| 高速网络下的DDoS检测 |
| |
| 引用本文: | 蔡玮珺,仲海骏.高速网络下的DDoS检测[J].计算机工程,2006,32(10):154-156. |
| |
| 作者姓名: | 蔡玮珺 仲海骏 |
| |
| 作者单位: | 南京大学计算机科学与技术系,南京,210093;南京大学软件新技术国家重点实验室,南京,21009;南京大学计算机科学与技术系,南京,210093;南京大学软件新技术国家重点实验室,南京,21009 |
| |
| 摘 要: | 分布式拒绝服务(DDos)攻击是长期困扰网络安全领域的问题之一。特别是高速网络下,检测系统需要处理大量的数据,其检测策略和系统处理能力直接影响到DDoS检测的准确率和响应速度。该文提出了在高速网络下的DDoS检测系统DDES(DDoS Detection System)。DDES在协议分析的基础上,对处于危险状态的连接进行统计分析;它采用分布式的结构,多个探测子节点协同分析处理以提高处理性能;同时配合网络边缘设备对攻击源实施阻断。
|
| 关 键 词: | DDoS攻击 高速网络 入侵检测 |
| 文章编号: | 1000-3428(2006)10-0154-03 |
| 收稿时间: | 07 11 2005 12:00AM |
| 修稿时间: | 2005-07-11 |
DDoS Detection in High Speed Network |
| |
| CAI Weijun,ZHONG Haijun.DDoS Detection in High Speed Network[J].Computer Engineering,2006,32(10):154-156. |
| |
| Authors: | CAI Weijun ZHONG Haijun |
| |
| Abstract: | DDoS attack is one of the problems in the network security. Especially in high speed network, detection system has much more data to process. The detection strategy which is taken and the system processing ability effect the rate and response speed of DDoS detection directly. This paper proposes the DDoS detection system (DDES) in high speed network basing protocol analysis; DDES statistically analyzes the connection in danger state. DDES uses the distributed framework, many probes cooperate to analyze and process in order to enhance processing performance. Also, DDES can interdict the attack sources working in network edge service in the same time. |
| |
| Keywords: | DDoS attack High speed network IDS |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
