| Distributed Denial of Service (DDoS) Attack is a newly developed attack type, which is the extension of Denial of Service (DoS) Attack. Due to its distributed characteristic, DDoS attacks possess more attack resources and have more destroying power. So, it is very difficult to keep them away.Recently there are four kinds of DDos attack defense policies which are based on attacking source network, victim network, intermediate network which is the network between attacking source network and victim network. For the first three policy, there are some mature technologies and systems, for example D-WARD system based on attacking source network, intrusion detection system on victim network and core router packet filtering technology. The distributed DDoS defense policy combines all defense nodes distributed deployed on source network, victim network and intermediate network together and put them in a cooperated working status through an infrastructure. Unfortunately, there are few researches on this subject.In this dissertation, the theory and classification of DDoS attack and DDoS attacking tool are firstly be analyzed. Then DDoS defense methods are analyzed in detail according to the periods which are before attack, during... |
PDF Full Text Request