计算机工程与应用 ›› 2007, Vol. 43 ›› Issue (19): 135-137.

• 网络、通信与安全 • 上一篇    下一篇

一种新的DDoS攻击源追踪包标记方法

杨长春1,2,倪彤光2,薛恒新1   

  1. 1.南京理工大学 经济管理学院,南京 210094
    2.江苏工业学院 计算机科学与工程系,江苏 常州 213164
  • 收稿日期:1900-01-01 修回日期:1900-01-01 出版日期:2007-07-01 发布日期:2007-07-01
  • 通讯作者: 杨长春

New packet marking scheme for DDoS attack source traceback

YANG Chang-chun1,2,NI Tong-guang2,XUE Heng-xin1   

  1. 1.School of Economics & Management,Nanjing University of Science and Technology,Nanjing 210094,China
    2.Department of Computer Science and Engineering,Jiangsu Polytechnic University,Changzhou,Jiangsu 213164,China
  • Received:1900-01-01 Revised:1900-01-01 Online:2007-07-01 Published:2007-07-01
  • Contact: YANG Chang-chun

摘要: 分布式拒绝服务(DDoS)攻击是目前最难处理的网络难题之一,在提出的多种对策中,通过包标记方法来进行IP跟踪受到广泛重视。提出了一种新的包标记方法(IPPM),来改进包标记方法需要网络中每个路由器都支持的弱点。通过实验表明,在包标记方法不完整配置的网络中,该方法能有效地重构攻击路径并且误报率很低。

Abstract: Distributed Denial of Service(DDoS) attack is one of the hardest network problems.Among several countermeasures,
packet marking used for IP traceback is promising.In this paper,a new packet making scheme is given,which can cover some routers not supporting packet marking.This scheme can be used to advance the accuracy of a reconstructed path in an incomplete packet marking network.Its performances are emulated and the results show well.