发明公开
EP2109282A1 Method and system for mitigation of distributed denial of service attacks based on IP neighbourhood density estimation
有权
方法和系统基于IP附近的密度的估计的分布式拒绝服务攻击的衰减
- 专利标题: Method and system for mitigation of distributed denial of service attacks based on IP neighbourhood density estimation
- 专利标题(中): 方法和系统基于IP附近的密度的估计的分布式拒绝服务攻击的衰减
-
申请号: EP08154393.6申请日: 2008-04-11
-
公开(公告)号: EP2109282A1公开(公告)日: 2009-10-14
- 发明人: Roshandel, Mehran , Goldstein, Markus , Reif, Matthias , Stahl, Armin , Breue, Thomas
- 申请人: Deutsche Telekom AG
- 申请人地址: Friedrich-Ebert-Allee 140 53113 Bonn DE
- 专利权人: Deutsche Telekom AG
- 当前专利权人: Deutsche Telekom AG
- 当前专利权人地址: Friedrich-Ebert-Allee 140 53113 Bonn DE
- 代理机构: Vossius & Partner
- 主分类号: H04L29/06
- IPC分类号: H04L29/06
摘要:
The invention describes a method and system of protecting computer systems from attacks over a network to which the computer system is connected, the method comprising the steps of (a) establishing, during attack-free operation of the computer system, a database in the form of a source-IP-histogram storing all request received from all sender at the computer system; (b) calculating and storing a smoothed source-IP-histogram from the source-IP-histogram obtained in step a); (c) applying a probability threshold on the smoothed source-IP-histogram to differentiate between acceptable sender and sender to be rejected; (d) monitoring requests to the computer system; (e) accepting a new sender if its assumed probability value derived from the smoothed-IP-histogram exceeds the threshold.
公开/授权文献
信息查询
