源端网络检测与抑制DDoS方法设计与实现 |
| |
引用本文: | 孙梦尧,朱明,申纯洁.源端网络检测与抑制DDoS方法设计与实现[J].应用声学,2018,26(1). |
| |
作者姓名: | 孙梦尧 朱明 申纯洁 |
| |
作者单位: | 湖北大学计算机与信息工程学院,湖北大学计算机与信息工程学院,湖北大学计算机与信息工程学院 |
| |
摘 要: | 提出了一种源端网络DDoS攻击检测的方法。本方法基于BPF包过滤在源端网络的网关上监控数据包,通过计算网络报文的目的IP地址的信息熵进行可疑流量的检测,最终进一步使用连接跟踪的技术对可疑流量进行判别。本方法可以有效的鉴别出SYN Flood的流量,并在源端网络中直接拦截,节省计算资源。
|
关 键 词: | DDoS 源端检测 信息熵 连接跟踪 |
收稿时间: | 2017/9/21 0:00:00 |
修稿时间: | 2017/10/9 0:00:00 |
Method for DDoS Detection and Suppression in Source Network |
| |
Institution: | Computer and Information Engineering Collage of Hubei University,Hubei Wuhan,430062,,Computer and Information Engineering Collage of Hubei University,Hubei Wuhan,430062 |
| |
Abstract: | This paper presents a method for DDoS attack detection in source network. This method is based on BPF packet filtering to monitor packets on the gateway of the source network. The information entropy of the destination IP address of the network packets is used to detect the suspicious traffic. Finally, the connection tracing technique is used to judge the suspicious traffic. This method can effectively identify the traffic of SYN Flood, and directly intercepts and saves the computing resources in the source network. |
| |
Keywords: | DDoS Source Detection Information Entropy Connection Track |
|
| 点击此处可从《应用声学》浏览原始摘要信息 |
| 点击此处可从《应用声学》下载免费的PDF全文 |
|