摘要
分析了现有的DDoS攻击在通信时存在的一些缺点,并对当前流行的端口反弹技术进行了深入的研究,发现如果将两者结合起来形成一类新的攻击形式,其危害性相当严重。故提出了两者结合的模型——分布式端口反弹攻击模型,而且针对这类新的攻击方式的一些特点提出了基于连接(会话)记录的误用检测方法和基于用户行为的异常检测方法。
The shortcoming of DDoS attacks while the hosts are communicating is analyzed in this paper. Furthermore, the Port Recall techniques are also studied. According to these analysis, if they are combined together to form a new kind of attacks, the effect of it will be more serious than any one of them. Therefore, the model called distributed port recall attacks is presented here to draw attention. In addition, some methods of misuse intrusion and anomaly intrusion to detect it proposed in this paper.
出处
《计算机工程》
CAS
CSCD
北大核心
2004年第7期41-43,共3页
Computer Engineering
基金
国家"863"计划基金资助项目(2002AA142010)
关键词
网络安全
DDOS
网络入侵检测
Network security
DDoS
Network intrusion detection
