论文部分内容阅读
概述了因特网上DoS攻击的相应分类及基本特征 ,评述了包过滤、攻击检测及防御技术的最新成果 .前一部分介绍了入口过滤、基于路由的过滤网和有效源地址强制协议 .后一方面主要讨论了适合于检测攻击包的技术 ,介绍了新近提出的频谱分析方法和泛滥检测系统 .简要评述了已有的防御SYN泛滥攻击的技术措施 ,介绍了Cisco的TCP拦截技术 ,提出了改进策略
Summarizes the corresponding classification and basic features of DoS attacks on the Internet, reviews the latest achievements of packet filtering, attack detection and defense technology.The first part introduces the entry filtering, routing-based filtering and effective source address enforcement protocol. Discusses the technology suitable for detecting attack packets and introduces the newly proposed spectrum analysis method and flooding detection system.It briefly reviews the existing technical measures to defend against SYN flooding attacks and introduces Cisco’s TCP interception technology and puts forward an improved strategy