Abstract: Traditional Low-rate Denial-Of-Service (LDOS) attack detection and defense method for TCP congestion control is complicated to compute and difficult to implement. A fast and simple detection and defense way is put forward based on the distributed detection mechanism proposed by others. Detect and extract characteristic values of attack pulse with digital signal processing technology, melts attack risks. Result shows that the method is accurate and fast. The new system has real-time alarm function and has not any complicated filtering algorithm and data lost.

Key words: TCP congestion control, convolution integral, Low-rate Denial-Of-Service(LDOS) attack

摘要： 传统的针对TCP拥塞控制的LDOS攻击检测与防范方法存在计算复杂、难以实现的不足。为此，基于分布式检测架构，提出一种快速简便的检测与防范方法。利用数字信号处理技术对攻击脉冲特征值进行提取及检测，柔化攻击风险。结果表明，该方法准确快速、能够实现实时报警，并可以避免复杂过滤算法给系统带来的计算负荷和正常数据的丢失。

关键词: TCP拥塞控制, 卷积积分, 低速率拒绝服务攻击

CLC Number: 

• TP393