提出了一种基于源目的IP地址对数据库的防范分布式拒绝服务攻击(distributed denial of service attacks,简称DDos)攻击策略.该策略建立正常流量的源目的IP地址对数据库(source and destination IP address database,简称SDIAD),使用扩...提出了一种基于源目的IP地址对数据库的防范分布式拒绝服务攻击(distributed denial of service attacks,简称DDos)攻击策略.该策略建立正常流量的源目的IP地址对数据库(source and destination IP address database,简称SDIAD),使用扩展的三维BloomFilter表存储SDIAD,并采用改进的滑动窗口无参数CUSUM(cumulative sum)算法对新的源目的IP地址对进行累积分析,以快速准确地检测出DDos攻击.对于SDIAD的更新,采用延迟更新策略,以确保SDIAD的及时性、准确性和鲁棒性.实验表明,该防范DDos攻击策略主要应用于边缘路由器,无论是靠近攻击源端还是靠近受害者端,都能够有效地检测出DDos攻击,并且有很好的检测准确率.展开更多
基金Supported by the National Natural Science Foundation of China under Grant No.60572131(国家自然科学基金)the Key Technologies R&D Program of Jiangsu Province of China under Grant No.BE2007058(江苏省科技攻关项目)+4 种基金the Scientific Research Foundation for the Returned Overseas Chinese ScholarsMinistry of Education of China and Nanjing Government(国家教育部和南京市回国人员基金)the Scientific Development Foundation of Government(南京市科技发展计划)the Scientific Research Foundation of NJUPT under Grant No.NY206008(南京邮电大学攀登计划)the Scientific Research Foundation of ZTE and Huawei Corporation of China(中兴及华为基金)
基金Supported by the National Natural Science Foundation of China under Grant No.60572131 (国家自然科学基金)the Key Technologies R&D Program of Jiangsu Province of China under Grant No.BE2007058 (江苏省科技攻关项目)+3 种基金the Scientific Research Foundation of ZTE and Huawei Corporation of China (中兴及华为基金)the Scientific Development Foundation of Government of China (南京市科技发展计划)the Scientific Research Foundation of NUPT of China under Grant Nos.NY206008 NY206050 (南京邮电大学攀登计划及青蓝计划)
文摘提出了一种基于源目的IP地址对数据库的防范分布式拒绝服务攻击(distributed denial of service attacks,简称DDos)攻击策略.该策略建立正常流量的源目的IP地址对数据库(source and destination IP address database,简称SDIAD),使用扩展的三维BloomFilter表存储SDIAD,并采用改进的滑动窗口无参数CUSUM(cumulative sum)算法对新的源目的IP地址对进行累积分析,以快速准确地检测出DDos攻击.对于SDIAD的更新,采用延迟更新策略,以确保SDIAD的及时性、准确性和鲁棒性.实验表明,该防范DDos攻击策略主要应用于边缘路由器,无论是靠近攻击源端还是靠近受害者端,都能够有效地检测出DDos攻击,并且有很好的检测准确率.
