摘要： 针对基于聚类的拥塞控制(ACC)机制在解决网络拥塞时造成非恶意数据流使用带宽减少的问题，提出增强的基于聚类的拥塞控制(EACC)机制。该机制使用目的地址和丢包率对DDoS恶意数据流进行识别，并通过减少恶意数据流的使用带宽解决网络拥塞问题。实验结果表明，EACC能解决ACC存在的问题，在尽快恢复网络正常工作的同时，保障了非恶意数据流的可用带宽。

关键词: 拥塞控制, 分布式拒绝服务, 聚类

Abstract: Aggregate-based Congestion Control(ACC) mechanism leads to the bandwidth reduction of non-malicious flows when network congestion recovers. In order to resolve this problem, Enhanced Aggregate-based Congestion Control(EACC) is put forward which is based on ACC. EACC can identify the Distributed Denial of Service(DDoS) malicious flows according to destination address and packet loss rate, and solve the network congestion by reducing the bandwidth of malicious flows. Experimental results prove that EACC is effective. It can recover the network from fast congestion and also ensure the bandwidth of non-malicious flows.

Key words: congestion control, Distributed Denial of Service(DDoS), aggregate

中图分类号: 

• TP393.07