摘要
提出了一种不需要ISP合作的基于代理的IP包源追查体系结构,描述了支持这种体系结构的分布式包记录代理服务器和集中式反向追查安全控制服务器的实现步骤,扩充了UnixIP包转发算法,实现了包摘要算法和自动追查系统,解决了诸如可疑包的识别、记载、追踪的安全性,节省路由器资源·通过仿真实验证明基于代理的IP包追踪方法是行之有效的·
A new technique was presented to trace spoofed packets back to their actual source host without relying on the cooperation of intervening ISPs. An agentbased distributed architecture for tracing suspicious IP packets was outlined. An agent server was designed to record packet digests,and a security control server was designed to traceback the originator of a spoofing IP packet. The arithmetic forwarding IP packet in Unix OS was expanded. The packet digest arithmetic and the agentbased automatic tracing system were realized. The methods for identifying suspicious packets and recording packet digest were tested through the simulation experiments. The agentbased method of tracing IP packet is feasible.
出处
《东北大学学报(自然科学版)》
EI
CAS
CSCD
北大核心
2003年第7期662-665,共4页
Journal of Northeastern University(Natural Science)
基金
国家自然科学基金资助项目(60073059).
