摘要: 针对现有DRDoS防御方法反应滞后和过滤不全面的问题,基于协同防御思想,提出了一种DRDoS协同防御模型——HCF-AST。该方法通过协同式自学习算法,实现设备间DRDoS防御知识的共享,过滤来自外网的攻击流量;并引入入侵追踪技术,与入侵检测和过滤技术协同,定位并阻断内网攻击源。仿真结果表明,该模型能够及时发现并有效消除来自内外网的DRDoS攻击。
[1] 严芬,高玉龙,殷新春.DDoS攻击检测进展研究[J].苏州大学学报:自然科学版,2011,7(13):35-41 [2] Peng T.Detecting reflector attacks by sharing beliefs[J].IEEE Global Telecommunication Conference,2003,6:1358-1362 [3] Jin C,Wang H,Shin K,et al.An effective defense againstspoofedtraffic[C]∥ACM International Conference on Computerand Communications Confercnce Security.2003,0:30-41 [4] Noureldien N A,Osinan I M.A stateful inspection module architecture[C]∥IEEE/RENCON.2000,2:259-265 [5] Tsunoda H,Ohm K,Yamamoto A,et al.Detecting DDoS attacks by a simple response packet confirmation mechanism[J].Computer Communications,2008:3299-3306 [6] 何雪妮.一种改进的DRDoS检测算法[J].自动化与仪器仪表,2012,1(3):150-151,5 [7] Wang Hai-ning,Jin Cheng,Shin K G.Defense against spoofed IP traffic using hop-count filtering[J].IEEE/ACM Trans on Networking,2000,15(1):40-53 [8] 张永花,崔永君.DRDoS攻击及其防御技术研究[J].计算机安全,2009,4:53-55 [9] Mitzenmacher M,Upfal E.Probability and Computing,Rando-mized Algorithms and Probabilitic Analysis[M].Cambridge:Cambridge University Press,2005:217-223 |
No related articles found! |
|