<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE article PUBLIC "-//NLM//DTD JATS (Z39.96) Journal Publishing DTD v1.3 20210610//EN" "JATS-journalpublishing1-3.dtd">
<article article-type="research-article" dtd-version="1.3" xmlns:mml="http://www.w3.org/1998/Math/MathML" xmlns:xlink="http://www.w3.org/1999/xlink" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xml:lang="ru"><front><journal-meta><journal-id journal-id-type="publisher-id">vdgtu</journal-id><journal-title-group><journal-title xml:lang="ru">Вестник Дагестанского государственного технического университета. Технические науки</journal-title><trans-title-group xml:lang="en"><trans-title>Herald of Dagestan State Technical University. Technical Sciences</trans-title></trans-title-group></journal-title-group><issn pub-type="ppub">2073-6185</issn><issn pub-type="epub">2542-095X</issn><publisher><publisher-name>Daghestan State Technical University</publisher-name></publisher></journal-meta><article-meta><article-id pub-id-type="doi">10.21822/2073-6185-2025-52-2-139-149</article-id><article-id custom-type="elpub" pub-id-type="custom">vdgtu-1780</article-id><article-categories><subj-group subj-group-type="heading"><subject>Research Article</subject></subj-group><subj-group subj-group-type="section-heading" xml:lang="ru"><subject>ИНФОРМАЦИОННЫЕ ТЕХНОЛОГИИ И ТЕЛЕКОММУНИКАЦИИ</subject></subj-group><subj-group subj-group-type="section-heading" xml:lang="en"><subject>INFORMATION TECHNOLOGY AND TELECOMMUNICATIONS</subject></subj-group></article-categories><title-group><article-title>Механизм защиты от DDoS–атаки, направленной на блокирование учётных записей</article-title><trans-title-group xml:lang="en"><trans-title>Protection mechanism against ddos attack intended to block account</trans-title></trans-title-group></title-group><contrib-group><contrib contrib-type="author" corresp="yes"><contrib-id contrib-id-type="orcid">https://orcid.org/0000-0003-2454-3600</contrib-id><name-alternatives><name name-style="eastern" xml:lang="ru"><surname>Разумов</surname><given-names>П. В.</given-names></name><name name-style="western" xml:lang="en"><surname>Razumov</surname><given-names>P. V.</given-names></name></name-alternatives><bio xml:lang="ru"><p>Разумов Павел Владимирович, аспирант 3 курса, кафедра «Кибербезопасность информационных систем»</p><p>344000, г. Ростов-на-Дону, пл. Гагарина, 1</p></bio><bio xml:lang="en"><p>Razumov Pavel Vladimirovich, 3rd year Postgraduate student, Department of Cybersecurity of Information Systems</p><p>1 Gagarin Square, Rostov-on-Don 344000</p></bio><email xlink:type="simple">razumov1996@inbox.ru</email><xref ref-type="aff" rid="aff-1"/></contrib><contrib contrib-type="author" corresp="yes"><name-alternatives><name name-style="eastern" xml:lang="ru"><surname>Черкесова</surname><given-names>Л. В.</given-names></name><name name-style="western" xml:lang="en"><surname>Cherkesova</surname><given-names>L. V.</given-names></name></name-alternatives><bio xml:lang="ru"><p>Черкесова Лариса Владимировна, доктор физико-математических наук, профессор, профессор,кафедра «Кибербезопасность информационных систем»</p><p>344000, г. Ростов-на-Дону, пл. Гагарина, 1</p></bio><bio xml:lang="en"><p>Larisa V. Cherkesova, Dr. Sci. (Physics and Mathematics), Prof., Prof., Department «Cybersecurity of information Systems»</p><p>1 Gagarin Square, Rostov-on-Don 344000</p></bio><email xlink:type="simple">chia2002@inbox.ru</email><xref ref-type="aff" rid="aff-1"/></contrib><contrib contrib-type="author" corresp="yes"><name-alternatives><name name-style="eastern" xml:lang="ru"><surname>Ревякина</surname><given-names>Е. А.