[an error occurred while processing this directive]
���¿��ټ��� �߼�����
   ��ҳ  �ڿ�����  ��ί��  Ͷ��ָ��  �ڿ�����  ��������  �� �� ��  ��ϵ����
�������պ����ѧѧ�� 2004, Vol. 30 Issue (11) :1106-1110    DOI:
���� ����Ŀ¼ | ����Ŀ¼ | ������� | �߼����� << | >>
�պ�, �Ͼű�*
���ִ�ѧ �������ѧ�뼼��ѧԺ ���� 130012
Method of cooperative detecting DDoS attacks across multiple domains
Su Heng, Ju Jiubin*
School of Computer Science and Technology, Jilin University, Changchun 130054, China

Download: PDF (400KB)   HTML 1KB   Export: BibTeX or EndNote (RIS)      Supporting Info
ժҪ Ϊ��Ч�ط����ֲ�ʽ�ܾ����� DDoS(Distributed Denial of Service) �� ����,����˻��ڶ�������ּ��ϵͳ IDSs(Intrusion Detection Systems) �����Ĺ������ģ��.Χ����Ҫ������Դ,�������ԡ�·����,IDS����Ϊ�����ıպϵ�IDS ������,ͨ�����Ͻڵ����Ϣ����ͺ������ڵľ�����������,�ܹ���DDoS�������ݰ���۳�����������֮ǰ���񹥻���������ȡ��ش�ʩ.����˺�������֯��ʽ��������Ϣ������ʽ�����������㷨�Լ����ڵ�ϵͳ�߼��ṹ.����ԭ�Ͷ���������ּ�� MDCI(Multiple Domains Cooperative Intrusion-detection)ϵͳʵʩ��DDoS����ʵ��,���ʵ�����ݷ������Կ���,������ģ����Ч�������IDSϵͳ��DDoS������Ԥ���ٶ�.
Email Alert
�ؼ����� ���ּ��ϵͳ   �ֲ�ʽ�ܾ����񹥻�   �������   �պϻ�     
Abstract�� To prevent the DDoS(distributed denial of service) attacks effectivel y, a cooperative detection model was proposed based on the cooperation among the IDSs(intrusion detection systems) distributed in multiple administrative domai ns. Surrounding some valuable network assets, the enclosed defense ring was set up that consists of ��IDS, Router�� pairs with the IDS monitoring specific route r traffic. The IDSs reside in the ring were allotted to a cooperation group. With the information exchanging and alert correlating within the group, the signature s of DDoS attacks aimed at the network assets could be captured timely before th e overwhelming attack flooding aggregates. The construction method of cooperatio n rings, the information exchange mode, alerts correlation method and infrastruc ture of cooperative IDS entity were proposed. Some experiments were conducted wi th the MDCI(multiple domains cooperative intrusion-detection) system, a protot ype system. Results show that the prototype improves detection performance effec tively.
Keywords�� intrusion detection system   distributed denial of service attack   co operative detection   enclosed defense ring     
Received 2004-06-25;

������Ȼ��ѧ����������Ŀ(90204014); ����ʡ��Ȼ��ѧ ����������Ŀ(20030516-2)

About author: �� �� (1966-),��,���ֳ�����,��ʿ��, suhengcn@hotmail.com.
�պ�, �Ͼű�.�������������DDoS������һ������[J]  �������պ����ѧѧ��, 2004,V30(11): 1106-1110
Su Heng, Ju Jiubin.Method of cooperative detecting DDoS attacks across multiple domains[J]  JOURNAL OF BEIJING UNIVERSITY OF AERONAUTICS AND A, 2004,V30(11): 1106-1110
http://bhxb.buaa.edu.cn//CN/     ��     http://bhxb.buaa.edu.cn//CN/Y2004/V30/I11/1106
Copyright 2010 by �������պ����ѧѧ��