基于Huffman编码的包标记算法研究

Research on Packet Marking Algorithm Based on Huffman Code

下载PDF

导出

摘要防范DDo S攻击的关键在于攻击源的定位,包标记是攻击源定位技术研究的热点。针对传统概率包标记存在的问题,提出选择IPv4数据报首部的选项字段作为标记区域,采用Huffman编码压缩标记信息,减少路径重构时所需标记包的数量;利用IPv6的隧道模式,在IPv4到IPv6网络时增加一个复制操作,将标记信息转存到IPv6的hop-by-hop字段,增加改进算法的适用范围。实验结果表明,改进算法快速、准确和高效,只需一个数据报即可完成路径重构,适用于IPv4和IPv6网络。 The key to prevent DDoS attacks is locating attack source, and packet marking is the hot spot of attack source locating technology. Aiming at the problems of packet marking, an improved algorithm is proposed. The improved algorithm chooses option field of IPv4 datagram header as the marking area and uses Huffman code to reduce the number of marked packets during path reconstruction. Packets pass from IPv4 network to IPv6 network, adding a copy operation to copy marking information to IPv6 extension header of hop - by - hop. Thus, it increases the application scope. The experimental results show that the improved algorithm is rapid, accurate and efficient. It can complete path reconstruction only needing a datagram, which can be applied to IPv4 and IPv6 network.

作者李明珍覃运初唐凤仙

机构地区河池学院计算机与信息工程学院

出处《河池学院学报》 2015年第5期74-78,共5页 Journal of Hechi University

基金广西教育厅高校科研项目(YB2014325) 河池学院青年科研课题(2013A-N002) 河池学院"计算机网络与软件新技术"重点实验室资助项目(院科研〔2013〕3号)

关键词 IPV4 IPV6 包标记选项 hop-by-hop HUFFMAN IPv4 IPv6 packet marking option hop - by - hop Huffman

分类号 TP393 [自动化与计算机技术—计算机应用技术]

引文网络
相关文献

参考文献12

1H Burch, B Cheswick, Tracing anonymous packets to their approximate source [ C ]// Proceeding of the 2000 USENIX LISA Conference. New Orleans, USA, December, 2000:319 - 327.
2Savage S, Wetherall D, Karlin A, et al. Practical network support for IP traceback [ C ]//Proceedings of the 2000 ACM SIGCOMM Confer- ence. New York, USA : ACM Press, 2000 : 295 - 306.
3Peng T, Lecki C, Ramamohanroa K. Adjusted probabilistic packet marking for IP traceback [ C ]//Proceedings of Networking 2002 Pisa, Italy : IFIP Press ,2002:697 - 708.
4Song Dawn, Perrig A. Advanced and authenticated marking schemes for IP traceback [ C ]//Proc of IEEE INFOCOM 2001. Alaska, USA : IEEE Press,2001:878 -886.
5Postel J. IP OPTION NUMBERS [ EB/OL]. [ 2015 - 01 - 08 ] http ://www. iana. org/assignments/ip - parametera/ip - paranmters, xhxhtml, 2013 - 05 - 28.
6蒋华,李明珍,王鑫.一种基于概率包标记的PPM算法改进方案[J].山东大学学报（理学版）,2011,46(9):85-88. 被引量：4
7Choi K H, Dai H K. A marking scheme using Huffman codes for IP traceback [ C ]//Proc of the 7th International Symposium on Parallel Archi- tectures, Algorithm and Networks Hong kong, China,2004:491 - 428.
8胡清钟,张斌.IPv6下基于Huffman编码的路径回溯算法研究[J].计算机工程与科学,2013,35(5):51-55. 被引量：1
9李明珍,蒋华,王鑫.基于扩展首部hop-by-hop的IPv6包标记算法研究[J].计算机应用研究,2012,29(6):2313-2316. 被引量：1
10Postel J. Internet Protocol (IPv4) [EB/OL]. [2015 -01 -08]http:// datatracker, ietf. org,/doc/rfe791/, 2013 -03 -02.

