摘要
移动自组网(Mobile Ad Hoc Networks,MANETs)所面临的Flooding攻击是一种严重DOS攻击行为。然而,现有的针对Flooding攻击的防范技术因不能较好地适应MANETs特性(如有限资源、动态拓扑等)而难以在MANETs网络性能和网络安全之间保持平衡。通过分析移动自组网的时空动态性、网络性能评估与Flooding安全威胁之间的内在关系,提出了一种基于性能评估的Flooding攻击防御技术。通过构建可量化的MANETs安全威胁、防御收益与代价的评估指标体系,实现了基于网络安全和性能平衡的防御及其性能优化方法。仿真实验结果表明,所提出的防御技术可有效地弥补现有移动自组网安全技术存在的一些缺陷,因而能够满足移动自组网特性且适合于实际应用。
Flooding attacks is a kind of seriously harmful DOS attack in mobile Ad Hoc networks. However, the existing researches on security defense for flooding attacks are almost unfit for the characteristics (such as limited resource, dy- namic topology) in Ad Hoc networks, and couldn't keep the balance between network performance and network securi- ty. On the basis of analysis of the inherent relations among space-time dynamic properties, network performance evalua- tion and security threatens, a defense technology based on performance evaluation for Flooding attacks in mobile Ad Hoc networks was presented. With the measurable system evaluation indexes for security threaten, defense income and cost, the mechanism of making defense policies and optimizing defense performance is achieved in the proposed system. Simulation results show that the proposed defense technology can overcome a good many drawbacks in the existing se- curity technologies for mobile Ad Hoc networks. Consequently, the proposed technology can meet the network pro- perties and actual application of mobile Ad Hoc networks.
作者
王伟
王嘉郡
王明明
张文静
陈金广
WANG Wei WANG Jia-jun WANG Ming-ming ZHANG Wen-iing CHEN Jin-guang(School of Computer Science, Xi' an Polytechnic University, Xi' an 710048, China School of Sohware,Xiamen University,Xiamen 361005,China)
出处
《计算机科学》
CSCD
北大核心
2017年第1期159-166,共8页
Computer Science
基金
陕西省教育厅专项科研计划(15JK1317)
自然科学基金青年项目(61201118)
自然科学基金面上项目(61175039)资助
关键词
移动自组网
Flooding攻击
性能评估
时空动态性
安全威胁
Mobile Ad Hoe networks, Flooding attacks, Network performance evaluation, Space-time dynamics, Securitythreatens