摘要
针对流媒体交互协议RTSP的漏洞,设计并实现了一套防御方案。该方案采用一组分布式的流媒体服务代理,隐藏真实的服务器位置,提高了系统的抗攻击性能;RTSP请求的行为分析具有攻击检测功能,可以主动过滤恶意连接;连接用户根据信任度管理机制,优先服务受信任用户。模拟测试表明该方案能够有效防御针对RTSP漏洞发起的DoS、DDoS攻击,为未来流媒体服务器的安全性能设计提供了参考。
A defense scheme was designed and implemented against the loopholes of streaming media protocol RTSP.This defense scheme employed a group of distributed streaming media proxies in order to hide the server, which can improve the defense-ability against attacks;it could filter the malicious connections by analyzing the RTSP requests;and it also provided a trust-level manage mechanism to insure the priority of trusted user.Through the simulation of DoS, DDoS attacks for the loopholes of RTSP, it is proved that the defense scheme is effective.It also can be the reference for future research on streaming media service security.
出处
《通信学报》
EI
CSCD
北大核心
2009年第S1期58-62,共5页
Journal on Communications
基金
国家自然科学基金资助项目(60503044)~~
关键词
网络安全
分布式拒绝服务
流媒体服务
防御
network security
distributed denial of service(DDoS)
streaming media service
defense