Multiple detector methods and systems for defeating low and slow application DDoS attacks

发明授权

US10284580B2 Multiple detector methods and systems for defeating low and slow application DDoS attacks 有权

请登陆查看更多内容

专利标题： Multiple detector methods and systems for defeating low and slow application DDoS attacks
申请号： US15586967

申请日： 2017-05-04
公开(公告)号： US10284580B2

公开(公告)日： 2019-05-07
发明人: Ehab Al-Shaer , Qi Duan
申请人： Ehab Al-Shaer , Qi Duan
申请人地址： US NC Charlotte
专利权人： The University Of North Carolina At Charlotte
当前专利权人： The University Of North Carolina At Charlotte
当前专利权人地址： US NC Charlotte
代理机构： Clements Bernard Walker PLLC
代理商 Christopher L. Bernard
主分类号： H04L29/06
IPC分类号： H04L29/06 ; H04L29/08

Multiple detector methods and systems for defeating low and slow application DDoS attacks

摘要：

Methods and systems for detecting and defeating a low and slow application DDoS attack, comprising: computing the Entropy of a plurality of detectors, at least in part selected from a group Geo detector, a group response size detector, a group preference detector, and an individual client behavior detector, wherein the plurality of detectors each describe a feature of traffic affected by the DDoS attack; composing the plurality of detectors on one or more of a Receiver Operating Characteristic (ROC) curve basis and a correlation basis; and implementing a countermeasure to mitigate the DDoS attack.

公开/授权文献

US20170324757A1 MULTIPLE DETECTOR METHODS AND SYSTEMS FOR DEFEATING LOW AND SLOW APPLICATION DDOS ATTACKS 公开/授权日：2017-11-09

信息查询

Espacenet