期刊文献+

因特网防御DoS攻击技术评述Ⅰ——攻击分类与特征·包过滤·攻击检测与防御 被引量:2

A Review on Anti-DoS Attack Techniques on Internet Ⅰ ——Classifications and characteristics · Packet filtering · Attack detection and defending
下载PDF
导出
摘要 概述了因特网上DoS攻击的相应分类及基本特征 ,评述了包过滤、攻击检测及防御技术的最新成果 .前一部分介绍了入口过滤、基于路由的过滤网和有效源地址强制协议 .后一方面主要讨论了适合于检测攻击包的技术 ,介绍了新近提出的频谱分析方法和泛滥检测系统 .简要评述了已有的防御SYN泛滥攻击的技术措施 ,介绍了Cisco的TCP拦截技术 。 For the DoS attacks on Internet, the basic circumstances and their classification are outlined. The contents include the packet filtering and the attack detection together with prevention techniques of the SYN flooding attacks. For the prevention of SYN flooding attacks, the Cisco TCP interception technique and the corresponding improvement scheme are suggested.
作者 金光 朱锡雄
出处 《宁波大学学报(理工版)》 CAS 2004年第4期460-465,共6页 Journal of Ningbo University:Natural Science and Engineering Edition
基金 浙江省科技厅重点科研项目 (2 0 0 3C2 10 0 9) 宁波大学校内科研基金资助
关键词 因特网 DOS攻击 数据包过滤 攻击检测 TCP拦截 Internet DoS attack packet filtering attack detection TCP interception
  • 相关文献

参考文献25

  • 1Computer emergency response team. CERT/CC Statistics 1988 - 2003 [ DB/OL]. http:∥www. cert. org/stats/cert _stats. html,2003.
  • 2Dittrich D. Distributed denial of service (DDoS) attack/tools page: stacheldraft, trinoo, tribal flood network 2000, et al [ DB/OL]. http:∥staff. washingtong. edu/dittrich/misc/ddos/.
  • 3Computer emergency response team. CERT advisory CA -96.21 TCP SYN flooding attacks [ DB/OL]. http:∥www. cert. org/advisories/CA -96.21 -flooding. html,1996.
  • 4Garber L. Denial-of-service attack rip the Internet [ J ].IEEE Computer, 2000, 33 (4): 12 - 17.
  • 5Moore D, Voelker G, Savage S. Inferring internet denial of service activity [ A ]. In: Proceedings of 10th ACM USENIX security symposium[ C ]. Washington DC,2001.9 ~ 22.
  • 6Computer emergency response team. CERT advisory CA -98.01 "Smurf" IP denial of service attack[ DB/OL ].http :∥www. cert. org/advisories/CA - 98. 01 - Smurf.html, 1998.
  • 7Computer emergency response team. CERT Advisory CA - 96.26 denial of service attack via ping [ DB/OL ]. http :∥www. cert. org/advisories/CA - 96.26 - ping. html,1996.
  • 8Houle H, Weaver G. Trend in denial of service technology [ DB/OL ]. CERT coordination center, http:∥ww.cert. org/archive/pdf/dos -trends. pdf,2001.
  • 9Cisco systems. Unicast reverse path forwarding[ C]. Cisco IOS Documentation, 1999.
  • 10Ferguson P, Senie D. Network ingress filtering:defeating denial of service attack which Employ IP Source Address Spoofing[ C ]. RFC2827,2000.

二级参考文献3

共引文献1

同被引文献16

  • 1金光,赵杰煜,赵一鸣,王肖虹.还原DoS攻击入口的地址元组标记模型[J].计算机研究与发展,2004,41(7):1117-1123. 被引量:2
  • 2Yaar A, Perrig A, Song D. Pi:a path identification mechanism to defend against DDoS attacks[C]//In Proceedings of the IEEE Symposium on Research in Security and Privacy, Oakland, CA, USA, 2003: 93-107.
  • 3Yaar A, Perrig A, Song D. StackPi: new packet marking and filtering mechanisms for DDoS and IP spoofing defense[J]. IEEE Journal on Selected Areas in Communications, 2006, 24(10): 1 853-1 863.
  • 4Jin C, Wang H, Shin K G. Hop-count filtering: an effective defense against spoofed DDoS traffic[C]//In Proceedings of 10th ACM Conference on Computer and Communications Security, University of Karlsruhe, Germany, 2003:30-41.
  • 5Savage S, Wetherall D, Karlin A, et al. Network support for IP traceback[J]. IEEE/ACM Transactions on Net- working, 2001, 9(3):226-273.
  • 6The Swiss Education and Research Network. Default TTL values in TCP/IP[EB/OL]. (2002-10-15)[2007-06-12]. http://sec fr.nerim.net/docs/fingerprint/en/ttl_de fault.html.
  • 7Caida. Skitter[EB/OL]. (2002-12-18)[2007-06-12]. https:// sk-data.caida.org:8444/skitter-old/a-root/2002/.
  • 8Dittrich D. Distributed denial of service (DDoS) attack/toolspage.http://staff. washington.edu/dittrich/misc/ddos/.
  • 9Belenky A, Ansari N. On IP traceback. IEEE Communications Magazine, 2003, 41(7): 142 - 153.
  • 10Lipson H. Tracking and tracing cyber-attacks: technical challenges and global policy issues. http://www.cert.org/archieve/pdf/02sr009. pdf, 2002, December.

引证文献2

二级引证文献1

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部