%0 Journal Article
%T Defending DDos Attacks Based on the Source and Destination IP Address Database<br>基于源目的IP地址对数据库的防范DDos攻击策略
%A SUN Zhi-Xin
%A LI Qing-Dong
%A <br>孙知信
%A 李清东
%J 软件学报
%D 2007
%I 
%X This paper proposes a scheme to defend distributed denial of service attacks (DDos) based on the source and destination IP address database. The scheme establishes the source and destination IP address database (SDIAD) by observing the normal traffic and storages SDIAD in a three dimension Bloom Filter table. Then this paper cumulates and analyses the new pair of source and destination IP address based on the slide non-parametric cumulative sum (CUSUM) algorithm to detect the DDos attacks quickly and accurately. The secheme updates SDIAD by using a delayed update policy to keep SDIAD timely,accurate and robust. This secheme is mainly applied in the edge router and it can detect the DDos attacks efficiently either the edge router or the last-mile router is the first-mile router. The simulation results display that the secheme do a good performance in detecting DDos attacks.
%K bloom filter<br>分布式拒绝服务攻击
%K 路由器
%K 无参数CUSUM算法
%U http://www.alljournals.cn/get_abstract_url.aspx?pcid=5B3AB970F71A803DEACDC0559115BFCF0A068CD97DD29835&cid=8240383F08CE46C8B05036380D75B607&jid=7735F413D429542E610B3D6AC0D5EC59&aid=563B71BB932E92C43646CE44344BE425&yid=A732AF04DDA03BB3&vid=13553B2D12F347E8&iid=F3090AE9B60B7ED1&sid=341738FDDA6AC407&eid=10A1B90DEF770706&journal_id=1000-9825&journal_name=软件学报&referenced_num=1&reference_num=32