| 基于TCP缓存的DDoS攻击检测算法 |
| |
| 引用本文: | 胡鸿,袁津生,郭敏哲.基于TCP缓存的DDoS攻击检测算法[J].计算机工程,2009,35(16):112-114. |
| |
| 作者姓名: | 胡鸿 袁津生 郭敏哲 |
| |
| 作者单位: | 北京林业大学信息学院,北京,100083 |
| |
| 摘 要: | 由拒绝服务攻击(DOS)发展而来的分布式拒绝服务攻击(DDoS)已成为目前网络安全的主要威胁之一。从分析TCP缓存入手,提出一种基于缓冲区检测的DDoS检测算法。结合历史连接记录来对TCP缓存进行分析,生成特征向量,通过BP神经网络检测TCP缓存异常程度,根据异常程度判断是否发生攻击。实验结果表明,该算法能迅速准确地检测出DDoS攻击,有效阻止DDoS攻击的发生。
|
| 关 键 词: | 分布式拒绝服务攻击 TCP缓存 BP神经网络 |
| 修稿时间: | |
DDoS Attack Detection Algorithm Based on TCP Backlog |
| |
| HU Hong,YUAN Jin-sheng,GUO Min-zhe.DDoS Attack Detection Algorithm Based on TCP Backlog[J].Computer Engineering,2009,35(16):112-114. |
| |
| Authors: | HU Hong YUAN Jin-sheng GUO Min-zhe |
| |
| Affiliation: | Department of Information Science and Technology;Beijing Forestry University;Beijing 100083 |
| |
| Abstract: | The Distributed Denial of Service(DDoS) attack developing from Denial of Service(DoS) attack has become one of the major threats to network security.This paper starts from the analysis of TCP backlog,and proposes an algorithm based on TCP Backlog detection.Algorithm analyzes TCP backlog combing with historical connected records,generates features vectors,detects abnormal level of TCP backlog using BP neural networks,determines whether attack happens according to the abnormal level.Experimental result shows ... |
| |
| Keywords: | Distributed Denial of Service(DDoS) attack TCP backlog BP neural networks |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《计算机工程》浏览原始摘要信息 |
|
点击此处可从《计算机工程》下载全文 |
