期刊文献+

流媒体服务DoS、DDoS攻击的防御方案 被引量:1

Defense scheme of DoS,DDoS attack in streaming media service
下载PDF
导出
摘要 针对流媒体交互协议RTSP的漏洞,设计并实现了一套防御方案。该方案采用一组分布式的流媒体服务代理,隐藏真实的服务器位置,提高了系统的抗攻击性能;RTSP请求的行为分析具有攻击检测功能,可以主动过滤恶意连接;连接用户根据信任度管理机制,优先服务受信任用户。模拟测试表明该方案能够有效防御针对RTSP漏洞发起的DoS、DDoS攻击,为未来流媒体服务器的安全性能设计提供了参考。 A defense scheme was designed and implemented against the loopholes of streaming media protocol RTSP.This defense scheme employed a group of distributed streaming media proxies in order to hide the server, which can improve the defense-ability against attacks;it could filter the malicious connections by analyzing the RTSP requests;and it also provided a trust-level manage mechanism to insure the priority of trusted user.Through the simulation of DoS, DDoS attacks for the loopholes of RTSP, it is proved that the defense scheme is effective.It also can be the reference for future research on streaming media service security.
出处 《通信学报》 EI CSCD 北大核心 2009年第S1期58-62,共5页 Journal on Communications
基金 国家自然科学基金资助项目(60503044)~~
关键词 网络安全 分布式拒绝服务 流媒体服务 防御 network security distributed denial of service(DDoS) streaming media service defense
  • 相关文献

参考文献7

  • 1FERGUSON P,,SENIE D.Network Ingress Filtering:Defeating De-nial of Service Attacks Which Employ IP Source Address Spoofing. RFC2827 .
  • 2KEROMYTIS A,MISRA V,RUBENSTEIN D.SOS:secure overlay services. Proceedings of the2002Conference on Applications,Technologies,Architectures,and Protocols for Computer Communica-tions . 2002
  • 3CHEN L,YE D J.DoS and DDoS attack‘s possibility verification on streaming media application. Proceedings of the2008International Symposium on Information Science and Engieering . 2008
  • 4Real Time Streaming Protocol. RFC2326 .
  • 5JUNG J,KRISHNAMURTHY B,RABINOVICH M.Flash crowds and denial of service attacks:characterization and implications for CDNs and Web sites. Proceedings of the11th International Con-ference on World Wide Web . 2002
  • 6Bernstein D J.SYN Cookies. http://cr.yp.to/syncookies.html .
  • 7Peng Tao,,LeckieC,Ramanmohanarao K.Proactively Detecting Distributed Denial of Service Attacks Using Source IP Address Monitoring. 3rd International IFIP-TC6Networking Conference . 2004

同被引文献5

  • 1陈雷.流媒体服务DoS及DDoS攻击分析[J].计算机T程,2010,36,3(6):146-148.
  • 2熊明辉,蔡皖东.基于主动安全策略的蜜网系统的设计与实现.2005,26(9):2470-2472.
  • 3Mirkovic J, Reiher P. A Taxonomy of DDoS Attack and DDoS Defense Mechanisms[J]. ACM SIGCOMM Computer Commu- nication Review, 2004, 34(2): 39-53.
  • 4CHEN L, YE D J. DoS and DDoS Attack's Possibility Ver- fication on Streaming Media Application [A]. Proceedings of the 2008 International Symposium on Information Science and Engieering[C], 2008:63-67.
  • 5杨冬,高为民.基于虚拟蜜罐的网络安全系统的设计与实现[J].网络安全技术与应用,2008(5):25-27. 被引量:11

引证文献1

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部