Based on the analysis of the effects on average size of packet in the queue which LDoS attack makes, the change of this value was got by simulation on NS2. So the detection algorithm was proposed, and was applied on Drop-tail and RED, which were typical queue management algorithm. The result of simulation shows that the algorithm can effectively detect the LDoS attack.%分析了LDoS攻击对缓冲区队列平均报文长度(ASPQ)的影响,通过实验获得队列报文平均长度在遭受攻击情况下的改变.在此基础上提出了基于ASPQ的LDoS攻击检测方法,并应用在目前典型的队列管理算法(Droptail和RED)中.最后,通过实验证明该方法可以有效检测LDoS攻击.
展开▼