软件学报
軟件學報
연건학보
JOURNAL OF SOFTWARE
2009年
9期
2558-2573
,共16页
陈瑞川%郭文嘉%唐礼勇%陈钟
陳瑞川%郭文嘉%唐禮勇%陳鐘
진서천%곽문가%당례용%진종
拒绝服务攻击%客户端难题%对等网络
拒絕服務攻擊%客戶耑難題%對等網絡
거절복무공격%객호단난제%대등망락
denial-of-service attack%client puzzle%peer-to-peer network
研究传统的客户端难题方案,之后提出一种自适应客户端难题方案.该方案采用一种轻量级的协议交互方式来获取客户端和服务器双方的实时状态信息,并据此自适应地调整客户端难题的难度.为了评估该方案的适用性,结合传统和自适应两种客户端难题方案,在对等(P2P)网络中提出了一种抵御DoS攻击的自适应安全框架.理论分析和实验结果表明,甚至在高度恶意的网络环境中,自适应客户端难题方案都可以在不明显影响合法客户端性能的前提下有效地抵御各种DoS攻击.
研究傳統的客戶耑難題方案,之後提齣一種自適應客戶耑難題方案.該方案採用一種輕量級的協議交互方式來穫取客戶耑和服務器雙方的實時狀態信息,併據此自適應地調整客戶耑難題的難度.為瞭評估該方案的適用性,結閤傳統和自適應兩種客戶耑難題方案,在對等(P2P)網絡中提齣瞭一種牴禦DoS攻擊的自適應安全框架.理論分析和實驗結果錶明,甚至在高度噁意的網絡環境中,自適應客戶耑難題方案都可以在不明顯影響閤法客戶耑性能的前提下有效地牴禦各種DoS攻擊.
연구전통적객호단난제방안,지후제출일충자괄응객호단난제방안.해방안채용일충경량급적협의교호방식래획취객호단화복무기쌍방적실시상태신식,병거차자괄응지조정객호단난제적난도.위료평고해방안적괄용성,결합전통화자괄응량충객호단난제방안,재대등(P2P)망락중제출료일충저어DoS공격적자괄응안전광가.이론분석화실험결과표명,심지재고도악의적망락배경중,자괄응객호단난제방안도가이재불명현영향합법객호단성능적전제하유효지저어각충DoS공격.
This paper studies the traditional client puzzle scheme and proposes an adaptive scheme which performs a lightweight client-server interaction to flexibly adjust the puzzle difficulty according to the real-time statuses of both client and server. To evaluate the applicability, the authors combine the two schemes and develop an adaptive DoS-resistant security framework for Peer-to-Peer networks. The theoretical analyses and experimental results show that the adaptive client puzzle scheme can effectively defend against various DoS attacks without significantly influencing legitimate clients' experiences even in a highly malicious environment.
