%0 Journal Article %A DENG Shi-qi %A LEI Min %A LIU Xiao-ming %A WU Xu-dong %A ZHOU Chun-ru %T Research on Defense of Slow DDoS Attack on Web Server Application Layer %D 2017 %R 10.13190/j.jbupt.2017.s.017 %J Journal of Beijing University of Posts and Telecommunications %P 77-80 %V 40 %N s1 %X Web server can't provide normal service for users under DDoS attack. DDoS attack on application layer is different from DDoS attack on network layer, and each request sent by DDoS attack on application layer is legal. Slow DDoS attack mainly uses thread-based architecture characteristics of Web server. Web server of this type will open a new thread for every new connection. After the attacker has built a normal HTTP connection with Web server successfully, he will hold this connection through all kinds of methods to take up a lot of resources of Web server. The principle of slow DDoS on application layer is analyzed and related defense methods are proposed, which can improve ability to resist DDoS attack of Web server and safety performance. %U https://journal.bupt.edu.cn/EN/10.13190/j.jbupt.2017.s.017