检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
作 者:奠石镁[1]
机构地区:[1]云南医学高等专科学校信息中心,云南昆明350031
出 处:《计算机安全》2008年第6期7-10,共4页Network & Computer Security
摘 要:在分布式DDoS检测中,相互协作的检测节点间存在一定规模的通信开销,当通信操作频繁发生时,这种开销会加重网络负担。针对分布式DDoS检测,提出一种低通信开销的检测模型:选择具有最大全局值的对象作为代表,通过"监控参数"和"补偿参数",使得代表对象调整后的局部值在每个节点上看起来都是最大,只要代表对象没有超出阈值,则可以保证DDos没有发生。将多个对象的持续监控变为对代表对象的监控和对局部约束条件的维护操作,从而降低检测操作的通信开销。通过理论分析和实验测试,证明了该方法的有效性。In the situation of DDoS detection, there are considerable communications among detection nodes . Frequent communications will consume much network resources. We propose a model with low communication cost, where the object with largest value is chose as the representative object, and adjustment factors are used to guarantee that local value of representative object is also the largest one in each remote node. Therefore, only the representative object needs to be monitored continuously as long as all the local constrains are valid. When local constrain is violated, communication is needed among the coordinator and remote nodes to rebuild the constrain. Analytical analysis and experimental evidences show the efficiency of this model.
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.145