检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
出 处:《电子与信息学报》2012年第7期1715-1720,共6页Journal of Electronics & Information Technology
基 金:国家重点基础研究发展计划(2007CB307102)资助课题
摘 要:该文利用IPv6多穴技术,借鉴跳频通信的跳变思想,提出多穴跳变的概念,将主机的地址在网络提供的多个地址域内动态变化,增大攻击者地址搜索范围,增大攻击者流量监听难度。在此基础上,建立了IPv6主动防御模型。给出了双重随机地址生成算法,保证了地址的随机性,给出了"快速切换"和"过保留"两个地址切换策略,保证了地址切换过程中通信持续有效。从地址和流量两方面对模型的安全性进行了理论分析,从功能和性能两方面对模型进行了实验测试。理论分析与实验测试结果表明所提出的模型可有效提高攻击者开销,保护网络安全。Utilized the multi-homing in IPv6, motivated by the idea of frequency hopping communications, multi- homing hopping conception is proposed which can increase the address search space and difficulty of traffic monitoring for attackers by changing the host node address in multiple address domains dynamically. An active defense model is established based on multi-homing hopping. The double random address generation algorithm is proposed which ensured the IP address of the host scattered in multiple address domains randomly. Two address handoff tactics are proposed which ensure the continuance and efficiency of communication. Host address security and traffic security are analyzed. The performance and function of the proposed model are evaluated empirically. The results show that multi-homing hopping based IPv6 proactive network defense model can effectively enhance the attacker overhead and protect the network.
分 类 号:TP393[自动化与计算机技术—计算机应用技术]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.233