FIELD: physics.
SUBSTANCE: invention relates to computer engineering. Method of protecting a service server from DDoS attacks comprises switching current connections of the service server, except for nodes from the white list of IP addresses, to a backup server, where each compound is assigned a numerical identifier i = {1 ... I}; resetting the current connection on the backup server having a first identifier; monitoring network traffic on a backup server and calculating a time interval t1 before a repeated request for a connection having a first identifier, and writing it into a memory array T; successively resetting each current connection i and monitoring network traffic; at repeated request for connection with current identifier, time intervals ti are calculated, which are recorded in memory array T and presence of coincidence of values of time intervals ti is calculated, at which connection identifiers are combined into corresponding arrays Pj, from which block list of IP addresses is formed; switching connections not belonging to arrays Pj from standby server to service server; all connections are reset on the backup server and further operation of the service server is performed taking into account the block list of IP addresses.
EFFECT: improvement of service server security.
1 cl, 2 dwg
| Title | Year | Author | Number |
|---|---|---|---|
| METHOD OF PROTECTION OF SERVICE SERVER FROM DDOS ATTACK | 2018 |
|
RU2679219C1 |
| SYSTEM AND METHOD OF REDUCING FALSE RESPONSES WHEN DETECTING NETWORK ATTACK | 2011 |
|
RU2480937C2 |
| METHOD OF REDUCING DAMAGE CAUSED BY NETWORK ATTACKS TO A VIRTUAL PRIVATE NETWORK | 2018 |
|
RU2685989C1 |
| METHOD OF PROTECTING COMMUNICATION NETWORK SERVICE SERVERS AGAINST COMPUTER ATTACKS | 2019 |
|
RU2718650C1 |
| PROTECTION METHOD OF VIRTUAL PRIVATE COMMUNICATION NETWORKS ELEMENTS FROM DDOS-ATTACKS | 2016 |
|
RU2636640C2 |
| METHOD OF PROTECTING NODES OF VIRTUAL PRIVATE COMMUNICATION NETWORK FROM DDoS-ATTACKS WITH METHOD OF MANAGING QUANTITY OF RENDERED COMMUNICATION SERVICES TO SUBSCRIBERS | 2018 |
|
RU2675900C1 |
| METHOD OF MODELING DAMAGE EVALUATION CAUSED BY NETWORK AND COMPUTER ATTACKS TO VIRTUAL PRIVATE NETWORKS | 2016 |
|
RU2625045C1 |
| SYSTEM AND METHOD FOR ACCESS REQUEST LIMITS | 2016 |
|
RU2666289C1 |
| METHOD OF CONSTRUCTING DATA NETWORKS WITH HIGH LEVEL OF SECURITY FROM DDoS ATTACKS | 2015 |
|
RU2576488C1 |
| METHOD OF DETECTING UNAUTHORIZED USE OF NETWORK DEVICES OF LIMITED FUNCTIONALITY FROM A LOCAL NETWORK AND PREVENTING DISTRIBUTED NETWORK ATTACKS FROM THEM | 2018 |
|
RU2703329C1 |
