基于矩阵边采样的IP追踪被引量：1

IP traceback with matrix edge sampling

下载PDF

导出

摘要针对Savage概率包标记压缩边分片采样算法存在的不足,提出改进的压缩分片采样方法,即基于矩阵边采样的IP追踪方法 (IP traceback with matrix edge sampling,MES).通过1个二维单位矩阵对相邻路由进行边采样,降低重构算法复杂度;引入8 bit的多路径检验,降低重构路径误报率;采用自适应概率对数据包标记,使重构路径所需数据包数量减少.理论分析和在NS2环境下的实验仿真表明,MES方法的性能在上述3方面都有较大改善. The Internet protocol（IP） traceback with matrix edge sampling （MES） was proposed based on compressed edge fragment sampling algorithm of probabilistic packet marking （PPM）. The MES algorithm reduced the complexity of reconstruction algorithm by applying a two-dimensional matrix to the edge sampling between adjacent routes. Moreover, eight bits hash was employed to check the attack paths in order to reduce false alarm rate of reconstruction paths. The MES reduced the arnount of packets to reconstruct the path by using adaptive proba- bility for packet marking. Theoretical analysis and experimental simulation in NS2 environment have shown that the performance of new algorithm is improved on the amount of packets to reconstruct the path. The computational complexity of reconstruction and false alarm rate are also reduced efficiently.

作者闫巧宁土文

机构地区深圳大学计算机与软件学院深圳大学信息工程学院

出处《深圳大学学报（理工版）》 EI CAS 北大核心 2012年第5期399-404,共6页 Journal of Shenzhen University(Science and Engineering)

基金国家自然科学基金资助项目(60972011)~~

关键词数据安全计算机安全 IP追踪概率包标记网络安全拒绝服务攻击分布式拒绝服务攻击压缩边分片采样算法自适应概率分片标记算法 data security computer security Internet protocol traceback probabilistic packet marking networksecurity denial of service attack distributed denial of service attack compressed edge fragment sampling algo-rithm adaptive probability fragment marking algorithm

分类号 TP393 [自动化与计算机技术—计算机应用技术] TP393.08 [自动化与计算机技术—计算机应用技术]

引文网络
相关文献

参考文献13

1Belenky A, Ansari N. On IP traceback [ J ]. IEEE Communications Magazine, 2003, 41(7) : 142-153.
2Stone R. Center track: an IP overlay network for tracking Dos floods [ C ]// Proceedings of 2000 USENIX Security Symposium. Denver (USA) , 2000 : 199-212.
3Burch H, Cheswick B. Tracing anonymous packets to their approximate source [ C ]// Proceedings of 2000 USENIX LISA Conference. Seattle ( USA), 2000: 319- 327.
4Sung M, Xu J, Li J, et al. Large-scale IP traceback in high-speed internet: practical techniques and information- theoretic foundation [ J ]. IEEE/ACM Transactions on Networking, 2008, 16(6): 1253-1266.
5Savage S, Wetherall D, Karlin A, et al. Network sup- port for IP traceback [ J ]. IEEE/ACM Transactions on Networking, 2001, 9(3): 226-237.
6闫巧,夏树涛,吴建平.改进的压缩边分段采样算法[J].西安电子科技大学学报,2006,33(5):824-828. 被引量：6
7LIU Jenshiuh, LEE Zhi-Jian, CHUNG Yeh-Ching. Dy- namic probabilistic packet marking for efficient IP trace- back [ J ]. The International Journal of Computer and Tel- ecommunications Networking, 2007, 51 (3) : 866-882.
8吕俊杰,刘丽.一种新的IP追踪的分片标记方法[J].计算机工程与应用,2010,46(13):4-7. 被引量：2
9Dean D, Franklin M, Stubblefield A. An algebraic ap- proach to IP traceback [ J]. ACM Transactions on Infor- rnation and System Security, 2002, 5 (2) : 119-137.
10Pegah Sattari, Minas Gjoka, Athina Markopoulou. A Network coding approach to IP traceback [ C ]// IEEE International Symposium on Network Coding (NetCod). Toronto: [s. l. ], 2010: 1-6.

二级参考文献17

1Paul F,Daniel S.RFC 2827 Network ingress filtering:Defeating denial of service attacks which employ IP source address spoofing[S/OL].2000.http://www.ieff.org/rfc/rfc2827.txt.
2Burch H,Cheswick B.Tracing anonymous packets to their approximate source[C]//Proceedings of 2000 USENIX LISA Conference,Seattle,Washington,USA,2000:319-327.
3Stone R.CenterTrack:An IP overlay network for tracking DoS floods[C]//Proceedings of 2000 USENIX Security Symposium,Denver,Colorado,USA,2000:199-212.
4Glenn S.security fun with ocxmou and cflowd[R/OL].Presentation at the Internet 2 Working Group,1998.http://www.caich.org/.projects/NGI/content/security/1198.
5Bellovin S.ICMP traceback messnges[EB/OL].(2OOO).http://www.research.att.com/-smb.
6Savage S,Wetherall D,Karlin A,et al.Network support for IP traceback[J].IEEE/ACM Transactions on Networking,2001,9 (3):226-237.
7Song D,Perrig A.Advaneed and authenticated marking schemes for IP traceback[C]//Proceedings of the 20th Annual Joint Conference on IEEE Computer and Communications Societies.Anchorage:IEEE INFOCOM,2001:878-886.
8Peng T,Lecki C,Ramamohanroa K.Adjusted probabilistic packet marking[C]//Proceedings of Networking 2002.Pisa:IEEE Computer Society,2002:697-708.
9Durresi A,Paruchuri V,Barolli L,et al.Efficient and secure autonomous system based traceback[J].Journal of Interconnection Networks,2004,5:151-164.
10Boneh A,Hofri M.The coupon-ceilector problem revisited[J].commun Statist Stochastic Models,1997,13(1):39-66.

