摘要
针对现有ICMP反向追踪方法中iTrace信息标记的IP地址或相关信息,导致重构完整攻击路径需要过多的数据包,并且计算量大的问题,提出了在iTrace分组中重新编码的方案。该方案可在较短的时间内推算出主要攻击路径,显著减少路径重构时对数据包的需求量,从而可以使受害者更快捷地追踪到攻击源,为受害者尽快响应攻击、减少攻击带来的损失创造了条件。
In existing iTrace schemes, routers' IP address are embedded into iTrace messages, which results in too many packets needed and calculating complexity great to reconstruct the path. The router numbering schemes are given , which takes fewer packets to reconstruct the attack path, and it reconstructs the main attack path in shorter time. Thus the victim could respond to attack more promptly and reduce attack damage.
出处
《科学技术与工程》
2007年第12期3013-3016,共4页
Science Technology and Engineering