Data Enriched SACK: A Novel Acknowledgement Generation Scheme for Secure SCTP

Kumar V.A.; Das D.

首页> 外文期刊>Communications Letters, IEEE >Data Enriched SACK: A Novel Acknowledgement Generation Scheme for Secure SCTP

【24h】

Data Enriched SACK: A Novel Acknowledgement Generation Scheme for Secure SCTP

机译：数据丰富的SACK：一种用于安全SCTP的新型确认生成方案

获取原文

获取原文并翻译 | 示例

获取外文期刊封面封底 >>

开具论文收录证明 >>

文献代查 >>

团队文献服务 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

The Stream Control Transmission Protocol (SCTP) is inherently vulnerable to optimistic Selective Acknowledgement (SACK) spoofing. We highlight a threat scenario in which this vulnerability is exploited for the generation of sustained and powerful Denial-of-Service attack flood over the Internet. We identify and analyze a fundamental design limitation in SCTP that leads to the above mentioned vulnerability and propose a novel acknowledgement generation scheme, called Data Enriched SACK (DESACK), to make SCTP robust against optimistic SACK spoofing. We present the design and implementation details of DESACK. The proposed scheme is experimentally implemented, tested and integrated into the SCTP framework in the Linux Kernel. We also provide real-world experimental results to demonstrate the feasibility and effectiveness of DESACK on a highly loaded multi-hop production network.

机译：流控制传输协议（SCTP）本质上容易受到乐观的选择性确认（SACK）欺骗。我们重点介绍一种威胁场景，其中利用此漏洞来通过Internet生成持续强大的拒绝服务攻击泛滥。我们确定并分析了导致上述漏洞的SCTP的基本设计局限性，并提出了一种新颖的确认生成方案，称为数据丰富SACK（DESACK），以使SCTP抵御乐观SACK欺骗。我们介绍了DESACK的设计和实现细节。所提出的方案是通过实验实现，测试并集成到Linux内核的SCTP框架中的。我们还提供了真实的实验结果，以证明DESACK在高负载多跳生产网络上的可行性和有效性。

著录项

来源
《Communications Letters, IEEE 》 |2014年第12期| 2109-2112| 共4页
作者
Kumar V.A.; Das D.;
展开▼
作者单位

展开▼
收录信息
原文格式 PDF
正文语种 eng
中图分类
关键词
Internet; Payloads; Ports (Computers); Protocols; Receivers; Robustness; DESACK; Data Enriched SACK; Optimistic SACK Spoofing; SCTP; Stream Control Transmission Protocol; Stream control transmission protocol; data enriched SACK; optimistic SACK spoofing;

机译：互联网;有效负载;端口（计算机）;协议;接收器;稳健性;DESACK;数据丰富的SACK;乐观的SACK欺骗;SCTP;流控制传输协议;流控制的传输协议;数据丰富的SACK;乐观的SACK欺骗;

相似文献

外文文献
中文文献
专利

1. Secured hand sacking based two phase data concealing architecture in spectral domain [J] . Das Sujit, Mandal J. K. Microsystem technologies . 2020 ,第10期

机译：在频谱域中基于两相数据隐藏架构的安全手袋
2. A Multi-level Security Mechanism for Secure Data Transmission in SCTP [J] . P. Venkadesh, Julia Punitha Malar Dhas, S.V. Divya Research journal of applied science, engineering and technology . 2014 ,第10期

机译：SCTP中安全数据传输的多层安全机制
3. A Multi-level Security Mechanism for Secure Data Transmission in SCTP [J] . P. Venkadesh, Julia Punitha Malar Dhas, S.V. Divya Research journal of applied science, engineering and technology . 2014 ,第10期

机译：SCTP中安全数据传输的多层安全机制
4. Memory efficient multi key (MEMK) generation scheme for secure transportation of sensitive data over cloud and IoT devices [C] . Chandrasegar Thirumalai, Himanshu Kar Innovations in Power and Advanced Computing Technologies . 2017

机译：高效内存多密钥（MEMK）生成方案，可通过云和IoT设备安全传输敏感数据
5. Secure and Efficient Data Collection with Access Control and Multicast Schemes for Smart Grid AMI Networks [D] . Alsharif, Ahmad. 2019

机译：通过智能电网AMI网络的访问控制和组播方案进行安全有效的数据收集
6. On a Key-Based Secured Audio Data-Hiding Scheme Robust to Volumetric Attack with Entropy-Based Embedding [O] . Jose Juan Garcia-Hernandez 2019

机译：在基于钥匙的安全音频数据隐藏方案上以基于熵的嵌入攻击的体积攻击强大
7. A Multi-level Security Mechanism for Secure Data Transmission in SCTP [O] . P. Venkadesh, Julia Punitha Malar Dhas, S.V. Divya 2014

机译：SCTP中安全数据传输的多级安全机制

Data Enriched SACK: A Novel Acknowledgement Generation Scheme for Secure SCTP

摘要

著录项

相似文献

相关主题

期刊订阅