An embodiment of the invention discloses a distributed denial of service DDoS attack detection method and related equipment, which is applied to a software defined network SDN, which includes a controller and at least one boundary switch. The method includes: listening to the first request message in the first window of the preset, and calculating the current request rate of the target device in the SDN for the first request message, the first request message is processed by the controller that the boundary switch of the target device corresponding to the controller needs. The request data stream is asked to determine whether the target device is in an abnormal state on the basis of the current request rate, and if the target device is in an abnormal state, the flow table matching information corresponding to the target device is queried, and the target device is determined by the DDoS attack on the basis of the flow table matching information. By adopting the invention, the accuracy of DDoS attack detection for SDN can be enhanced.
【技術實現步驟摘要】
【國外來華專利技術】PCT國內申請,說明書已公開。
【技術保護點】
PCT國內申請,權利要求書已公開。
【技術特征摘要】
【國外來華專利技術】PCT國內申請,...
【專利技術屬性】
技術研發人員:徐通,鄭濤,董平,孫嘉楠,
申請(專利權)人:華為技術有限公司,
類型:發明
國別省市:廣東,44
還沒有人留言評論。發表了對其他瀏覽者有用的留言會獲得科技券。