摘要
针对DoS(DenialofService)拒绝服务攻击 ,在分析DoS的攻击原理和现有的检测、防范手段的基础上 ,提出了一种检测、防范DoS的分布式模型 ,并提出了利用简单网络管理协议 (SNMP)技术实现该模型的方案 ,分析了实现后的检测系统自身的安全性 .研究结果表明 ,分布式检测防范模型能在一定程度上对付DoS攻击 ,能在更高的层面处理分布式攻击 .利用类似的方法还可以检测其他的入侵攻击 .
This article is focused on denial of service (DoS) attack. After studying the theory of DoS and already known methods for detecting it, the architecture of a distributed model for detecting DoS is illustrated. A possible implementation for this model by using SNMP is given. The security of this implementation is discussed. A conclusion can be drawn that this distributed model can solve DoS attack in some degree and handle distributed attack from a view of higher level. With those similar methods, other intrusions can also be detected. SNMP is simple and easy to install and implement. As detecting the attack, it also insures the security of the system through authorization, encryption and access control.
出处
《华中科技大学学报(自然科学版)》
EI
CAS
CSCD
北大核心
2002年第3期19-21,共3页
Journal of Huazhong University of Science and Technology(Natural Science Edition)
基金
武汉市国税局网络管理系统项目
