摘要
随着云计算及物联网技术的快速发展,不安全的网络空间资源呈指数级增长,分布式拒绝服务攻击(DDoS)逐渐成为威胁计算机网络安全的最主要因素之一。在攻击与防御的过程中,DDoS攻击的发展趋势正由传统的单线攻击发展为平台攻击。当前对Web应用层攻击的研究主要集中于传统CC攻击、变异的CC攻击、HTTP慢速攻击及基于HTML5的WebSocket新特性攻击等领域。文章在现有研究的基础上,对两类基于Web应用层的DDo S攻击模型进行了深入的分析,一类是基于API的DDo S攻击模型,另一类是基于Web后门的DDo S攻击模型。两种模型均是基于Web特性的新型攻击方式,具有比较典型的特征。对此类攻击模型的研究,有助于网络安全研究人员提出相应的防御方法,提高Web服务端抗DDoS攻击的能力。
Due to the rapid development of cloud computing and IoT technology, unsafe network space resources are growing exponentially, leading to distributed denial of service attacks(DDoS) gradually becoming the most important threat to computer network security. In the process of attack and defense, the development trend of DDoS attack is changing from traditional single-line attack to platform attack. Currently, the research fields of Web application layer attacks mainly focus on traditional CC attacks, mutated CC attacks, HTTP slow attacks and new features attacks of Web Socket based on HTML5. On the basis of existing research, this paper makes a deep analysis of two kinds of DDoS attack models based on Web application layer, one is based on API, the other is based on Web backdoor. Both models are new attack modes based on Web characteristics and have typical characteristics. The research on this kind of attack model is helpful for network security researchers to propose corresponding defense methods and improve the ability of Web server to resist DDoS attacks.
作者
喻志彬
马程
李思其
王淼
YU Zhibin;MA Cheng;LI Siqi;WANG Miao(Network Security Corps, Beijing Public Security Bureau, Beijing 100029, China;Yunnan Police College, Kunming Yunnan 650223, China;Unit 31436 of PLA, Shenyang Liaoning 110805, China)
出处
《信息网络安全》
CSCD
北大核心
2019年第5期84-90,共7页
Netinfo Security
