摘要
针对应用层分布式拒绝服务(application layer DDoS,简称App-DDoS)攻击的特点,结合流量控制技术,应用可信度的概念和分布式处理的思想,提出了基于可信度的App-DDoS攻击的分布式流量控制模型。该模型以正常用户的服务请求数据分布规律作为计算可信度的依据,利用多层次结构,在网络拓扑的不同节点上实现流量控制,从而实现了在防御App-DDoS攻击的同时,降低了对网络性能的影响。
The application layer distributed denial of service (application layer DDoS, referred to as App-DDoS) attack characteristics, combined with flow control technology, the applications of credibility and the thought of distributed processing, made Distributed flow control model of the App-DDoS attacks based on the credibility. The model calculated the credibility with the normal user's service request for data distribution and achieve flow control in different nodes of the topology network with multi-level structure,thus not only achieve the defense against the App-DDoS attack at the same time, but also reduced the impact on performance of network.
出处
《微计算机信息》
2009年第9期75-76,302,共3页
Control & Automation
基金
基金申请人:龙士工
赵梦龙
刘春英
项目名称:基于时序逻辑的安全协议Petri网分析与模型检验的研究与实现
基金颁发部门:贵州省科学技术基金委(黔科合J字[2008]2117)
关键词
应用层分布式拒绝服务
流量控制
可信度
服务请求数据分布规律
application-level distributed denial of service
traffic control
credibility
service request for data distribution services