机构地区: 湖南大学信息科学与工程学院软件学院
出 处: 《计算机应用》 2006年第6期1337-1339,共3页
摘 要: 通过对ICMP反向追踪技术的研究,提出了一种基于流分类的ICMP反向追踪方案。该方案依据目的位的值将接收流分成目的流和正常流,然后根据网络流量情况,分别对它们使用不同的概率执行ICMP反向追踪。相关分析表明,此方法在路由器的设置被篡改的情况下能获得完整的攻击路径;另外,本方法能更快地重构攻击路径。 Through the research on iTraee scheme, an iTrace scheme based on traffic classification was proposed. It classifies incoming traffic into intention traffic and regular traffic based on the value of intention-bit, then performs iTrace scheme with different probability respectively. The analysis shews that this scheme can reconstruct the entire attacking path when the configuration of the router is juggled; and need less time to reconstruct the attacking path than other method.