摘要
阐述了DDoS攻击的特征与危害,进一步分析现有的处置技术的优缺点,明确DDoS攻击联动处置的必要性。分析联动处置中面临的困难点,并结合运营商的网络特点提出一种抗DDoS联动处置平台的实现方案。该方案可实现不同DDoS攻击检测与清洗设备的接入、跨设备进行统一检测与清洗;实现单点发现、全网防护与清洗的能力。经试验证明,采用该技术能进一步有效降低网络中30%的异常流量,有效保障网络与用户的安全。
This paper described the characteristics and hazards of DDoS attacks,analyzed advantages and disadvantages of the existing techniques,and then illustrated the necessity of linkage disposal technology in antiDDoSattacks.This paper analyzed the key points in the linkage disposal,and puts forward a scheme of anti DDoS linkage disposal platform based on the network characteristics of the operators.The platform can join different anti DDoS device,including detection device and cleaning device.Furthermore,the platform realized the uniform detection and cleaning of cross devices.While single point detected attack,all the cleaning devices can do uniform flow cleaning.The experimental results show that this technology can reduce about30%anomaly network traffic more,thus effectively protect the security of the network and users.
作者
粟栗
王庆栋
彭晋
陈美玲
SULi;WANGQingdong;PENGJin;CHENMeiling
出处
《电信网技术》
2017年第4期5-10,共6页
Telecommunications Network Technology
关键词
DDOS
联动
流量清洗
DDoS
linkage disposal
flow cleaning
