| 基于Bayes分类器的DoS/DDoS攻击防御技术 |
| |
| 引用本文: | 罗建,李艳梅.基于Bayes分类器的DoS/DDoS攻击防御技术[J].航空计算技术,2010,40(2):127-129,134. |
| |
| 作者姓名: | 罗建 李艳梅 |
| |
| 作者单位: | 1. 西华师范大学,计算机学院,四川,南充,637002
2. 西华师范大学,计算机学院,四川,南充,637002;电子科技大学,计算机科学与工程学院,四川,成都,610054 |
| |
| 基金项目: | 国家863计划项目资助 |
| |
| 摘 要: | 提出了一种基于贝叶斯分类算法的分布式拒绝服务攻击防御技术。利用贝叶斯分类算法来计算数据包的分值特征,按照分值表对数据包进行评分并映射成危险等级。然后对危险等级进行评估,根据不同危险等级对网络流量进行过滤。基于该防御技术,设计并实现了防御系统。通过实验分析,该系统在DoS/DDoS攻击发生时能有效区分正常流量与异常流量,从而实现对DoS/DDoS攻击进行实时防御。
|
| 关 键 词: | 拒绝服务 分布式拒绝服务 贝叶斯分类器 危险等级 包过滤 |
A Defense Technique against DoS/DDoS Attack Based on Bayes Classifier |
| |
| LUO Jian,LI Yan-mei.A Defense Technique against DoS/DDoS Attack Based on Bayes Classifier[J].Aeronautical Computer Technique,2010,40(2):127-129,134. |
| |
| Authors: | LUO Jian LI Yan-mei |
| |
| Institution: | 1. School of Computer Science, China West Normal University, Nanchong 637002, China; 2. School of Computer Science and Engineering University of Electronic Science and Technology of China, Chengdu 610054, China) |
| |
| Abstract: | A defense technique against DoS/DDoS attack based on Bayesian classification algorithm is proposed. The technique uses Bayes classifier to calculate the value characteristics of the data packets, it evaluate the risk score and map the danger level in accordance with the score table. And then cleanses the network traffic according as the danger degree of the packets. We design and implement defense system based on the technique. It is proved by the experiment that this system can effectively differentiate between normal traffic and abnormal traffic,which can take real- time defense against DoS/DDoS attack. |
| |
| Keywords: | denial of service (DoS) distributed denial of service (DDoS) bayes classifier danger degree packet filter |
| 本文献已被 维普 万方数据 等数据库收录! |
|
