DDoS-ATTACKS DETECTION SYSTEM AND METHOD Russian patent published in 2018 - IPC G06F21/55 G06F21/57 H04L29/06 

FIELD: security means.

SUBSTANCE: invention relates to the field of information security technologies. Disclosed is the DDoS-attacks determining hardware and software system, which contains protection means against the DDoS-attacks, the server containing the services, accessed by users by querying the server, information security tools, hardware with built-in security mechanisms, and the administration tool; at that, the information security tools and hardware with built-in protection mechanisms can receive information from services and configure them, and also exchange information with the security tool against DdoS-attacks; the administration tool is designed to configure the information security responsible tools, and hardware with built-in protection mechanisms; at that, the security tool against DDoS-attacks is designed to: intercept requests from users to the server; selection of data and their parameters from the user requests; constructing the user vector from selected data and their parameters from the intercepted requests; comparing the user vector with the reference user vector; determining the DDoS-attack on a server in the event that: a user vector is different from the reference user vector, the data parameters from user requests are characteristic of a DDoS-attack on a server.

EFFECT: technical result consists in enabling of the DDoS-attacks definition.

6 cl, 9 dwg