Skip to Main Content
In this paper, an expert system model is proposed to defend DDoS attacks. In this model, the prior knowledge such as access control information is acquired from the ordinary network information by our proposed access control information maintenance module firstly. These access control information are then used to be the filtering policy of the defending system when the attack traffic is coming. The major contributions in this paper are: the defending system based on expert system is proposed to solve the survival problem of DDoS completely. The characteristic analysis procedure is proposed to observe the behavior of DDoS. The filtering policy based upon the access control information including blacklist and access control list is proposed to defend DDoS. The trust-based maintenance module is proposed to acquire the access control information.