| 一种基于流量统计的DDoS攻击检测方法 |
| |
| 引用本文: | 庄肖斌,芦康俊,王理,卢建芝,李鸥.一种基于流量统计的DDoS攻击检测方法[J].计算机工程,2004,30(22):127-128,183. |
| |
| 作者姓名: | 庄肖斌 芦康俊 王理 卢建芝 李鸥 |
| |
| 作者单位: | 中国人民解放军信息工程学院通信工程系,郑州,450002 |
| |
| 摘 要: | 介绍的方法可使网络设备检测出并消除DDOS攻击。通过进出受害者或攻击者数据包流量显著的不平衡特性,网络设备可以检测出DDOS攻击。采用此方法的网络设备维护一个针对在线数据包的多层树,通过它监视数据包的流量特性。
|
| 关 键 词: | 计算机网络 网络安全 数据包 DDOS 入侵检测系统 网络攻击 流量统计 |
| 文章编号: | 1000-3428(2004)22-0127-02 |
A Detecting Method of DDoS Attacks Based on Traffic Statistics |
| |
| ZHUANG Xiaobin,LU Kangjun,WANG Li,LU Jianzhi,LI Ou.A Detecting Method of DDoS Attacks Based on Traffic Statistics[J].Computer Engineering,2004,30(22):127-128,183. |
| |
| Authors: | ZHUANG Xiaobin LU Kangjun WANG Li LU Jianzhi LI Ou |
| |
| Abstract: | This paper introduces a method that network devices can use to detect and eliminate such attack. A network device using this method detects on going DDoS attacks by the significant, disproportional difference between packet traffic going to and coming from the victim or the attacker. With the method, each network device maintains a multi-level tree for online packet statistics, that monitors certain traffic characteristics. |
| |
| Keywords: | Network Distributed denial of service (DDoS) Tree |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
