DDOS (Distributed Denial of Service) attack source disposal method and device based on BGP (Border Gateway Protocol) flowspec

DDOS (Distributed Denial of Service) attack source disposal method and device based on BGP (Border Gateway Protocol) flowspec

The invention discloses a DDOS (Distributed Denial of Service) attack source handling method and device based on BGPflowspec, and the method comprises the steps: building a BGPflowspec routing network; a BGPFlowspec route matching rule template is defined, and a BGPFlowspec route matching rule templ...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
1. Verfasser: GUO ZHAOXU
Format: Patent
Sprache:chi ; eng
Schlagworte:
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:The invention discloses a DDOS (Distributed Denial of Service) attack source handling method and device based on BGPflowspec, and the method comprises the steps: building a BGPflowspec routing network; a BGPFlowspec route matching rule template is defined, and a BGPFlowspec route matching rule template is defined; a BGPFlowspec route handling rule template is defined, and a BGPFlowspec route handling rule template is defined; constructing a DDOS attack source disposal model; performing task analysis, and confirming a matched DDOS attack source disposal model; performing task translation to generate a control instruction; and entering different disposal processes according to the disposal modes. According to the method and the device, a DDOS attack source disposal model is constructed by defining a BGPflowspec routing matching rule and a disposal rule, a BGPflowspec routing strategy is published by an adaptive model as required, and the DDOS attack source is disposed. 本发明公开一种基于BGPflowspec的DDOS攻击源处置方法及装置,其中,该方法