摘要
针对Internet这一典型的复杂网络,依据TCP拥塞控制协议能重新调整数据流流速的特性,提出了一种新的抗毁性测度方法,并在流速可变的通信模型下对Internet进行了抗毁性研究,仿真结果表明Internet仍然具有鲁棒且脆弱性;然后分析了Internet在不完全信息下和基于局部网络拓扑信息的分布式攻击下的抗毁性,并且提出了相应的保护措施,仿真结果表明,不同情况下的不完全信息会对有目的攻击的攻击效率产生不同程度的影响,而基于局部信息的攻击可以达到有目的攻击的攻击效率,该结果对制订高效的Internet攻击(保护)策略具有重要意义。
Due to a typical example of complex networks for the Internet,based on the characteristics that the TCP congestion control protocols readjusted the flow rates,this paper proposed a new invulnerability measure,and studied the invulnerability of the Internet in the traffic model of variable rates,the simulation results also show that Internet has "robust yet fragile" property. Then this paper analyzed the invulnerability of the Internet under incomplete information and the distributed attacks utilizing local network-topology information,and proposed specific security method,the simulation results show that incomplete information has different impacts on the intentional attack in different circumstances,while local information-based attacks can be the same as the intentional attack,such insights would be important to developments of efficient Internet attack/protection schemes.
出处
《微计算机信息》
2010年第3期138-139,145,共3页
Control & Automation
