检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
机构地区:[1]郑州航空工业管理学院计算机科学与应用系,河南郑州450015 [2]郑州航空工业管理学院信息科学系,河南郑州450015
出 处:《太原理工大学学报》2008年第2期140-143,共4页Journal of Taiyuan University of Technology
基 金:河南省自然科学基金资助项目(0611052100)
摘 要:针对安全协议存在的拒绝服务攻击隐患,文中提出了发起者身份认证方案。方案借鉴Cookie机制和Client Puzzle方法的思想,通过在Cookie中嵌入puzzle的方法,采用强认证和弱认证相结合的模式进行设计。实验结果表明,该方案在不改变安全协议系统结构的前提下,可以增强其防御计算资源消耗型、存储资源消耗型和虚假网络地址型拒绝服务攻击的能力。该方案适用于安全协议响应方对安全性要求较高,响应方计算能力较强的环境。To the problem which security protocols were under the threat of denial of service attack, a sponsor identity authentication solution is presented. Based on the idea of Cookie and Client Puzzle, the solution was designed based the way that embedded Puzzle in Cookie and the pattern which connected weak authentication and strong authentication. The experiment result shows that the solution can enhance security protoeol's ability on resisting three types of denial of service attack without changing its architecture, which are compute resource exhausting attack, memory resource exhausting attack and the attack with fake network address. The solution's right application environment is in high demand of security and the responder should have powerful compute ability.
分 类 号:TP393[自动化与计算机技术—计算机应用技术]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.15