北京邮电大学学报

  • EI核心期刊

北京邮电大学学报 ›› 2012, Vol. 35 ›› Issue (1): 51-54.doi: 10.13190/jbupt.201201.51.yand

• 论文 • 上一篇    下一篇

基于协作交互的概率性数据包标记溯源方法

阎冬,王玉龙,苏森,杨放春
  

  1. 北京邮电大学 网络与交换技术国家重点实验室, 北京 100876
  • 收稿日期:2011-10-18 修回日期:2011-10-20 出版日期:2012-02-28 发布日期:2012-01-05
  • 通讯作者: 阎冬 E-mail:yandong200@163.com
  • 作者简介:阎冬(1983-),男,博士生,E-mail:yandong200@gmail.com 杨放春(1957-),男,教授,博士生导师
  • 基金资助:

    国家自然科学基金委创新研究群体项目(60821001)

A Traceback Approach with Probabilistic Packet Marking IP Based on Cooperations

YAN Dong,WANG Yu-long,SU Sen,YANG Fang-chun
  

  1. State Key Laboratory of Networking and Switching Technology, Beijing University of Posts and Telecommunications, Beijing 100876, China
  • Received:2011-10-18 Revised:2011-10-20 Online:2012-02-28 Published:2012-01-05
  • Contact: Dong Yan E-mail:yandong200@163.com

摘要:

为了从根本上消除拒绝服务攻击等恶意入侵行为,保障通信软件服务器的安全,而又不会过多增加网络设备的开销,提出了一种基于协作交互三层框架结构的概率性数据包标记溯源(CPPM)方法.该算法根据当前网络中路由器的负载情况,自适应动态调整该路由器数据包标记概率和标记信息传递方式,可以用较小的网络开销快速地找到入侵源.仿真结果证明了CPPM方法的有效性和实用性.

关键词: 通信软件安全, 概率性数据包标记, 协作交互, 三层溯源框架

Abstract:

In order to eliminate the attack in a quick mode and ensure the safety of communication software servers without too much overhead on routers, with a three layer framework, a traceback approach with probabilistic packet marking Internet protocol is proposed based on cooperations, called cooperation based probabilistic packet marking (CPPM). The proposed algorithm adjusts the marking probability and marking information transmission fashion according to the load of routers in the network. It can reconstruct the attack path back to the intrusion source in a quick mode with less impact on the network. Simulations show the effectiveness and practicability of the algorithm.

Key words: communication software security, probabilistic packet marking, cooperation, three layers framework

中图分类号: