自治系统的攻击入口追溯技术研究

Abstract
Figure/Table
References
Related Citation (3)

Download: PDF (1315 KB)
Export: BibTeX | EndNote (RIS)

Abstract To defend against DDoS attacks on Internet, a new scheme called Ingress Address Marking (IAM) within an Autonomous System (AS) is proposed, with which the IP addresses of the ingress can be embedded into the forwarding packets. A victim can traceback the addresses of the attack ingress in a low complexity by analyzing the marking information. Besides the physical model, the mathematical formulation of false positive ratio and correlation function are provided. The relationship of the ingress link and the structure of AS is reviewed. The construction and deployment of IAM are discussed. Simulation results have shown that this scheme has a good performance and is valuable on both theory and application.

Key words： DDoS IP traceback Autonomous system Ingress address marking False positive ratio

Received: 04 August 2003

PACS:

TN393

	Service

	E-mail this article
	Add to my bookshelf
	Add to citation manager
	E-mail Alert
	RSS
	Articles by authors




	Jin Guang
	Zhao Jie-yu
	Zhao Yi-ming
	Wang Xiao-hong

Cite this article:

Jin Guang,Zhao Jie-yu,Zhao Yi-ming等. A Study on IP Traceback of DDoS Attack Ingress within an Autonomous System[J]. , 2005, 27(3): 346-350 .

URL:

http://jeit.ie.ac.cn/EN/ OR http://jeit.ie.ac.cn/EN/Y2005/V27/I3/346