USER IDENTIFICATION METHOD OF ATTACK/ANOMALY TRAFFIC IN MOBILE COMMUNICATION NETWORK

USER IDENTIFICATION METHOD OF ATTACK/ANOMALY TRAFFIC IN MOBILE COMMUNICATION NETWORK

The present invention relates to a method for identifying attacking/abnormal traffic inducing users in a mobile communication network, the method comprising the steps of: collecting and analyzing a GTP user (GTP-U) message to detect attacking/abnormal traffic; extracting a key to be used for referri...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: CHO, JUN HYUNG, WOO, SU JEONG, IM, CHAE TAE, OH, JOO HYUNG, KIM, SE KWON, KOO, BON MIN, JANG, WOUNG, PARK, SEONG MIN
Format: Patent
Sprache:eng ; kor
Schlagworte:
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:The present invention relates to a method for identifying attacking/abnormal traffic inducing users in a mobile communication network, the method comprising the steps of: collecting and analyzing a GTP user (GTP-U) message to detect attacking/abnormal traffic; extracting a key to be used for referring to an index hash table from the GTP-U message detected as the attacking/abnormal traffic; referring to the index hash table for an index value using the extracted key; referring to a session hash table using the index value; and identifying attacking/abnormal traffic inducing user using session information retrieved from the session hash table.