</given-names></name><name name-style="western" xml:lang="en"><surname>Revyakina</surname><given-names>E. A.</given-names></name></name-alternatives><bio xml:lang="ru"><p>Ревякина Елена Александровна, кандидат технических наук, доцент, доцент, кафедра «Кибербезопасность информационных систем»</p><p>344000, г. Ростов-на-Дону, пл. Гагарина, 1</p></bio><bio xml:lang="en"><p>Elena A. Revyakina, Cand. Sci. (Physics and Mathematics), Assoc. Prof., Assoc. Prof., Department «Cybersecurity of information systems»</p><p>1 Gagarin Square, Rostov-on-Don 344000</p></bio><email xlink:type="simple">Revyelena@yandex.ru</email><xref ref-type="aff" rid="aff-1"/></contrib><contrib contrib-type="author" corresp="yes"><name-alternatives><name name-style="eastern" xml:lang="ru"><surname>Клевцов</surname><given-names>А. А.</given-names></name><name name-style="western" xml:lang="en"><surname>Klevtsov</surname><given-names>A. A.</given-names></name></name-alternatives><bio xml:lang="ru"><p>Клевцов Алексей Алексеевич, студент, кафедра «Кибербезопасность информационных систем»</p><p>344000, г. Ростов-на-Дону, пл. Гагарина, 1</p></bio><bio xml:lang="en"><p>Aleksey A. Klevtsov, Student, Department of Cybersecurity of Information Systems</p><p>1 Gagarin Square, Rostov-on-Don 344000</p></bio><email xlink:type="simple">prazumov96@gmail.com</email><xref ref-type="aff" rid="aff-1"/></contrib></contrib-group><aff-alternatives id="aff-1"><aff xml:lang="ru"><institution>Донской государственный технический университет</institution><country>Россия</country></aff><aff xml:lang="en"><institution>Don State Technical University</institution><country>Russian Federation</country></aff></aff-alternatives><pub-date pub-type="collection"><year>2025</year></pub-date><pub-date pub-type="epub"><day>10</day><month>08</month><year>2025</year></pub-date><volume>52</volume><issue>2</issue><fpage>139</fpage><lpage>149</lpage><permissions><copyright-statement>Copyright &amp;#x00A9; Разумов П.В., Черкесова Л.В., Ревякина Е.А., Клевцов А.А., 2025</copyright-statement><copyright-year>2025</copyright-year><copyright-holder xml:lang="ru">Разумов П.В., Черкесова Л.В., Ревякина Е.А., Клевцов А.А.</copyright-holder><copyright-holder xml:lang="en">Razumov P.V., Cherkesova L.V., Revyakina E.A., Klevtsov A.A.</copyright-holder><license xml:lang="ru" license-type="creative-commons-attribution" xlink:href="https://creativecommons.org/licenses/by/4.0/" xlink:type="simple"><license-p>Данная работа распространяется под лицензией Creative Commons Attribution 4.0.</license-p></license><license xml:lang="en" license-type="creative-commons-attribution" xlink:href="https://creativecommons.org/licenses/by/4.0/" xlink:type="simple"><license-p>This work is licensed under a Creative Commons Attribution 4.0 License.</license-p></license></permissions><self-uri xlink:href="https://vestnik.dgtu.ru/jour/article/view/1780">https://vestnik.dgtu.ru/jour/article/view/1780</self-uri><abstract><p>Цель. Целью исследования является программный анализ кибератаки, осуществляемой с целью блокировки учётных записей и реализация защиты механизма защиты. Метод. Исследование основано на применении языка программирования PHP в среде IDE PhpStorm от компании JetBrains. Помимо данного языка использовались языки верстки CSS и JS, язык разметки HTML. Результат. Подробным образом рассматривается DDoS-атака типа блокирования учётных записей, ее возможные последствия и существующие механизмы защиты. С целью противодействия осуществлению данной атаки предложена модификация алгоритма, которая позволяет значительно снизить вероятность её успешного проведения. Результатом данной работы является разработанные программное средство и проведенный сравнительный анализ с аналогичными продуктами на рынке. Вывод. Проанализированы готовые программные решения и разработан механизм защиты, являющийся современным решением, обеспечивающим и надежную защиту учётных записей пользователей, и защиту от атак, направленных на них.</p></abstract><trans-abstract xml:lang="en"><p>Objective. The aim of the study is a software analysis of a cyber attack carried out to block accounts and implement protection of the protection mechanism. Method. The study is based on the use of the PHP programming language in the PhpStorm IDE environment from JetBrains. In addition to this language, the CSS and JS layout languages, the HTML markup language were used. Result. A DDoS attack of the account blocking type, its possible consequences and existing protection mechanisms are considered in detail. Also, in order to counteract the implementation of this attack, a modification of the algorithm is proposed, which can significantly reduce the likelihood of its successful implementation. The result of this work is the developed software tool and a comparative analysis with similar products on the market. Conclusion. Ready-made software solutions are analyzed and a protection mechanism is developed, which is a modern solution that provides reliable protection of user accounts and protected from attacks directed at them.</p></trans-abstract><kwd-group xml:lang="ru"><kwd>DDOS атака</kwd><kwd>блокировка</kwd><kwd>учётные записи</kwd><kwd>механизм реализации атаки</kwd><kwd>противодействие атаке</kwd><kwd>алгоритм нейтрализации атаки</kwd></kwd-group><kwd-group xml:lang="en"><kwd>DDOS attack</kwd><kwd>blocking</kwd><kwd>accounts</kwd><kwd>attack implementation mechanism</kwd><kwd>attack countermeasures</kwd><kwd>attack neutralization algorithm</kwd></kwd-group></article-meta></front><back><ref-list><title>References</title><ref id="cit1"><label>1</label><citation-alternatives><mixed-citation xml:lang="ru">Razumov P.V., Safaryan O.A., Cherckesova L.V., et all. “Developing of Algorithm of HTTP Flood DDoS Protection”, IEEE 3rd International Conference on Computer Applications &amp; Information Security, IEEE ICCAIS’20. Saudi Arabia, Er-Riyadh, 2020. p.6</mixed-citation><mixed-citation xml:lang="en">Razumov P.V., Safaryan O.A., Cherckesova L.V., et all. “Developing of Algorithm of HTTP Flood DDoS Protection”, IEEE 3rd International Conference on Computer Applications &amp; Information Security, IEEE ICCAIS’20. Saudi Arabia, Er-Riyadh, 2020. p.6.</mixed-citation></citation-alternatives></ref><ref id="cit2"><label>2</label><citation-alternatives><mixed-citation xml:lang="ru">Burnett M., Foster J. “Hacking the Code”, ASP.NET Web Application Security, 2004.</mixed-citation><mixed-citation xml:lang="en">Burnett M., Foster J. “Hacking the Code”, ASP.NET Web Application Security, 2004.</mixed-citation></citation-alternatives></ref><ref id="cit3"><label>3</label><citation-alternatives><mixed-citation xml:lang="ru">Бабенко, Л.К. Современные алгоритмы блочного шифрования и методы их анализа: учебное пособие для студентов вузов / Л.К. Бабенко, Е.А. Ищукова. — Москва: Гелиос АРВ, 2006. 376 с.</mixed-citation><mixed-citation xml:lang="en">Babenko, L.K. Modern block cipher algorithms and methods of their analysis: a tutorial for university students / L.K. Babenko, E.A. Ishchukova. - Moscow: Helios ARV, 2006. 