摘要
针对任意源组播和特定源组播在抗DoS攻击方面的缺陷,论文提出了一种基于IPv6密码地址构建的域内安全组播基础设施结构。该结构通过规定域内可存在的组地址以及基于发送方和接收方证书的访问控制机制,在组播域内实现了抵抗来自恶意主机的控制平面和数据平面攻击。
For solving the limitations of any source multicast and source specific multicast on DoS attack resistance,this paper puts forward an Intra-domain Secure Multicast Infrastructure based on IPv6 CGA.By regulating the multicast group set in the domain and access control based on sender or receiver certification,the control panel and data panel DoS attacks from malicious hosts can be prevented in a multicast domain.
出处
《计算机工程与应用》
CSCD
北大核心
2005年第13期121-124,共4页
Computer Engineering and Applications
基金
国家863高技术研究发展计划课题基金"高性能IPv6路由器基础平台及实验系统"(编号:2001AA121011)资助
关键词
任意源组播
特定源组播
拒绝服务攻击
访问控制
Any Source Multicast(ASM),Source Specific Multicast(SSM),Denial of Service(DoS),access control
