摘要
针对反射放大型DDoS所带来的网络安全问题,提出一种基于SSDP的物联网DDoS反射放大攻击实验方案。该方案以个人电脑、移动手机、电视、网络机顶盒等设备组成的智能家居物联网作为实验环境,通过用Python进行Socket编程的方法实现对物联网环境中攻击与防御设备的嗅探。通过开发基于SSDP的物联网DDoS反射放大攻击实验软件,实现对家居物联网设备及互联网中服务器的DDoS反射放大攻击,在此基础上分析SSDP协议存在的安全漏洞并提出改进方案及防御策略。该方案具有安全可控、操作便捷和实现复杂度低等优点,可广泛应用于物联网、网络工程等专业课程教学中。
In view of the problem of network security caused by reflection amplification DDoS,proposes an experimental scheme of DDoS reflection amplification attack based on SSDP.The scheme takes personal computers,mobile phones,televisions,network set-top boxes and other devices to build smart home Internet of Things as an experimental environment.It implements sniffing of attack and defense devices in the environment of Io T based on Socket programming using Python.Through the development of SSDP based networking DDoS reflection amplification attack experiment software to realize the Home Furnishing object server networking devices and Internet DDoS reflection in amplification attacks,based on the analysis of the security flaw of SSDP,puts forward the improvement scheme and defense strategy.The scheme has the advantages of secure,controllable,convenient operation and low complexity,which can be widely used in the teaching of Internet of Things and network engineering.
作者
林心阳
胡曦明
马苗
李鹏
LIN Xin-yang1, HU Xi-ming1,2, MA Miao1,2, LI Peng1,2(1. School of Computer Science, Shaanxi Normal University, Xi'an 710119 ; 2. Key Laboratory of Modern Teaching Technology, Ministry of Education, Xi'an 71011)
出处
《现代计算机》
2018年第12期20-24,31,共6页
Modern Computer
基金
陕西省教育科学"十三五"规划2016年度课题(No.SGH16H024)
中央高校基本科研业务费专项资金资助项目(No.GK201503065)
中央高校基本科研业务费专项基金项目(No.GK201803082)
现代教学技术教育部重点实验室开放课题资助项目(No.SYSK201501)
陕西师范大学非师范拔尖创新人才培养计划2017年度项目
陕西师范大学2018年"教师教学模式创新与实践研究"专项基金项目(No.JSJX2018L126)
关键词
物联网
SSDP
DDOS
反射放大攻击
网络安全
Things of Internet
SSDP
DDoS
Reflection Amplification Attack
Internet Security