376 p.</mixed-citation></citation-alternatives></ref><ref id="cit4"><label>4</label><citation-alternatives><mixed-citation xml:lang="ru">Стариков А.А., Лысенко А.В., Клевцов А.А. Разработка и анализ скорости работы блочного симметричного алгоритма шифрования AES с использованием различных языков программирования, Молодой исследователь Дона, 2022. № 4 (37)</mixed-citation><mixed-citation xml:lang="en">Starikov A.A., Lysenko A.V., Klevtsov A.A. Development and analysis of the performance of the block symmetric encryption algorithm AES using various programming languages, Young researcher of the Don, 2022;4 (37)</mixed-citation></citation-alternatives></ref><ref id="cit5"><label>5</label><citation-alternatives><mixed-citation xml:lang="ru">Баранова Е.К., Гырнец К.В. Моделирование и анализ безопасности и риска в сложных системах Труды Международной научной школы МАБР. 2016. СПб. ГУАП, 2016. С. 155–161.</mixed-citation><mixed-citation xml:lang="en">Baranova E.K., Gyrnets K.V. Modeling and analysis of security and risk in complex systems Proceedings of the International Scientific School of the International Academy of Sciences of the Russian Academy of Sciences. 2016. St. Petersburg. GUAP, 2016. Pp. 155–161.</mixed-citation></citation-alternatives></ref><ref id="cit6"><label>6</label><citation-alternatives><mixed-citation xml:lang="ru">Панасенко С.П. Алгоритмы шифрования. Спец. справочник. СПб. БХВ–Петербург, 2009. 576 с.</mixed-citation><mixed-citation xml:lang="en">Panasenko S.P. Encryption algorithms. Special reference book. St. Petersburg. BHV-Petersburg, 2009:576</mixed-citation></citation-alternatives></ref><ref id="cit7"><label>7</label><citation-alternatives><mixed-citation xml:lang="ru">Habr. Как устроен AES/habr.com: [сайт]. URL:https://habr.com/ru/post/112733/ (дата обр: 02.05.20 22).</mixed-citation><mixed-citation xml:lang="en">Habr. How AES works/habr.com: [site]. URL: https://habr.com/ru/post/112733/ (date of receipt: 02.05.20 22).</mixed-citation></citation-alternatives></ref><ref id="cit8"><label>8</label><citation-alternatives><mixed-citation xml:lang="ru">Al-Odat Z., Abbas A., Khan S. Randomness Analyses of the Secure Hash Algorithms, SHA-1, SHA-2 and modified SHA, 2019 International Conference on Frontiers of Information Technology (FIT), 2019. Pp. 3160-3165. doi: 10.1109/FIT47737.2019.00066</mixed-citation><mixed-citation xml:lang="en">Al-Odat Z., Abbas A., Khan S. Randomness Analyzes of the Secure Hash Algorithms, SHA-1, SHA-2 and modified SHA, 2019 International Conference on Frontiers of Information Technology (FIT), 2019. Pp. 3160-3165. doi: 10.1109/FIT47737.2019.00066</mixed-citation></citation-alternatives></ref><ref id="cit9"><label>9</label><citation-alternatives><mixed-citation xml:lang="ru">Karthiga S., Velmurugan T. Security based Approach of SHA-384 AND SHA–512. Algorithms in Cloud Environment. J. of Computer Science, 2019. Vol. 16(10) Pp. 1439–1450. DOI:10.3844/jcssp.2020.1439.1450</mixed-citation><mixed-citation xml:lang="en">Karthiga S., Velmurugan T. Security based Approach of SHA-384 AND SHA–512. Algorithms in Cloud Environment. J. of Computer Science, 2019;16(10):1439–1450. DOI:10.3844/jcssp.2020.1439.1450</mixed-citation></citation-alternatives></ref><ref id="cit10"><label>10</label><citation-alternatives><mixed-citation xml:lang="ru">Dong X., Sun S., Shi D. Quantum Collision Attacks on AES-like Hashing with Low Quantum Random Access Memories, Advances in Cryptology. ASIACRYPT–2020, South