摘要
介绍了分布式拒绝服务(DistributedDenialofService,DDoS)根据TCP/IP缺陷的攻击原理,在分析了数据包流量与系统资源使用率检测的基础上,提出了在SYNCookie中引入RSA公钥加密过滤TCP/IP数据包的方法,用来检测与降低DDoS攻击的危害,该方法在实验中的测试阶段取得了较好的效果。
The principle of DDoS( Distributed Denial of Service) useing the limitation of TCP/IP was introduced. Based on the monitor on the network packet traffic and the useage of the system resource, a method that leads the RSA algorithm into the SYN Cookie mechanism to encrypt and filtrate the IP packets was proposed, which can detect and reduce the damage of DDoS. The method have maken a good performance in the experimentation.
出处
《计算机应用》
CSCD
北大核心
2005年第12期2745-2747,共3页
journal of Computer Applications
