| 发明名称 |
Attack Defense Method and Device |
| 摘要 |
An attack defense method and device. The method includes counting the number of renegotiations in a transmission control protocol (TCP) connection, where the number of the renegotiations is the number of repeated negotiations between a client and a server in the TCP connection. When the number of the renegotiations in the TCP connection is greater than a preset threshold of the number of renegotiations, determining that the TCP connection is an abnormal connection and disconnecting the TCP connection. Embodiments of the present invention also provide an attack defense device, implementing effective defense against a secure socket layer (SSL) denial of service (DOS) attack behavior. |
| 申请公布号 |
US2014325648(A1) |
申请公布日期 |
2014.10.30 |
| 申请号 |
US201414330722 |
申请日期 |
2014.07.14 |
| 申请人 |
Huawei Technologies Co., Ltd. |
发明人 |
Liu Gaoqiang;Pan Yongbo;Yang Li |
| 分类号 |
H04L29/06 |
主分类号 |
H04L29/06 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. An attack defense method, comprising:
counting a number of renegotiations in a transmission control protocol (TCP) connection, wherein the number of the renegotiations is a number of repeated negotiations between a client and a server in the TCP connection; determining that the TCP connection is an abnormal connection when the number of the renegotiations in the TCP connection is greater than a preset threshold of the number of renegotiations; and disconnecting the TCP connection. |
| 地址 |
Shenzhen CN |
