东北大学学报(自然科学版) ›› 2003, Vol. 24 ›› Issue (7): 662-665.DOI: -

• 论著 • 上一篇    下一篇

基于代理的IP包源追踪系统

王翠荣;高远   

  1. 东北大学秦皇岛分校;东北大学秦皇岛分校 河北秦皇岛 066004
  • 收稿日期:2013-06-24 修回日期:2013-06-24 出版日期:2003-07-15 发布日期:2013-06-24
  • 通讯作者: Wang, C.-R.
  • 作者简介:-
  • 基金资助:
    国家自然科学基金资助项目(60073059)·

Proxy-based IP traceback system

Wang, Cui-Rong (1); Gao, Yuan (1)   

  1. (1) Qinhuangdao Branch, Northeastern Univ., Qinhuangdao 066004, China
  • Received:2013-06-24 Revised:2013-06-24 Online:2003-07-15 Published:2013-06-24
  • Contact: Wang, C.-R.
  • About author:-
  • Supported by:
    -

摘要: 提出了一种不需要ISP合作的基于代理的IP包源追查体系结构,描述了支持这种体系结构的分布式包记录代理服务器和集中式反向追查安全控制服务器的实现步骤,扩充了UnixIP包转发算法,实现了包摘要算法和自动追查系统,解决了诸如可疑包的识别、记载、追踪的安全性,节省路由器资源·通过仿真实验证明基于代理的IP包追踪方法是行之有效的·

关键词: 拒绝服务攻击, IP地址欺骗, IP包摘要, IP包追踪, Unix, 包转发算法, 代理

Abstract: A new technique was presented to trace spoofed packets back to their actual source host without relying on the cooperation of intervening ISPs. An agent-based distributed architecture for tracing suspicious IP packets was outlined. An agent server was designed to record packet digests, and a security control server was designed to traceback the originator of a spoofing IP packet. The arithmetic forwarding IP packet in Unix OS was expanded. The packet digest arithmetic and the agent-based automatic tracing system were realized. The methods for identifying suspicious packets and recording packet digest were tested through the simulation experiments. The agent-based method of tracing IP packet is feasible.

中图分类号: