原创力文档双栈网络防火墙中syn flood攻击的检测与防御-detection and defense of syn flood attack in double stack network firewall.docxVIP
- 14
- 0
- 约4.32万字
- 约 63页
- 2018-07-31 发布于上海
- 举报
双栈网络防火墙中syn flood攻击的检测与防御-detection and defense of syn flood attack in double stack network firewall
AbstractTheextensiveuseofInternettechnologyhasbroughtgreatconveniencetomodernsociety,however,moreandmoresevereproblemsregardingonnetworksecurityhavealsoemergedatthesametime.EspeciallytheDDoSattacks,representedbySYNFlood,posemassivethreatstothenetworksecurity.ThispaperanalyzestherationaleofexistingDDoSattackindetail,summerizingalltheavailabledetectionalgorithms.SubsequentlythispaperproposestwoalgorithmswhichcoulddetectSYNFloodattackquicklyunderlargescalenetwork:theadaptivethresholdalgorithmandthealgorithmbasedonslidingwindowentropy.Byconductingthecomparisonintheoryandexperimentbetweenthetwoalgorithms,thispapersuggeststhattheadaptivethresholdalgorithmcouldfulfilltheefficiencyrequirementsbetter.Inthenext,thispaperintroducestwopopularSYNFloodprotectionmethods:SYNCookieandSYNProxy,andproposessolutionsregardingontheirdefects.Becausebothmethodscannotmeettherequirementsofefficiencyandsecurity,anewalgorithmbasedonsamplinginwindowisintroduced,whichisknownasthevictimIPdecisionalgorithm.ThisalgorithmcandetectthevictimsIPaddressquickly,sothefirewallcandiscardtheattackflowsusingtheresults.Meanwhile,thispaperproposedafastrecoverymechanismonbasisofadaptivethresholdalgorithmtoreducenegativeeffectscausedbydroppedpackets,whichcouldrecoverthefirewallfromdroppacketstatetonormalstate.Atlast,thispaperimplementstheattackdetectionandprotectionalgorithmsindual-stackfirewall,andteststhevalidityandperformancerespectively.Thevalidity,whichismeasuredbyfiveindicators,isdetectedinactivetest.Thesystemperformanceimprovement,whichismeasuredbytwoindicators:memoryusageandCPUutilization,isdetectedinpassivetest.TheresultsindicatethatthemethodsofdetectionandprotectionagainstSYNFloodproposedbythispapercanimprovethesystemefficiencysubstantiallywhenfirewallisattacked,whileconsumingonlyasmallamountofextramemory.Keywords:DualStack;Firewall;SYNFloodattack;Adaptivethreshold目录摘要.........................................................................................................................IAbstract.......
您可能关注的文档
- 神东采煤沉陷区保水技术分析-analysis of water conservation technology in shendong coal mining subsidence area.docx
- 神府矿区土地复垦评价及模式分析-evaluation and model analysis of land reclamation in shenfu mining area.docx
- 神府煤及其煤岩组分催化石墨化分析-analysis of catalytic graphitization of shenfu coal and its coal and rock components.docx
- 深圳市办公建筑自然通风应用分析-application analysis of natural ventilation in office buildings in shenzhen city.docx
- 神东矿区大采高综采颠覆性矿压主导因素分析-analysis on leading factors of subversive mine pressure in fully mechanized mining with large mining height in shendong mining area.docx
- 神东风积沙矿区开采沉陷主要影响因素分析-analysis of main influencing factors of mining subsidence in shendongfeng jisha mining area.docx
- 什邡市地质灾害危险性评价分析-risk assessment and analysis of geological disasters in shifang city.docx
- 神光ⅲ能源模块主开关触发系统结构的分析-analysis of trigger system structure of main switch of shenguang ⅲ energy module.docx
- 神府煤与葵花秆水解残渣共热解试验分析-experimental analysis on co-pyrolysis of shenfu coal and sunflower stalk hydrolysis residue.docx
- 神府煤在zncl2有机溶剂体系中的温和液化过程分析-analysis of mild liquefaction process of shenfu coal in zncl _ 2 organic solvent system.docx
- 双罩法发射率在线测量系统的分析开发-analysis and development of on-line measurement system for emissivity by double - mask method.docx
- 双源ct双能量虚拟平扫在纵隔淋巴结病变中的初步分析-preliminary analysis of dual-energy virtual plain scan of shuang yuan ct in mediastinal lymphadenopathy.docx
- 双源渠道环境下消费者基于信息的搭便车问题分析-analysis of free - riding problem of consumers based on information under shuang yuan channel environment.docx
- 双折线体外预应力钢绞线加固简支梁的试验分析-experimental analysis of simply supported beam strengthened by external prestressed steel strand with double broken lines.docx
- 双振镜激光扫描系统fpga接口板设计-design of fpga interface board for dual galvanometer laser scanning system.docx
- 双指数跳跃扩散模型下的亚式期权和障碍期权定价分析-pricing analysis of asian option and barrier option under double exponential jump diffusion model.docx
- 双肢格构柱-贝雷梁模板支撑体系空间力学行为研究-study on spatial mechanical behavior of formwork support system of double-limb lattice column - bailey beam.docx
- 双肢缀板柱缀板平面内受压稳定研究-study on in-plane compression stability of two-limb batten plate column batten plate.docx
- 双肢波形钢腹板pc梁桥的静力学性能分析-statics performance analysis of pc girder bridge with double limbs corrugated steel webs.docx
- 双质量飞轮动态扭转角度信号测试方法分析-analysis of testing method for dynamic torsional angle signal of double mass flywheel.docx
文档评论(0)