摘要
为了从根本上消除拒绝服务攻击等恶意入侵行为,保障通信软件服务器的安全,而又不会过多增加网络设备的开销,提出了一种基于协作交互三层框架结构的概率性数据包标记溯源(CPPM)方法.该算法根据当前网络中路由器的负载情况,自适应动态调整该路由器数据包标记概率和标记信息传递方式,可以用较小的网络开销快速地找到入侵源.仿真结果证明了CPPM方法的有效性和实用性.
In order to eliminate the attack in a quick mode and ensure the safety of communication software servers without too much overhead on routers,with a three layer framework,a traceback approach with probabilistic packet marking Internet protocol is proposed based on cooperations,called cooperation based probabilistic packet marking(CPPM).The proposed algorithm adjusts the marking probability and marking information transmission fashion according to the load of routers in the network.It can reconstruct the attack path back to the intrusion source in a quick mode with less impact on the network.Simulations show the effectiveness and practicability of the algorithm.
出处
《北京邮电大学学报》
EI
CAS
CSCD
北大核心
2012年第1期51-54,共4页
Journal of Beijing University of Posts and Telecommunications
基金
国家自然科学基金委创新研究群体项目(60821001)
关键词
通信软件安全
概率性数据包标记
协作交互
三层溯源框架
communication software security
probabilistic packet marking
cooperation
three layers framework
