论文部分内容阅读
DDoS(DistributeDenialofService,分布式拒绝服务攻击)利用TCP/IP的弱点,产生大量合法的数据请求,导致服务方不能向合法用户提供正常的服务。文章在归纳TCP/IP数据包、数据流特征的基础上,建立基于数据挖掘技术的入侵检测系统,可以较好地检测和防护该类攻击。
DDoS (Distributed Denial of Service) exploits the weakness of TCP / IP to generate a large number of legitimate data requests, resulting in the service provider being unable to provide normal service to legitimate users. Based on summarizing the characteristics of TCP / IP data packets and data streams, this paper establishes an intrusion detection system based on data mining technology, which can detect and defend such attacks well.