摘要
本文基于对数据包标记算法的分析,并针对它存在的一些问题进行了改进,从而构造了一种基于MAC认证和相关分解的AS级确定包标记方案(ANRD-DPM)。首先构建一个AS域自身的追踪机制,使受害主机可以追踪到目标端AS的攻击边界入口,然后在此基础上实施域间的远程追踪,尽可能追踪到靠近攻击源的攻击入口,完成域间的协同追踪和防御。
Based on the analysis of ANRD- DPM algorithm, a ANRD- DPM algorithm is the marking algorithm in this paper. the existing problems of the ANRD-DPM are improved certification and AS level related decomposition(ANRD- DPM) is constructed. In the algorithm, address information of ingress border router of the target area is carried by the limited space of IP packet header, in order to traceback the attack ingress router. Furthermore, the cross-jurisdictional traceback scheme is put forward based on ANRD-DPM. It extends the tracing scope to remote source Autonomous System(AS) and corresponding source ingress routers.
作者
龙君君
袁爱民
Long Junjun Yuan Aimin(Mianyang Polytechnic , MianyangSichuan 621000, China)
出处
《科技通报》
北大核心
2016年第9期131-134,共4页
Bulletin of Science and Technology
关键词
确定包标记
检测
追踪
distributed collaborative defense
detection
traceback
