Journal of Computer Applications ›› 2015, Vol. 35 ›› Issue (6): 1705-1709.DOI: 10.11772/j.issn.1001-9081.2015.06.1705

Previous Articles     Next Articles

Optimization method of tracing distributed denial of service attacks based on autonomous system and dynamic probabilistic packet-marking

SHEN Xueli, SHEN Jie   

  1. School of Electronics and Information Engineering, Liaoning Technical University, Huludao Liaoning 125105, China
  • Received:2014-12-19 Revised:2015-02-14 Published:2015-06-12

基于自治系统与动态概率包标记的DDoS攻击溯源优化方法

沈学利, 申杰   

  1. 辽宁工程技术大学 电子与信息工程学院, 辽宁 葫芦岛 125105
  • 通讯作者: 申杰(1990-),男,江苏泰州人,硕士研究生,主要研究方向:计算机网络安全。shenjie_johnson@163.com
  • 作者简介:沈学利(1969-),男,江苏连云港人,教授,硕士,主要研究方向:计算机网络安全.

Abstract:

Distributed Denial of Service (DDoS) attack is a serious threat to network security. In order to solve this problem, an effective method of tracing DDoS attack was proposed based on Autonomous System (AS) and Dynamic Probabilistic Packet-Marking (DPPM). In the proposed method, a new scheme of packet marking was designed with setting up two markers as the domain marks and routing tags for inter-domain tracing and in-domain tracing. Domain marks and routing tags were set at the same time using dynamic packet marking methods. Finally, through the path reconstruction on in-domain and inter-domain, the attack node was traced back rapidly. The experimental results show that the proposed algorithm is efficient and feasible, which provides an important basis for the DDoS attack prevention.

Key words: Distributed Denial of Service (DDoS) attack, Autonomous System (AS), Dynamic Probabilistic Packet-Marking (DPPM), inter-domain tracing, in-domain tracing

摘要:

针对分布式拒绝服务(DDoS)攻击对于网络的严重威胁问题,提出基于自治系统(AS)与动态概率包标记(DPPM)的DDoS攻击溯源优化方法。在该方法中,设计了一种新的包标记方案,该方案设置两套标记,分别作为域标记和路由标记,用作域间溯源和域内溯源。域标记和路由标记过程同时进行,标记过程采用动态包标记的方法。最后,通过域间和域内的路径重构实现对攻击节点的快速溯源。实验结果表明该算法是高效、可行的,能为DDoS攻击的防范提供重要依据。

关键词: 分布式拒绝服务攻击, 自治系统, 动态概率包标记, 域间溯源, 域内溯源

CLC Number: