Abstract
This paper described the basic principles of SYN flood attacks, and then described in detail the implementation of two more effective and convenient defense method, SYN-cookie technology and state-based monitoring of the source address technology. SYN-cookie technology achieved a stateless handshake, to prevent the resources consumption of SYN flood. Based on monitoring of the source address state technology can connect to each server’s IP address to monitor the status of the initiative to take measures to prevent SYN flood attacks. These two technologies are the most mature and proven technology for the defense of all SYN flood attacks.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Yan, X., Wang, Q., Li, M.: SYN Flood Attacks and Prevention. Computer Applications (2000)
Sun, X., Zhu, X., Wang, Y.: DDoS TCP Flood Attacks, and Under the Measures. Network Security Technology and Application (2004)
Li, L., Zhao, Y., Chen, C.: TCP SYN Flooding and Coping Strategies Principle. Web and Application (2003)
Chen, B.: SYN Flood Attack Principle Implementation and Prevention. Computer Applications and Research (2003)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2011 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Wei, X. (2011). Analysis and Protection of SYN Flood Attack. In: Jin, D., Lin, S. (eds) Advances in Computer Science, Intelligent System and Environment. Advances in Intelligent and Soft Computing, vol 106. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-23753-9_30
Download citation
DOI: https://doi.org/10.1007/978-3-642-23753-9_30
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-23752-2
Online ISBN: 978-3-642-23753-9
eBook Packages: EngineeringEngineering (R0)