic equipment
The invention discloses a DDoS attack detection method and device based on information entropy and electronic equipment. The detection method comprises the following steps: taking T hours as a period,counting accessed ip data, including querying to obtain the geographic position of the accessed ip,...
Gespeichert in:
| 1. Verfasser: | |
|---|---|
| Format: | Patent |
| Sprache: | chi ; eng |
| Schlagworte: | |
| Online-Zugang: | Volltext bestellen |
| Tags: |
Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
|
| Zusammenfassung: | The invention discloses a DDoS attack detection method and device based on information entropy and electronic equipment. The detection method comprises the following steps: taking T hours as a period,counting accessed ip data, including querying to obtain the geographic position of the accessed ip, finally obtaining the total access number of a single ip and the source address geographic positioncorresponding to the ip, and calculating the information entropy; and performing DDoS attack judgment according to the real-time information entropy to obtain a DDoS attack detection result.
本发明公开了基于信息熵的DDoS攻击检测方法、装置和电子设备,其中,检测方法包括:以T小时为一个周期,统计访问的ip数据,包括查询得到访问的ip的地理位置,最终得到单个ip总计访问数目和ip对应的源地址地理位置,并计算信息熵;并根据实时的信息熵进行DDoS攻击判定,得到DDoS攻击检测结果。 |
|---|