| DOS攻击的逆向路径追踪算法研究 |
| |
| 引用本文: | 田海涛,黄刘生,单久龙.DOS攻击的逆向路径追踪算法研究[J].小型微型计算机系统,2004,25(11):1917-1921. |
| |
| 作者姓名: | 田海涛 黄刘生 单久龙 |
| |
| 作者单位: | 中国科学技术大学,计算机科学与技术系,安徽,合肥,230027 |
| |
| 基金项目: | 国家重点基础研究发展规划 973资助项目(G19980 3 0 40 3 ),安徽教育厅自然科学研究重点项目(2 0 0 3 kj0 49zd) |
| |
| 摘 要: | 在当前 IP源地址可欺骗的情况下 ,准确、快速追踪攻击源是防范网络攻击尤其是 DOS攻击的关键 .本文给出了逆向路径追踪 DOS攻击的模型和评价指标 ,分析了已有算法的性能 .在此基础上 ,提出一种新的基于消息鉴别码的随机数据包标记算法 MPPM.在该算法中路由器随机标记转发的数据包 ,标记信息包括路由器自身及其下游路由器组成的边标记的分片以及 MAC值 ,DOS攻击的受害者利用 MAC把不同攻击数据包中的边标记分片重组以得到边标记及攻击路径 ,并可鉴别标记的真伪 .分析和模拟结果表明 ,该算法具有线性的计算复杂度 ,追踪速度快 ,误差较小 ,高效可行
|
| 关 键 词: | 拒绝服务攻击 IP欺骗 消息鉴别码 随机数据包标记 |
| 文章编号: | 1000-1220(2004)11-1917-05 |
Study of IP Tracebck Against DOS Attack |
| |
| TIAN Hai-tao,HUANG Liu-sheng,SHAN Jiu-long.Study of IP Tracebck Against DOS Attack[J].Mini-micro Systems,2004,25(11):1917-1921. |
| |
| Authors: | TIAN Hai-tao HUANG Liu-sheng SHAN Jiu-long |
| |
| Abstract: | Tracing attacks back to their sources is important in internet security area especially against DOS attacks because of IP spoofing. After modeling the problem of IP traceback, this paper analyzes and evaluate previous related work. A new traceback algorithm MAC-based Probabilistic Packet Marking is then presented. In MPPM, Routers mark packets with fragments of the edge mark composed of two adjacent routers and its MAC. The victim of DOS attack links the fragments in different attack packets into edges according to MAC. The victim also can authenticate the edge marks by MAC. Both Analysis and simulation result indicate MPPM is efficient with linear complexity, fast convergence and robustness. |
| |
| Keywords: | denial of service IP spoofing message authentication code probabilistic packet marking |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
