| 基于拥塞参与度的分布式低速率DoS攻击检测过滤方法 |
| |
| 引用本文: | 张长旺,殷建平,蔡志平,祝恩,程杰仁.基于拥塞参与度的分布式低速率DoS攻击检测过滤方法[J].计算机工程与科学,2010,32(7):49-52. |
| |
| 作者姓名: | 张长旺 殷建平 蔡志平 祝恩 程杰仁 |
| |
| 作者单位: | 1. 国防科技大学计算机学院,湖南,长沙,410073
2. 国防科技大学计算机学院,湖南,长沙,410073;湘南学院数学系,湖南,郴州,423000 |
| |
| 基金项目: | 国家自然科学基金资助项目,湖南省自然科学基金资助项目,湖南省教育厅资助科研项目 |
| |
| 摘 要: | 分布式低速率拒绝服务攻击(DLDoS)利用已有网络协议和网络服务中自适应机制的漏洞发起攻击,其攻击效率和隐蔽性比传统洪泛式分布式拒绝服务攻击(DDoS)高得多,更加难于检测和防御。本文对DLDoS攻击进行了建模和形式化,提出了基于拥塞参与度的DLDoS攻击检测过滤方法。实验分析表明,该方法能有效检测DLDoS攻击,并降低误报率。
|
| 关 键 词: | 分布式低速率拒绝服务攻击 拥塞参与度 建模和形式化 攻击检测 |
| 收稿时间: | 2009-04-13 |
| 修稿时间: | 2009-07-10 |
An Approach of Detecting Distributed Low-Rate DoS Attackased on the Congestion Participation Rate |
| |
| ZHANG Chang-wang,YIN Jian-ping,CAI Zhi-ping,ZHU En,CHENG Jie-ren.An Approach of Detecting Distributed Low-Rate DoS Attackased on the Congestion Participation Rate[J].Computer Engineering & Science,2010,32(7):49-52. |
| |
| Authors: | ZHANG Chang-wang YIN Jian-ping CAI Zhi-ping ZHU En CHENG Jie-ren |
| |
| Affiliation: | (1.School of Computer Science,National University of Defense Technology,Changsha 410073;
2.Department of Mathematics,Xiangnan University,Chenzhou 423000,China) |
| |
| Abstract: | Distributed Low rate Denial of Service attacks (DLDoS) exploit the vulnerability of the adaptive behaviours exhibited by network protocols and network services. Its attack efficiency and ability of concealment are far higher than the traditional flooding based DDoS attacks, thus it is harder to detect and defense. In this paper, we first model and formalize the DLDoS attacks, and then propose an approach of detecting DLDoS based on the congestion participation rate (CPR). Experiments and analysis demonstrate that the approach can detect the DLDoS attacks accurately and reduce the false alarm rate drastically. |
| |
| Keywords: | DLDoS attack congestion participation rate modeling and formalization attack detection |
| 本文献已被 万方数据 等数据库收录! |
| 点击此处可从《计算机工程与科学》浏览原始摘要信息 |
|
点击此处可从《计算机工程与科学》下载全文 |
|
