Moving target defense method based on Internet of Things DDoS attack

Abstract

The invention provides a mobile target defense method based on an internet of things DDoS attack, and the method comprises the following steps: 1), deploying agent nodes which comprise an identity authentication node and a relay forwarding node; 2) deploying and operating a DDoS detection function at the proxy node; 3) under the condition of no DDoS attack, when a user client sends an access request, verifying the legality of the user, if the verification is passed, executing a jump protocol, jumping network connection to a relay forwarding node, and completing the access of the user to the server; 4) if the DDoS attack is detected, encrypting and switching the IPv6 addresses of all proxy nodes, and writing the encrypted IPv6 address of the identity authentication node into a domain name resolution system; 5) the identity authentication node executes a specific identity authentication method to exclude Internet of Things equipment, and 6) the real identity of an attacker is determined through the intersection of multiple times of login information. The Internet of Things DDoS attack can be resisted, and the real identity of the attacker can be determined.

Description

Technical field [0001] The present invention relates to an identical network defense method, specifically a mobile target defense method based on an Internet of Th. DDoS attack, belonging to the field of DDOS attack defense in the Internet of Things equipment. Background technique [0002] With the arrival of the 5G era, the type and number of uses of the Internet of Things equipment is also increasing, such as smart cameras, smart home appliances, etc. However, it is not sufficient for security in terms of design when the IoT device is designed, so it is often controlled by hacker to form a zombie network. While convenient people live, these Internet of Things devices also brings a threat to the security of the network environment. Among them, a simple and inexpensive attack method is often hacked by means of the Internet of Things equipment - DDOS attacks. Such as: In 2016, a hacker took a hacker with a large number of Internet of Things to make up the zombie network to the DYN...

AI Technical Summary

Problems solved by technology

[0003] The reason is that the security aspects of IoT devices are not fully considered when designing, and traditional security scanning solutions are difficult to defend against the security of IoT devices. We have long used them to discover traditional computers, assess and manage related vulnerabilities and risks , solutions to detect and respond to potential attacks do not take into account these less secure IoT devices

Hackers are well aware that enterprise IoT devices cannot be protected at the same level as traditional devices and software

Images