共引文献6

1杨谦,黄琳,林中.IP追踪技术[J].计算机工程与设计,2007,28(22):5367-5370. 被引量：5
2闫巧.基于Internet无尺度特性的IP源地址假冒过滤[J].计算机工程,2009,35(3):164-165.
3胡长俊.概率包标记技术综述[J].通信技术,2009,42(2):267-269. 被引量：5
4闫巧,宁土文.重叠哈希分片的概率包标记方法[J].计算机工程,2011,37(17):11-14. 被引量：1
5张敏,赵红杰,熊安萍.一种新的IP溯源追踪方案[J].计算机工程与应用,2011,47(30):83-85. 被引量：1
6方赵林,孙志磊,徐俊,章伟辉.基于蚁群思想的源攻击追踪方法[J].浙江工业大学学报,2012,40(6):666-669.

同被引文献15

1DOULIGERIS C, MITROKOTSA A. DDoS attacks and defense mechanisms:classification and state-of-the-art[J]. Computer Networks, 2004, 44(5):643-666.
2SAVAGE S, WETHERALL D, KARLIN A, et al. Practical network support for IP traceback[J]. Journal of Clinical Epidemiology, 2001, 30(4):295-306.
3SONG D X, PERRIG A. Advanced and authenticated marking schemes for IP traceback[C]//Proceedings of the 20th Annual Joint Conference of the IEEE Computer and Communications Societies. Piscataway, NJ:IEEE, 2001:878-886.
4GOODRICH M T. Probabilistic packet marking for large-scale IP traceback[J]. IEEE/ACM Transactions on Networking, 2008, 16(1):15-24.
5WANG X J, WEI S J. IP traceback based probabilistic packet marking and randomized network coding[C]//Proceedings of the 2nd International Workshop on Computer Science and Engineering. Piscataway, NJ:IEEE, 2009:151-154.
6SATTARI P, GJOKA M, MARKOPOULOU A. A network coding approach to IP traceback[C]//Proceedings of the 2010 IEEE International Symposium on Network Coding. Piscataway, NJ:IEEE, 2010:1-6.
7YAN Q, NING T W. IP traceback with matrix edge sampling[J]. Journal of Shenzhen University (Science and Engineering), 2012, 29(5):399-404.
8DONOHO D L. Compressed sensing[J]. IEEE Transactions on Information Theory, 2006, 52(4):1289-1306.
9CANDES E J, ROMBERG J, TAO T. Robust uncertainty principles:exact signal reconstruction from highly incomplete frequency information[J]. IEEE Transactions on Information Theory, 2006, 52(2):489-509.
10GOLD R. Optimal binary sequences for spread spectrum multiplexing[J]. IEEE Transactions on Information Theory, 1967, 13(4):619-621.

引证文献1

1唐燕,闾国年,张红.基于多维伪随机序列的高级包标记策略算法[J].计算机应用,2016,36(11):3093-3097. 被引量：1

二级引证文献1

1常志鹏.高速网络环境下可控攻击源追踪标记方法仿真[J].计算机仿真,2018,35(2):287-290.

1吕俊杰,刘丽.一种新的IP追踪的分片标记方法[J].计算机工程与应用,2010,46(13):4-7. 被引量：2
2刘丽,黄芳芳.IP追踪技术压缩边分片采样算法的改进[J].微电子学与计算机,2010,27(12):78-81.
3邓一贵,张海龙,唐学文.跨域的混合包标记编码方案[J].计算机工程与应用,2011,47(8):70-71.
4李海雁,钱开国,解永刚,戴祖诚.无线传感器网络路由协议性能研究[J].电子设计工程,2011,19(23):83-87. 被引量：1
5刘永广,张剑,陈瑞昭,姚若河.一种基于网络编码的Ad Hoc网络多路径源选路由算法[J].华南师范大学学报（自然科学版）,2010,42(3):42-46. 被引量：2
6李德全,苏璞睿,冯登国.用于IP追踪的包标记的注记(英文)[J].软件学报,2004,15(2):250-258. 被引量：29
7严旭.领军IT狂人[J].信息方略,2010(23):14-15.
8胡长俊.数据包标记技术综述[J].网络安全技术与应用,2008(11):80-81.
9林岚岚.遗传算法在自动组卷系统中的应用[J].现代计算机,2012,18(3):10-13.
10李秀珍,刘渊,陈彦.基于自适应包标记算法的改进[J].计算机工程与设计,2008,29(7):1641-1643.

深圳大学学报（理工版）

2012年第5期

浏览历史

内容加载中请稍等...

基于矩阵边采样的IP追踪被引量：1

参考文献13

二级参考文献17

共引文献6

同被引文献15

引证文献1

二级引证文献1

相关作者

相关机构

相关主题

浏览历史

基于矩阵边采样的IP追踪 被引量：1

参考文献13

二级参考文献17

共引文献6

同被引文献15

引证文献1

二级引证文献1

相关作者

相关机构

相关主题

浏览历史

基于矩阵边采样的IP追踪被引量：1