Since 1998, internet denial of service (DoS) attack activity has a history over ten years. Though many researchers provided some strategies of defense or finding the attack source, none of them can prevent DoS completely until now. In February 2000, global large sites were all hit by DoS attacks. These sites include portal-type site Yahoo!, eBay auction site and Amazon online shopping site. Even CNN news site was affected. DoS extends to distributed denial of service (DDoS) attack. In a DDoS attack, a large number of attacking packets which come from different addresses are sent to the targeted system. Objective of DDoS has been achieved when the system cannot afford and handle these packets. The attacks may cause interruption of sever service and make the services and resource unavailable to its intended users. The aim of these attacks is neither to acquire data of the website nor to change them, but to make its services collapsed. In order to weaken DDoS attacks, many methods have been proposed. For example, some methods find the source of attack in the shortest possible time and prevent the attacking packets from flooding bandwidth of the web server. However, it needs to take some time to find and filter the source of attack from current connections, which makes it impossible to remove obstacles rapidly when service interruption occurs. Therefore, we use the approach of multi-platform integration to discover the sources as soon as possible and eliminate it in the shortest time, to restore the services of web server. In this thesis, we discuss the models of DDoS attacks from internet users, web server and internet service provider. Our proposed methods can prevent a user becoming an attacker, and web server to be attacked. Besides, our proposed methods also results that internet service provider become a supervisor and resist the DDoS attacks.