摘要
典型的Dos攻击—SYNflood—对于使用传统TCP协议的网络服务来说是一个很头疼的问题,应对这个问题的一个有效方案是Bernstein提出的SYNcookies方法,而SCTP也使用了类似的机制。本文将探讨TCP与SCTP中是怎样利用cookie的思想来防范Dos攻击的,并用实验比较TCP与SCTP在抵御Dos攻击时的实际性能。
The classic Dos attack--SYN flood--is a very troublesome problem to network services which implements the traditional TCP protocol, a effective solution is the SYN cookies method proposed by Bemstein, SCTP implements a similar mechanism. This paper gives an explanation of the cookie mechanism used in TCP and SCTP, and then compares the performance against the Dos attack between TCP and SCTP with experiments.
出处
《电脑知识与技术》
2006年第4期95-96,193,共3页
Computer Knowledge and Technology
