| DDoS攻击实时检测防御系统的硬件实现 |
| |
| 引用本文: | 赵桦,罗晓富,程军,李铁锋,李鸥.DDoS攻击实时检测防御系统的硬件实现[J].微计算机信息,2005(11). |
| |
| 作者姓名: | 赵桦 罗晓富 程军 李铁锋 李鸥 |
| |
| 作者单位: | 河南郑州信息工程大学
450002(赵桦,罗晓富,程军,李铁锋),河南郑州信息工程大学 450002(李鸥) |
| |
| 基金项目: | 总装武器装备预研基金项目 |
| |
| 摘 要: | 分布式拒绝服务攻击是因特网安全的头号威胁。针对DDoS攻击,本文介绍了一种基于MPC860和FPGA的实时检测防御系统的体系结构与实现原理,探讨了基于非参数累积和(CUSUM)算法检测新IP地址到达速率变化的DDoS攻击检测方法。实验结果表明该系统不仅实时检测准确性高、在线检测速度快、防御效果好,而且不损失网络信息吞吐量,保证了合法用户的正常访问。
|
| 关 键 词: | DDoS攻击 FPGA CUSUM算法 实时检测 门限 |
The Implementation of Real-time System Detecting and Defending against DDoS Attack Based on Hardware |
| |
| Zhao,Hua Luo,Xiaofu Cheng,Jun Li,Tiefeng Li,Ou.The Implementation of Real-time System Detecting and Defending against DDoS Attack Based on Hardware[J].Control & Automation,2005(11). |
| |
| Authors: | Zhao Hua Luo Xiaofu Cheng Jun Li Tiefeng Li Ou |
| |
| Abstract: | Distributed denial-of-service(DDoS) attacks present an immense threat to the Internet.The paper concentrates on the architecture and principles of the system of real-time detecting and defending against DDoS attack,which is based on MPC860 and FPGA.We propose a scheme to detect the DDoS attacks by monitoring the increase of new IP addresses.We use the non-parametric CUSUM algorithm to detect the change of the rate of the new IP addresses arriving. Experiment results show that our scheme is characterized by high detection accuracy ,short detection time and good defence effect. Finally ,the mechanism guarantees the usual network throughput efficiently and reliably ,and provides good service to the legitimate traffics during the attack. |
| |
| Keywords: | DDoS attack FPGA CUSUM algorithm Real-time Detection Threshold |
| 本文献已被 CNKI 等数据库收录! |
|
