Multiple detector methods and systems for defeating low and slow application DDoS attacks

Invention Grant

US10284580B2 Multiple detector methods and systems for defeating low and slow application DDoS attacks 有权

Please log in to see more content

Patent Title: Multiple detector methods and systems for defeating low and slow application DDoS attacks
Application No.: US15586967

Application Date: 2017-05-04
Publication No.: US10284580B2

Publication Date: 2019-05-07
Inventor: Ehab Al-Shaer , Qi Duan
Applicant: Ehab Al-Shaer , Qi Duan
Applicant Address: US NC Charlotte
Assignee: The University Of North Carolina At Charlotte
Current Assignee: The University Of North Carolina At Charlotte
Current Assignee Address: US NC Charlotte
Agency: Clements Bernard Walker PLLC
Agent Christopher L. Bernard
Main IPC: H04L29/06
IPC: H04L29/06 ; H04L29/08

Multiple detector methods and systems for defeating low and slow application DDoS attacks

Abstract:

Methods and systems for detecting and defeating a low and slow application DDoS attack, comprising: computing the Entropy of a plurality of detectors, at least in part selected from a group Geo detector, a group response size detector, a group preference detector, and an individual client behavior detector, wherein the plurality of detectors each describe a feature of traffic affected by the DDoS attack; composing the plurality of detectors on one or more of a Receiver Operating Characteristic (ROC) curve basis and a correlation basis; and implementing a countermeasure to mitigate the DDoS attack.

Public/Granted literature

US20170324757A1 MULTIPLE DETECTOR METHODS AND SYSTEMS FOR DEFEATING LOW AND SLOW APPLICATION DDOS ATTACKS Public/Granted day:2017-11-09

Information query

Espacenet