Korea, Daejeon, Springer International Publishing, Vol. 12492. Pp.727–757 DOI: 10.1007/978-3-030-64834-3</mixed-citation><mixed-citation xml:lang="en">Dong X., Sun S., Shi D. Quantum Collision Attacks on AES-like Hashing with Low Quantum Random Access Memories, Advances in Cryptology. ASIACRYPT–2020, South Korea, Daejeon, Springer International Publishing, Vol. 12492. Pp.727–757 DOI: 10.1007/978-3-030-64834-3</mixed-citation></citation-alternatives></ref><ref id="cit11"><label>11</label><citation-alternatives><mixed-citation xml:lang="ru">Razumov P., Safaryan O., Cherckesova L., et all. IAS’2019 Cryptographic Protocol Allowing to Protect the Key in the Open Communication Channel, 3rd International Conference on Computer Applications &amp; Information Security, 2020. p. 1–5. DOI:10.1109 "http://dx.doi.org/10.1109/ICCAIS48893.2020.9096729"</mixed-citation><mixed-citation xml:lang="en">Razumov P., Safaryan O., Cherckesova L., et all. IAS’2019 Cryptographic Protocol Allowing to Protect the Key in the Open Communication Channel, 3rd International Conference on Computer Applications &amp; Information Security, 2020;1–5.DOI:10.1109 HYPERLINK http://dx.doi.org/10.1109/ICCAIS48893.2020.9096729"</mixed-citation></citation-alternatives></ref><ref id="cit12"><label>12</label><citation-alternatives><mixed-citation xml:lang="ru">Короченцев Д.А., Черкесова Л.В., Ревякина Е.А. и др. Импортозамещающие технологии обеспечения информационной безопасности и защиты данных: Уч. пособие. Ростов-на-Дону: ДГТУ, 2021 – 335 с.</mixed-citation><mixed-citation xml:lang="en">Korochentsev D.A., Cherkesova L.V., Revyakina E.A. et al. Import-substituting technologies for ensuring information security and data protection: Tutorial. Rostov-on-Don: DSTU, 2021 – 335 p.</mixed-citation></citation-alternatives></ref><ref id="cit13"><label>13</label><citation-alternatives><mixed-citation xml:lang="ru">Shui Yu. Distributed Denial of Service Attack and Defense”, Springer Briefs in Computer Science, 2014</mixed-citation><mixed-citation xml:lang="en">Shui Yu. Distributed Denial of Service Attack and Defense”, Springer Briefs in Computer Science, 2014</mixed-citation></citation-alternatives></ref><ref id="cit14"><label>14</label><citation-alternatives><mixed-citation xml:lang="ru">Özçelik İ., Brooks R. Distributed Denial of Service Attacks, Chapman and Hall / CRC, 2020</mixed-citation><mixed-citation xml:lang="en">Özçelik İ., Brooks R. Distributed Denial of Service Attacks, Chapman and Hall / CRC, 2020</mixed-citation></citation-alternatives></ref><ref id="cit15"><label>15</label><citation-alternatives><mixed-citation xml:lang="ru">Ibrahim S.A., Mohammad S., Khader S. Proc. Computer Science. Chapman and Hall/CRC, 2016, Pp. 7–15</mixed-citation><mixed-citation xml:lang="en">Ibrahim S.A., Mohammad S., Khader S. Proc. Computer Science. Chapman and Hall/CRC, 2016, Pp. 7–15 16. PHP. Reference / php.net: [site]. URL: https://www.php.net/ (date obr. 01.05.2022)</mixed-citation></citation-alternatives></ref><ref id="cit16"><label>16</label><citation-alternatives><mixed-citation xml:lang="ru">PHP. Справочная информация / php.net: [сайт]. URL: https://www.php.net/ (дата обр. 01.05.2022)</mixed-citation><mixed-citation xml:lang="en">PHP. Справочная информация / php.net: [сайт]. URL: https://www.php.net/ (дата обр. 01.05.2022)</mixed-citation></citation-alternatives></ref></ref-list><fn-group><fn fn-type="conflict"><p>The authors declare that there are no conflicts of interest present.</p></fn></fn-group></back></article>
