基于队列流量区分的微mpls无线网络DDoS攻击防范

2006 International Conference on Systems and Networks Communications (ICSNC'06) Pub Date : 2006-10-29 DOI:10.1109/ICSNC.2006.31

S. Fowler, S. Zeadally

{"title":"基于队列流量区分的微mpls无线网络DDoS攻击防范","authors":"S. Fowler, S. Zeadally","doi":"10.1109/ICSNC.2006.31","DOIUrl":null,"url":null,"abstract":"Traditional security research has been on privacy or authentication. Unfortunately, attacks on wireless media cannot be simply addressed using traditional security methods [1]. An example of a security threat which is difficult to address using traditional network security techniques is Denial of Service (DoS) attacks. Under DoS attacks it is difficult to provide legitimate users their fair shares of bandwidth. However, it is important to allocate a fair share of bandwidth for multimedia traffic requiring Quality of Service. In this paper we address the issue of DoS attacks between mobile nodes and MPLS domains by proposing a queue differentiation policy at the entry point of the MPLS domain. We also investigated DoS attacks of the entry point (Foreign Domain Agent) into Micro-MPLS-based networks (otherwise know a Hierarchical Mobile MPLS (HMPLS)) [2]. Our simulation results show that our proposed technique provides maximum resource utilization by increasing the throughput of multimedia traffic while the network is under DoS attacks.","PeriodicalId":217322,"journal":{"name":"2006 International Conference on Systems and Networks Communications (ICSNC'06)","volume":"2 3 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2006-10-29","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"8","resultStr":"{\"title\":\"Defending against Distributed Denial of Service (DDoS) Attacks with Queue Traffic Differentiation over Micro-MPLS-based Wireless Networks\",\"authors\":\"S. Fowler, S. Zeadally\",\"doi\":\"10.1109/ICSNC.2006.31\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Traditional security research has been on privacy or authentication. Unfortunately, attacks on wireless media cannot be simply addressed using traditional security methods [1]. An example of a security threat which is difficult to address using traditional network security techniques is Denial of Service (DoS) attacks. Under DoS attacks it is difficult to provide legitimate users their fair shares of bandwidth. However, it is important to allocate a fair share of bandwidth for multimedia traffic requiring Quality of Service. In this paper we address the issue of DoS attacks between mobile nodes and MPLS domains by proposing a queue differentiation policy at the entry point of the MPLS domain. We also investigated DoS attacks of the entry point (Foreign Domain Agent) into Micro-MPLS-based networks (otherwise know a Hierarchical Mobile MPLS (HMPLS)) [2]. Our simulation results show that our proposed technique provides maximum resource utilization by increasing the throughput of multimedia traffic while the network is under DoS attacks.\",\"PeriodicalId\":217322,\"journal\":{\"name\":\"2006 International Conference on Systems and Networks Communications (ICSNC'06)\",\"volume\":\"2 3 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2006-10-29\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"8\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2006 International Conference on Systems and Networks Communications (ICSNC'06)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICSNC.2006.31\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2006 International Conference on Systems and Networks Communications (ICSNC'06)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICSNC.2006.31","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 8

摘要

传统的安全研究一直侧重于隐私或身份验证。不幸的是，对无线媒体的攻击不能简单地使用传统的安全方法b[1]来解决。难以使用传统网络安全技术解决的安全威胁的一个例子是拒绝服务(DoS)攻击。在DoS攻击下，很难为合法用户提供公平的带宽份额。然而，为需要服务质量的多媒体流量分配公平的带宽份额是很重要的。在本文中，我们通过在MPLS域的入口点提出队列区分策略来解决移动节点和MPLS域之间的DoS攻击问题。我们还研究了进入基于micro -MPLS的网络(也称为分层移动MPLS (HMPLS))[2]的入口点(外域代理)的DoS攻击。仿真结果表明，在网络受到DoS攻击的情况下，该技术通过提高多媒体流量的吞吐量，提供了最大的资源利用率。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Defending against Distributed Denial of Service (DDoS) Attacks with Queue Traffic Differentiation over Micro-MPLS-based Wireless Networks

Traditional security research has been on privacy or authentication. Unfortunately, attacks on wireless media cannot be simply addressed using traditional security methods [1]. An example of a security threat which is difficult to address using traditional network security techniques is Denial of Service (DoS) attacks. Under DoS attacks it is difficult to provide legitimate users their fair shares of bandwidth. However, it is important to allocate a fair share of bandwidth for multimedia traffic requiring Quality of Service. In this paper we address the issue of DoS attacks between mobile nodes and MPLS domains by proposing a queue differentiation policy at the entry point of the MPLS domain. We also investigated DoS attacks of the entry point (Foreign Domain Agent) into Micro-MPLS-based networks (otherwise know a Hierarchical Mobile MPLS (HMPLS)) [2]. Our simulation results show that our proposed technique provides maximum resource utilization by increasing the throughput of multimedia traffic while the network is under DoS attacks.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2006 International Conference on Systems and Networks Communications (ICSNC'06)

自引率

0.00%

发文量