| 状态协议分析技术在TCP中的应用 |
| |
| 引用本文: | 胡吉明,刘少君.状态协议分析技术在TCP中的应用[J].微机发展,2006,16(3):211-212. |
| |
| 作者姓名: | 胡吉明 刘少君 |
| |
| 作者单位: | 河海大学计算机及信息工程学院 江苏南京210098 |
| |
| 摘 要: | 入侵检测系统已经日益成为网络安全系统的重要组成部分,成为网络安全必不可少的的一部分。其核心技术就是针对攻击所采用的检测技术。就目前而言网络攻击以拒绝服务攻击居多,而拒绝服务攻击大多数都与TCP相关,因此,应根据TCP的有关特性设计出相应的检测方法。文中介绍了TCP报文的封装情况、TCP报文段格式规定和TCP连接中的“三次握手”协议。然后在此基础上,从状态协议分析的角度出发,对与TCP相关的“TCP SYN洪水”攻击进行描述,并提出了相应的解决办法。
|
| 关 键 词: | 状态协议分析 入侵检测 传输层控制协议 |
| 文章编号: | 1005-3751(2006)03-0211-02 |
| 修稿时间: | 2005年6月8日 |
Application of Protocol Status Analysis Technique in Attack of TCP |
| |
| HU Ji-ming,LIU Shao-jun.Application of Protocol Status Analysis Technique in Attack of TCP[J].Microcomputer Development,2006,16(3):211-212. |
| |
| Authors: | HU Ji-ming LIU Shao-jun |
| |
| Abstract: | Intrusion detection system(IDS) is becoming more and more important in network security system.The detecting technique is the kernel of IDS.The denial of service(DoS) attack is the main attack of the network attacks.Most of DoS attacks is a TCP attack.So it is necessary to design the detecting measures according to the attributes of the TCP.The specification of TCP as well as its three-way handshake is introduced in the paper.Based on protocol status analysis,some TCP attack cases are studied and the corresponding countermeasures is presented. |
| |
| Keywords: | protocol status analysis intrusion detection transfer control protocol |
| 本文献已被 CNKI 等数据库收录! |
