作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程 ›› 2010, Vol. 36 ›› Issue (22): 168-169. doi: 10.3969/j.issn.1000-3428.2010.22.060

• 安全技术 • 上一篇    下一篇

基于跨区域追踪的确定包标记方案

徐劲松a,b,黄汝成a,黄碗明b   

  1. (南京邮电大学 a. 通达学院;b. 计算机学院,南京 210003)
  • 出版日期:2010-11-20 发布日期:2010-11-18
  • 作者简介:徐劲松(1975-),男,助理研究员、博士研究生,主研方向:网络安全,可信计算;黄汝成,学士;黄碗明,硕士研究生
  • 基金资助:

    南京邮电大学青蓝计划基金资助项目(NY206055)

Deterministic Packet Marking Scheme Based on Cross-regional Tracking

XU Jin-songa,b, HUANG Ru-chenga, HUANG Wan-mingb   

  1. (a. Tongda College; b. College of Computer, Nanjing University of Posts and Telecommunications, Nanjing 210003, China)
  • Online:2010-11-20 Published:2010-11-18

摘要:

提出一种可以跨区域追踪分布式拒绝服务攻击来源的确定包标记方案,通过将基于中国余数定理的数据包标记算法与DPM-RD方案结合,实现更好的追踪性能。理论分析与仿真结果表明,在攻击数量大幅增长的情况下,该方案的误报率基本不变,与同类方案相比,只需更少的数据包即可在较短时间内重构攻击路径。

关键词: 分布式拒绝服务攻击, 追踪, 包标记, 跨区域

Abstract:

This paper proposes a novel Deterministic Packet Marking(DPM) scheme to trace the cross-regional source of Distributed Denial of Service(DDoS) attack. It adopts a packet marking algorithm inspired by CRT, and combines DPM-RD scheme to achieve better performance. Theoretical analysis and simulations reveal that the increasing number of attacks do not effect the false positive rate significantly, and compared with similar schemes, the scheme can reconstruct attack path in a comparatively short time with less packets.

Key words: Distributed Denial of Service(DDoS) attack, tracking, Packet Marking(PM), cross-regional

中图分类号: