计算机应用 ›› 2011, Vol. 31 ›› Issue (09): 2352-2355.DOI: 10.3724/SP.J.1087.2011.02352

• 信息安全 • 上一篇    下一篇

基于确定线性网络编码的IPv6追踪

闫巧1,宁土文2   

  1. 1. 深圳大学 计算机与软件学院,广东 深圳 518060
    2. 深圳大学 信息工程学院,广东 深圳 518060
  • 收稿日期:2011-03-17 修回日期:2011-05-13 发布日期:2011-09-01 出版日期:2011-09-01
  • 通讯作者: 宁土文
  • 作者简介:闫巧(1972-),女,广西资源人,教授,博士,CCF会员,主要研究方向:网络安全;
    宁土文(1986-),男,广东吴川人,硕士研究生,主要研究方向:网络安全。
  • 基金资助:
    国家自然科学基金资助项目(60972011)

Traceback of IPv6 based on deterministic linear network coding

YAN Qiao1,NING Tu-wen2   

  1. 1. College of Computer Science and Software Engineering, Shenzhen University, Shenzhen Guangdong 518060, China
    2. College of Information Engineering, Shenzhen University, Shenzhen Guangdong 518060, China
  • Received:2011-03-17 Revised:2011-05-13 Online:2011-09-01 Published:2011-09-01
  • Contact: NING Tu-wen

摘要: 针对IPv6的概率包标记(PPM)IP追踪方法的重构路径算法复杂度和误报率过高等不足,提出基于确定线性网络编码的IPv6追踪方法。该方法采用IPv6逐跳选项扩展报头作为标记区域,将确定线性网络编码应用到概率包标记中,同时添加了64bit的攻击路径采样。理论分析和在NS2环境下的仿真实验结果表明,该方法减少了占用的网络带宽和重构路径所需要的数据包数,降低了重构算法复杂度和误报率,提高了标记效率。

关键词: IP追踪, 网络编码, IPv6, 概率包标记, 扩展报头, 分布式拒绝服务攻击

Abstract: To solve the problem of Probabilistic Packet Marking (PPM) method for IPv6 that the computational complexity of reconstruction and false alarm rate are too large, a new traceback method for IPv6 based on deterministic linear network coding was proposed. The method chose the hop-by-hop option extension header of IPv6 for the marked region and applied the deterministic linear network coding to the probabilistic packet marking. Moreover, the 64bit sampling was employed to check the attack paths. The theoretical analysis and simulation in NS2 environment show that the method decreases the wasted network bandwidth and the amount of packets needed to reconstruct the path, reduces the computational complexity of reconstruction and false alarm rate, and improves the mark efficiency.

Key words: IP traceback, network coding, IPv6, Probabilistic Packet Marking (PPM), extension header, Distributed Denial-of-Service (DDoS)

中图分类号: