从南京“1.9”破坏信息系统案看侦办DDos类攻击案件

From the Detection of Nanjing "1.9"Destruction of Computer Information System Class of Attacks DDos Investigating the Case of the Case

DDos类网络攻击已经成为互联网上越来越流行的攻击模式,攻击者可以使用攻击软件,操纵肉鸡组成僵尸网络,对任意的互联网对象进行攻击。危害性巨大,但由于DDos攻击源的不确定性和跳转性等特点,给此类案件的侦查取证带来很大困难。本文立足江苏省南京市公安局网警支队侦破的一起DDos类攻击案件,剖析由于先期取证,有效掌握侦查主动权。本文从DDos攻击案件的侦查取证的现状、困难入手,着重阐述该案带给我们侦办此类案件的启示。

DDos attack type of network on the Internet has become more and more popular attack mode,the attacker can use against software,manipulate jan.01 botnet,composed of arbitrary Internet object to attack.Harmfulness huge,but because DDos attack source of uncertainty and jump characteristics,give such investigation of cases forensics enormous difficulties.Based on the police detachment,Nanjing city,jiangsu province public security bureau nets go together DDos attack case,because of prior forensics,effectively analyze master investigation initiative.This article from DDos attack investigation of a case of present situation,the difficulties of evidence,which focuses on the case bring us investigation cases of enlightenment.