| 一种SIP分布式洪泛攻击的减弱方法 |
| |
| 引用本文: | 李鸿彬,林浒,侯辉超,吕昕.一种SIP分布式洪泛攻击的减弱方法[J].小型微型计算机系统,2012,33(5):995-999. |
| |
| 作者姓名: | 李鸿彬 林浒 侯辉超 吕昕 |
| |
| 作者单位: | 1. 中国科学院沈阳计算技术研究所,沈阳110168;中国科学院研究生院,北京100039
2. 中国科学院沈阳计算技术研究所,沈阳,110168 |
| |
| 基金项目: | 国家水体污染控制与治理科技重大专项 |
| |
| 摘 要: | 对会话初始化协议(SIP)分布式洪泛攻击的原理进行研究,结合SIP协议自身的特点提出一种基于安全级别设定的攻击减弱方法.该方法将SIP消息按照历史记录、协议自身进行安全级别分类,利用流量监控对SIP流量监控.当发生分布式洪泛攻击时,通过设定合适的安全级别减弱攻击造成的影响.仿真实验结果表明基于安全级别的方法能够识别和防御SIP分布式洪泛攻击,有效地减弱SIP代理服务器/IMS服务器被攻击的可能性.
|
| 关 键 词: | 会话初始化协议 分布式 洪泛攻击 安全级别 攻击减弱 |
A Mitigation Method for SIP Distributed Flooding Attack |
| |
| LI Hong-bin
,
LIN Hu
,
HOU Hui-chao
,
LV Xin.A Mitigation Method for SIP Distributed Flooding Attack[J].Mini-micro Systems,2012,33(5):995-999. |
| |
| Authors: | LI Hong-bin LIN Hu HOU Hui-chao LV Xin |
| |
| Affiliation: | 1,2 1(Shenyang Institute of Computing Technology Chinese Academy of Science,Shenyang 110168,China) 2(Graduate University of Chinese Academy of Sciences,Beijing 100039,China) |
| |
| Abstract: | This paper studies the theory of SIP distributed flooding attack and the character of SIP protocol itself.A mitigation method for SIP distributed flooding attack which based on security level is proposed.It classifies SIP message according to the SIP session history and SIP itself,attack is alarmed by the traffic monitoring.While attack is detected,mitigation method would set up the suitable security level;the messages that exceed the level would be dropped.The simulation results show that this mitigation method can detect and defend SIP distributed flooding attacks,and effectively reduce the probability of SIP proxy server or IMS server be attacked. |
| |
| Keywords: | SIP distributed flooding attack security level attack mitigation |
| 本文献已被 CNKI 万方数据 等数据库收录! |
|
