In order to label and trace the provenance of any simulated flow in multi-tenant network testbed,an interval-based flow watermarking and provenance tracing model was proposed.When a simulation flow was generated,this model first transformed the user''s watermarking content into 0-1 bit sequence and then sent packets of the flow at particular intervals according to the 0-1 bit sequence to label the flow.When the simulation flow was captured by the model,the time intervals between packets in the flow were transformed into the 0-1 bit sequence so that the watermarking content could be extracted to trace the provenance of this simulation flow.The resilience against various known attack techniques is illustrated through theoretical analysis.Moreover,a large number of experiments prove the validity of this model in tracing simulation flows under both normal and abnormal circumstance.%为了在支持多租户的网络测试床中对模拟流量进行标记和溯源,提出了一种基于时间间隔的网络流水印模型,当生成模拟流量时,该模型首先把水印内容转换成0~1比特序列,然后将0~1比特序列转换成流中数据包发送的时间间隔从而实现对模拟流量的标记.当接收模拟流量时,该模型通过将流中数据包的时间间隔转换成0~1比特序列,进而获取对应的水印内容,从而实现模拟流量的溯源.理论分析表明,该模型能够抵御多种攻击手段,同时大量实验证明了该模型在不丢包情况和丢包情况下对模拟流量进行溯源的有效性.
展开▼