检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
机构地区:[1]中国石油大学(华东)计算机与通信工程学院,山东青岛266580
出 处:《通信学报》2017年第A01期19-24,共6页Journal on Communications
基 金:国家自然科学基金资助项目(No.61772551);青岛市科技计划基金资助项目(No.15-9-1-79-jch)~~
摘 要:端信息跳变技术是为了减缓网络攻击而提出的一种主动网络防御技术,它通过伪随机地改变通信中的地址、端口等端信息来达到迷惑攻击者的目的。通过浏览器插件机制,将端信息跳变技术引入到Web防护领域,从而在Web访问中迷惑和干扰攻击者。浏览器插件模型有2个工作模式,即非跳变模式和端信息跳变模式,插件模式根据UDP发言人的指令来进行切换,在通信链路安全可靠时插件不进行端信息跳变,能够降低服务代价;当网络受到攻击时切换至端信息跳变模式,保障通信链路的安全。实验结果证明,基于端信息跳变技术的Web插件机制在SYN Flood攻击和UDP Flood攻击下,仍具有较高的服务性能和安全性能。The end hopping technology is a proactive network defense technology proposed to mitigate the network at-tack. By changing the IP address, port and other information in the communication pseudo-randomly to achieve the pur-pose of confusing the attacker. The plug-in mechanism based on the end hopping technology was introduced, and it was applied to the field of Web protection. This plug-in was designed to confuse and interfere with attackers. The plug-in model was divided into two working modes, which are non-end-hopping mode and end hopping mode. The plug-in ac-cording to the instructions of the UDP spokesman to switch its own work mode and when the communication link is safe and reliable, it choose the fist mode which can reduce the cost of services. Another, when the network is attacked, the plug-in switches to the end hopping mode to ensure the safety of communications.The experimental results show that the plug-in mechanism based on end hopping has high service and security performance under SYN Flood attack and UDP Flood attack.
关 键 词:网络安全 主动防御 端信息跳变 Web插件 DOS攻击
分 类 号:TP393[自动化与计算机技术—计算机应用技术]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:3.15.226.5