摘要
IP追踪技术是检测和防御分布式拒绝服务攻击的重要手段,它的主要目的是想办法追踪到攻击数据包的源地址,弥补IP协议的不足。成熟的IP追踪技术可以有效抑制DDoS攻击的发生,对网络故障的诊断和减少数据包欺骗将有很大的帮助。文中对当前现有的IP追踪和攻击源定位技术作了系统的分类,分别对它们作了全面的分析并比较了相互之间的异同及优缺点。同时,针对当前的IP追踪和攻击源定位技术现状,讨论了其未来的发展趋势。
The IP tracing technology is an important means for detection and defense of distributed denial-of-service attack, with a principal purpose to trace the source address of attack data packet and remedy the deficiency of IP Protocol. The mature IP tracing technology could effectively depress the DDoS attack and reduce the faked packets, and be also used in network failure diagnosis. This paper systemically classifies the present IP tracing and source- finding technologies, comprehensively analyzes and compares various IP tracing and source-finding technologies. Based on the present situation, it also discusses the development trend of IP tracing and source-finding technologies.
出处
《信息安全与通信保密》
2012年第1期103-105,共3页
Information Security and Communications Privacy
关键词
DOS攻击
IP追踪技术
包标记
包记录
denial-of-service attacks(DoS)
IP traceback
packet marking
packet logging