Netinfo Security ›› 2017, Vol. 17 ›› Issue (5): 37-43.doi: 10.3969/j.issn.1671-1122.2017.05.006

• Orginal Article • Previous Articles     Next Articles

Review of Network High Flow Distributed Denial of Service Attack and Defense Mechanisms

Heng LI1,2, Huawei SHEN3, Xueqi CHENG3, Yong ZHAI1   

  1. 1. National Geomatics Center of China, Beijing 100830, China
    2. College of Engineering & Science, University of Chinese Academy of Sciences, Beijing 100049, China;
    3. Institute of Computing Technology of Chinese Academy of Sciences, Beijing 100190, China
  • Received:2017-03-01 Online:2017-05-20 Published:2020-05-12

Abstract:

Distributed Denial of Service (DDoS) attack is one of the extremely familiar network attack methods. In the condition of high flow capacity, DDoS causes network congestion by means of manufacturing useless data, finally leading to resource exhausting and normal service interrupt. No effective defense for now is against the high flow capacity DDoS. Based on preliminary study and literature researches, this thesis summarizes and analyses the domestic and international research progress of network high flow DDoS defense mechanisms, emphasis on attacks detection and defense principle and attack test, makes a summary of features and disadvantages of different detection and defense mechanisms, in order to establish the comprehensive and effective network high flow DDoS defense mechanisms.

Key words: distributed denial of service (DDoS), high flow, attacks detection, attacks defense, network security

CLC Number: