English  |  正體中文  |  简体中文  |  Items with full text/Total items : 2737/2828
Visitors : 3512344      Online Users : 63
RC Version 4.0 © Powered By DSPACE, MIT. Enhanced by NTU Library IR team.
Scope Adv. Search

Please use this identifier to cite or link to this item: http://ir.lib.stu.edu.tw:80/ir/handle/310903100/2901

Title: 基於TCP協定的DDoS攻擊檢測
TCP-based DDoS Detection Scheme
Authors: 高成
Cheng Kao
Contributors: 資訊管理系碩士班
Keywords: 分散式阻斷服務;入侵偵測;SYN洪水攻擊
DDoS;Intrusion Detection;SYN Flooding Attack
Date: 2012
Issue Date: 2012-03-22 15:14:33 (UTC+8)
Publisher: 高雄市:[樹德科技大學資訊管理系碩士班]
Abstract: 隨著網際網路的迅速發展,網路技術正在日益改變著人們的生活,尤其是電子商務日益增多,更加深對於網路安全的要求。本論文由分析並研究DoS和DDoS攻擊現狀、攻擊原理和攻擊手段基礎上,發覺TCP協定自身的不足是造成DDoS攻擊的一個重要因素,因此,針對這樣的缺陷,提出一種基於TCP協定的DDoS攻擊的檢測方法,以降低DDoS攻擊帶來的威脅,並在實驗室建置DDoS網路攻擊與檢測環境實際對本文提出的系統進行測試。
With the rapid development of Internet, Internet technology had increasingly reshaped people's lives. Especially in the growing e-commerce, the prominent issue is network security. In this paper, we first analyze the states during DoS or DDoS attacks and realize the inherent defects of TCP protocol. Therefore, we propose a DDoS detection scheme based on TCP to perceive and react to the occurrence of DDoS attacks. In addition, we build up an DDoS environment in our lab to test our model.
In our detection model, we assume the ratio between the number of TCP segments carried with specified flag fields during the three-way handshaking for connection setup must below a threshold in the DDoS-free situation. By way of the statistical analysis, we can approach a threshold deduced from the ratio between each specified flag of TCP segments. Next, we conduct four different experiments including DDoS-free, DDoS with one attacker, DDoS with two attacker, and DDoS with three attacker to accumulate TCP segments according to each specified flags. Finally, we determine the numerical result of these thresholds.
Appears in Collections:[資訊管理系(所)] 博碩士論文

Files in This Item:

File Description SizeFormat

All items in STUAIR are protected by copyright, with all rights reserved.





2. 本網站之製作,已盡力防止侵害著作權人之權益,如仍發現本網站之數位內容有侵害著作權人權益情事者,請權利人通知本校護人員(clairhsu@stu.edu.tw),維護人員將立即採取移除該數位著作等補救措施。
DSpace Software Copyright © 2002-2004  MIT &  Hewlett-Packard  /   Enhanced by   NTU Library IR team Copyright ©   - Feedback