A Novel Mechanism to Defend Against Low-Rate Denial-of-Service Attacks

机译：防御低速率拒绝服务攻击的新型机制

获取原文

获取原文并翻译 | 示例

获取外文期刊封面目录资料

页面导航

摘要
著录项
引文网络
相似文献
相关主题

摘要

Low-rate TCP-targeted Denial-of-Service (DoS) attack (shrew) is a new kind of DoS attack which is based on TCP's Retransmission Timeout (RTO) mechanism and can severely reduce the throughput of TCP traffic on victim. The paper proposes a novel mechanism which consists of effective detection and response methods. Through analyzing sampled attack traffic, we find that there is a stable difference between attack and legitimate traffic in frequency field, especially in low frequency. We use Sum of Low Frequency Power spectrum (SLFP) for detection. In our algorithm the destination IP address is used as flow label and SLFP is applied to every flow traversing edge router. If shrew is found, all flows to the destination are processed by Aggregated Flows Balance (AFB) at a proper upstream router. Simulation shows that attack traffics are restrained and TCP traffics can obtain enough bandwidth. The result indicates that our mechanism is effective and deployable.

机译：针对TCP的低速率拒绝服务（DoS）攻击（shrew）是一种新型的DoS攻击，它基于TCP的重传超时（RTO）机制，可以严重降低受害者身上TCP流量的吞吐量。本文提出了一种新颖的机制，其中包括有效的检测和响应方法。通过分析采样的攻击流量，我们发现在频率字段中，特别是在低频时，攻击流量与合法流量之间存在稳定的差异。我们使用低频功率谱之和（SLFP）进行检测。在我们的算法中，将目标IP地址用作流标签，并将SLFP应用于每个流穿越边缘路由器。如果找到了精打细算，则到目的地的所有流都将在适当的上游路由器处由“聚合流平衡”（AFB）处理。仿真表明，攻击流量受到抑制，TCP流量可以获得足够的带宽。结果表明我们的机制是有效且可部署的。

著录项

来源
《IEEE International Conference on Intelligence and Security Informatics(ISI 2006); 20060523-24; San Diego,CA(US)》|2006年|P.261-271|共11页
会议地点 San DiegoCA(US)
作者
Wei Wei; Yabo Dong; Dongming Lu; Guang Jin; Honglan Lao;
展开▼
作者单位

College of Computer Science and Technology, Zhejiang University, Hangzhou 310027, P.R. China;

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类信息处理（信息加工）;
关键词

相似文献

外文文献
中文文献
专利

1. Distributed mechanism in detecting and defending against the low-rate TCP attack [J] . Haibin Sun, John C.S. Lui, David K.Y. Yau Computer networks . 2006,第13期

机译：分布式检测低速率TCP攻击的机制
2. RRED: robust RED algorithm to counter low-rate denial-of-service attacks [J] . Communications Letters, IEEE . 2010,第5期

机译：RRED：强大的RED算法可应对低速率拒绝服务攻击
3. On remote exploitation of TCP sender for low-rate flooding denial-of-service attack [J] . Kumar V.A., Jayalekshmy P.S., Patra G.K., IEEE communications letters . 2009,第1期

机译：关于TCP发送方的远程利用以进行低速率泛洪拒绝服务攻击
4. A Novel Mechanism to Defend Against Low-Rate Denial-of-Service Attacks [C] . Wei Wei, Yabo Dong, Dongming Lu, IEEE International Conference on Intelligence and Security Informatics . 2006

机译：一种防御低速拒绝服务攻击的新机制
5. On network-layer packet traceback: Tracing denial-of-service (DoS) and distributed denial-of-service (DDoS) attacks. [D] . Wu, Chien-Lung. 2004

机译：在网络层数据包回溯上：跟踪拒绝服务（DoS）和分布式拒绝服务（DDoS）攻击。
6. Low-Rate DoS Attacks Detection Based on MAF-ADM [O] . Sijia Zhan, Dan Tang, Jianping Man, 2020

机译：基于MAF-ADM的低速率DoS攻击检测
7. Distributed Mechanism in Detecting and Defending Against the Low-rate TCP Attack ∗ [O] . 2009

机译：防御低速率TCP攻击的分布式机制

A Novel Mechanism to Defend Against Low-Rate Denial-of-Service Attacks

摘要

著录项

引文网络

相似文献

相关主题

期刊订阅