基于小波分析和连接信任域的DDoS防范模型

A DDOS PREVENTION MODEL BASED ON WAVELET ANALYSIS AND CONNECTION TRUST DOMAIN

下载PDF

导出

摘要分析了DoS攻击机理,基于网络流量的自相似性提出了一种DDoS防范模型。首先采用小波方法计算流量的Hurst参数,判断是否遭受DoS攻击。当认为受到攻击后,结合连接信任域来进行响应。实验表明,该模型可以检测到强、弱DoS攻击;在受到DDoS攻击后,仍可以在一定程度上为正常用户提供服务。 The mechanism of TCP based DoS attack is analyzed, and then a DDoS prevention model based on traffic self-similarity is proposed. The model first calculates the Hurst parameter of traffic by wavelet method, and then it decides whether the system is suffering DoS attack or not. When attack is asserted, connection trust domain is employed to respond to the situation. The model is able to serve the trusted connection even when the system is under DDoS attack.

作者裴大权马进陆松年

机构地区上海交通大学电子工程系

出处《计算机应用与软件》 CSCD 北大核心 2008年第11期14-15,19,共3页 Computer Applications and Software

基金国家863计划信息安全增值服务平台(2005AA145110)。

关键词 Denial—of-service 自相似小波分析连接信任域 Denial-of-service Self-similar Wavelet analysis Connection trust domain

分类号 TP393.08 [自动化与计算机技术—计算机应用技术] TP39 [自动化与计算机技术—计算机应用技术]

引文网络
相关文献

参考文献4

1Mellia M, Stoica L, Zhang H. TCP Model for Short Lived Flows. IEEE Communications Letters ,2002,6 ( 2 ) : 85 - 87.
2Aleksandar Kuzmanovic, Edward W Knightly. Low-Rate TCP-Targeted Denial of Service Attacks and Counter Strategies. IEEE/ACM Transactions on Networking, 2006,14 (4).
3Kuo Dong, Shoubao Yang, Shaolin Wang. Analysis of Low-rate TCP DoS Attack Against FAST TCP. Proceedings of the 6th International Conference on Intelligent Systems Design and Applications IEEE ,2006.
4李永利,刘贵忠,王海军,尚赵伟.自相似数据流的Hurst指数小波求解法分析[J].电子与信息学报,2003,25(1):100-105. 被引量：22

二级参考文献10

1[1]W.E. Leland, M. S. Taqqu, W. Willinger, D. V. Wilson, On the self-similar nature of Ethernet traffic (extended version), IEEE/ACM Trans. on Networking, 1994, 2(1), 1-15.
2[2]J. Beran, R. Sherman, M. S.Taqqu, W. Willinger, Long range dependence in variable bit rate video traffic, IEEE Trans. on Communication, 1995, 43(2/3/4), 1566-1579.
3[3]P. Abry, D. Veitch, Wavelet analysis of long-range dependent traffic, IEEE Trans. on Information Theory, 1998, 44(1), 2-15.
4[4]Z. Sahinoglu, S. Tekinay, Multiresolution decomposition and burstiness analysis of traffic traces,Wireless Communications and Networking Conference, WCNC. New Orleans, LA, USA, IEEE,Vol.2, 1999, 560-563.
5[5]P. Abry, P. Goncalves, P. Flandrin, Wavelet-based spectral analysis of 1/f process, IEEE International Conference on Acoustics, Speech, and Signal Processing, Minneapolis, MN, USA, Vol.3,1993, 237-240.
6[6]G. Wornell, Signal Processing with Fractal: A Wavelet Based Approach, Prentice Hall, Znc. NJ,1995, 30-57.
7[7]B. Tsybakov, N. D. Georganas, On self-similar traffic in ATM queues: Definitions, overflow probability bound, and cell delay distribution, IEEE/ACM Trans. on Networking, 1997, 5(3),397-409.
8[8]S. Giordano, S. Miduri, M. Pagano, F. Russo, S. Tartarelli, A wavelet-based approach to the estimation of the Hurst parameter for self-similar data, International Conference on Digital Signal Processing, DSP 97, Santorini, Greece, Vol.2, 1997, 479-482.
9[9]Z. Fan, P. Mars, Self-similar traffic generation and parameter estimation using wavelet transform,IEEE Global Telecommunications Conference, Phoenix, AZ, USA, Vol.3, 1997, 1419-1423.
10[10]Oliver Rose, Statistical properties of MPEG video traffic and their impact on traffic modeling in ATM systems. Proc. of the 20th Annual Conference on Local Computer Networks, Minneapolis,MN, 1995, 397-406.

共引文献21

1傅军栋,刘遵雄,张德运.使用小波多孔算法提高网络业务流自相似参数求解精度[J].江西农业大学学报,2005,27(6):920-924. 被引量：1
2REN Xun-yi,WANG Ru-chuan,WANG Hai-yan.Design and Realization of Software for Guard Against DDoS Based on Self-Similar and Optimization Filter[J].The Journal of China Universities of Posts and Telecommunications,2006,13(1):44-48. 被引量：1
3任勋益,王汝传,王海艳.基于自相似检测DDoS攻击的小波分析方法[J].通信学报,2006,27(5):6-11. 被引量：56
4吴援明,黄际彦,李乐民,程婷.自相似业务流HURST参数小波检测法的研究[J].信号处理,2006,22(3):353-356.
5李林峰,裘正定.自相似网络流量Hurst指数的迭代估计算法[J].电子与信息学报,2006,28(12):2371-2373. 被引量：4
6任勋益,王汝传,祁正华.消失矩对小波分析求解自相似参数Hurst的影响研究[J].电子与信息学报,2007,29(9):2257-2261. 被引量：4
7任勋益,王汝传,王海艳,李金明.基于自相似检测DDoS攻击的小波选择[J].南京航空航天大学学报,2007,39(5):588-592. 被引量：8
8王刚,温涛,郭权,马学彬.MANET路由中的链路测量及QoS协议实现[J].计算机工程与应用,2008,44(8):1-4.
9任勋益,王汝传,蔡小华,傅雷杨.一种基于Hurst指数的异常检测软件[J].计算机科学,2008,35(11):267-269.
10梅宏标,王坚,张慧哲.城市快速路交通流分形预测算法的研究[J].公路交通科技,2009,26(10):105-110. 被引量：3

1王建平,史浩山.无线传感器网络的拒绝服务攻击[J].信息安全与通信保密,2005,27(9):73-76. 被引量：4
2李高杰.浅议网络信息系统安全漏洞与防护[J].电子技术与软件工程,2013(18):241-241.
3顾双利.试论网络信息系统的安全漏洞与防护技术[J].经济技术协作信息,2014(23):78-79.
4鲍振忠,霍世龙.对网络信息系统安全漏洞的研究[J].硅谷,2010,3(13):101-101.
5严有日.基于DDOS攻击机理的分析与防范[J].闽西职业大学学报,2002,4(2):66-68.
6蒋本立.网络攻击和防御机制分类研究[J].中国校外教育,2010(7):164-164.
7王前,王磊,谢寿生.DDoS攻击和防御机制分类研究[J].计算机应用研究,2006,23(10):110-112. 被引量：2
8杨振兴.关于智能化网络设计的问题思考[J].黑龙江科技信息,2011(15):28-28. 被引量：1
9刘洋.试论网络信息系统安全漏洞的研究[J].中国新通信,2016,0(12):29-29.
10李鹏飞,李浩源,项征.网络信息系统安全漏洞的研究[J].数码世界,2017,0(1):29-30. 被引量：1

计算机应用与软件

2008年第11期

浏览历史

内容加载中请稍等...

基于小波分析和连接信任域的DDoS防范模型

参考文献4

二级参考文献10

共引文献21

相关作者

相关机构

相关主题

浏览历史