|
|||||
|
|
| 一种轻量级的SYN Flooding攻击检测方法 | |
| 引用本文: | 严芬,王佳佳,陈轶群,殷新春,黄皓.一种轻量级的SYN Flooding攻击检测方法[J].计算机科学,2008,35(9):72-75. |
| 作者姓名: | 严芬 王佳佳 陈轶群 殷新春 黄皓 |
| 作者单位: | 1. 南京大学计算机软件新技术国家重点实验室,南京210093;扬州大学信息工程学院计算机科学与工程系,扬州225009 2. 扬州大学信息工程学院计算机科学与工程系,扬州,225009 3. 南京大学计算机软件新技术国家重点实验室,南京,210093 |
| 基金项目: | 国家重点基础研究发展计划(973计划),国家自然科学基金,江苏省高技术研究发展计划项目 |
| 摘 要: | 提出了一种轻量级的源端DDoS攻击检测的有效方法.本方法基于Bloom Filter技术对数据包信息进行提取,然后使用变化点计算方法进行异常检测,不仅能够检测出SYN Flooding攻击的存在,而且能够避免因为正常拥塞引起的误报.重放DARPA数据实验表明,算法的检测结果与类似方法相比更精确,使用的计算资源很少. |
| 关 键 词: | 源端检测 变化点检测 SYN Flooding攻击 |
Light-weight Detection Method against SYN Flooding Attacks |
|
| YAN Fen,WANG Jia-jia,CHEN Yi-qun,YIN Xin-chun,HUANG Hao.Light-weight Detection Method against SYN Flooding Attacks[J].Computer Science,2008,35(9):72-75. | |
| Authors: | YAN Fen WANG Jia-jia CHEN Yi-qun YIN Xin-chun HUANG Hao |
| Affiliation: | YAN Fen1,2 WANG Jia-jia2 CHEN Yi-qun2 YIN Xin-chun2 HUANG Hao1(State Key Laboratory for Novel Software Technology,Nanjing University,Nanjing 210093,China)1(Department of Computer Science , Engineering,Technology Institute,Yangzhou University,Yangzhou,225009,China)2 |
| Abstract: | An efficient light-weight method for defending against DDoS attacks at the source-end is designed.We use Bloom Filter to pick up the Abstract of packets,and then use change point computation technology to detect abnormity.The method can not only detect the existence of SYN Flooding attacks,but also avoid the false alarm of normal congestion.In experiment environment,DARPA data is replayed and the result shows that our method obtains more accurate detection result with less computation than other similar met... |
| Keywords: | DDoS Bloom Filter |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! | |
| 点击此处可从《计算机科学》浏览原始摘要信息 | |
| 点击此处可从《计算机科学》下载全文 | |