摘要
DDoS(DistributeDenialofService,分布式拒绝服务攻击)利用TCP/IP的弱点,产生大量合法的数据请求,导致服务方不能向合法用户提供正常的服务。文章在归纳TCP/IP数据包、数据流特征的基础上,建立基于数据挖掘技术的入侵检测系统,可以较好地检测和防护该类攻击。
Imposing t he limitation of TCP/IP,DDoS(distributed Denial of Service attacks)sends out a lot of legal data packages,which cause other user can't get the normal serv ice.For this attack is effective and difficult to be defended,it has been a gr eat threat to the security of Internet.This paper analyzes the characteristic o f the package and flow,then it designs an IDC(Intrusion Detection System)base d on Data Mining.
出处
《计算机工程与应用》
CSCD
北大核心
2002年第11期24-26,共3页
Computer Engineering and Applications
基金
国家自然科学基金(编号:69973020)
国防科工委应用基础基金(编号:J1300D004)
关键词
数据挖掘
入侵检测系统设计
DDOS
网络安全
计算机网络
Distributed Denial of Service(DDoS),Intrusion De tection System(IDS),Data Mining,Security of Networks