二级参考文献24

1SAVAGE S, WETHERALL D, KARLIN A, et al. Practical network support for IP traceback[ C ]// Proceedings of the 2000 ACM SIGCOMM Conference. New York, USA: ACM Press, 2000: 295-306.
2John Postel. IP option numbers[EB/OL]. (2011-04-05) [ 2011-07-05 ]. http ://www. iana. org/assignments/ip-param-eters.
3Chao Gong, Kamil Sarac. More practical approach for single-packet IP trackback using packet logging and marking [ J ]. IEEE Transactions on Parallel and Distributed System, 2008, 19(10) :1310-1324.
4PENG T, LECKI C, RAMAMOHANROA K. Adjusted probabilistic packet marking for IP traceback [ C ]// Proceedings of Networking 2002. Pisa, Italy: IFIP Press, 2002 : 697-708.
5Song Dawn, PERRIG A. Advanced and authenticated marking schemes for IP traceback [ C ]// Proceedings of IEEE INFOCOM 2001. Alaska, USA : IEEE Press, 2001 : 878-886.
6SAVAGE S, WETHERALL D, KARLIN A, et al. Practical network support for IP traceback [ C]//Proc of ACM SIGCOMM Conference. New York : ACM Press ,2000:295-306.
7SONG D, PERRIG A. Advanced and authenticated marking schemes for IP traceback [ C ]//Proc of IEEE INFOCOM. [ S. L ] : IEEE Press, 2001:878-886.
8PENG Tao, LECKI C, RAMAMOHANROA K. Adjusted probabilistic packet marking for IP traceback [ C ]//Proc of NETWORKING. London : Springer-Verlag,2002:697-708.
9DEERING S, HINDEN R. RFC 2460,Internet protocol, version 6 ( IPv6 ) specification [ S ]. [ S. L ] : IETF, 1998.
10CONTA A, DEERING S. RFC 2473, Generic packet tunneling in IPv6 specification[ S]. [ S. L ] :IETF,1998.

共引文献3

1李明珍,蒋华,王鑫.基于扩展首部hop-by-hop的IPv6包标记算法研究[J].计算机应用研究,2012,29(6):2313-2316. 被引量：1
2陈秀真,李生红,凌屹东,李建华.面向拒绝服务攻击的多标签IP返回追踪新方法[J].西安交通大学学报,2013,47(10):13-17. 被引量：1
3戴杨,陈芳.实时数据库中数据的分类压缩算法[J].计算机与现代化,2016(6):123-126. 被引量：4

1杨月江,傅贵.基于代数方法的概率报文标注算法研究[J].微电子学与计算机,2008,25(1):69-72.
2周治国,李陶深.无线传感器网络中数据可靠传输策略的研究[J].大众科技,2007,9(9):91-92. 被引量：1
3蔡玮珺,黄皓.DDoS攻击IP追踪及攻击源定位技术研究[J].计算机工程,2006,32(14):151-153. 被引量：6
4于泠,陈波,肖军模.一种网络攻击路径重构方案[J].电子科技大学学报,2006,35(3):392-395. 被引量：2
5褚为民,陈波,于泠.网络攻击路径重构中的报文标记方案研究[J].南京师范大学学报（工程技术版）,2005,5(1):61-64.
6李明珍,蒋华,王鑫.基于扩展首部hop-by-hop的IPv6包标记算法研究[J].计算机应用研究,2012,29(6):2313-2316. 被引量：1
7蒋华,李明珍,王鑫.一种基于概率包标记的PPM算法改进方案[J].山东大学学报（理学版）,2011,46(9):85-88. 被引量：4
8杨文静,陈义平.一种新的分布式DDoS攻击防御体系[J].现代电子技术,2006,29(19):54-57. 被引量：3
9李小勇,刘东喜,谷大武,白英彩.DDoS防御与反应技术研究[J].计算机工程与应用,2003,39(12):59-62. 被引量：11
10王华,柴乔林,杜胜永.无线传感器网络中数据可靠传输的节能路由算法[J].计算机应用,2006,26(1):25-27. 被引量：8

河池学院学报

2015年第5期

浏览历史

内容加载中请稍等...

基于Huffman编码的包标记算法研究

参考文献12

二级参考文献24

共引文献3

相关作者

相关机构

相关主题

浏览历史