资源描述:
《移动adhoc网络中dos攻击及其防御机制(研究与发展)发表》由会员上传分享,免费在线阅读,更多相关内容在教育资源-天天文库。
1、计算机研究与发展ISSN100021239/CN1121777/TPJournalofComputerResearchandDevelopment42(4):697~704,2005移动adhoc网络中DOS攻击及其防御机制易 平 钟亦平 张世永(复旦大学计算机与信息技术系 上海 200433)(pyiedu@yahoo1com1cn)DOSAttackandDefenseinMobileAdHocNetworksYiPing,ZhongYiping,andZhangShiyong(DepartmentofComputingandInfor
2、mationTechnology,FudanUniversity,Shanghai200433)AbstractMobileadhocnetworkswilloftenbedeployedinenvironmentswherethenodesofthenetworksareunattendedandhavelittleornophysicalprotectionagainsttampering1Thenodesofmobileadhocnet2worksarethussusceptibletocompromise1Thenetworksar
3、eparticularlyvulnerabletodenialofservice(DOS)attackslaunchedthroughcompromisednodesorintruders1Presentedinthispaperistheadhocfloodingattack,anewattack,whichresultsindenialofservicewhenusedagainston2demandroutingpro2tocolsformobileadhocnetworks,suchasAODV,DSR1Theintruderbro
4、adcastsmassuselessroutere2questpacketsorsendsalotofuselessDATApacketstoexhaustthecommunicationbandwidthandnodere2sourcesothatthevalidcommunicationcannotbekept1Afteranalyzingtheattack,floodingattackpreven2tion(FAP)isdeveloped,whichisagenericdefenseagainsttheadhocfloodingatt
5、acksinmobileadhocnetworks1TheFAPiscomposedofneighborsuppressionandpathcutoff1Whentheintruderbroadcastsex2ceedingpacketsofrouterequest,theimmediateneighborsoftheintruderobserveahighrateofroutere2questandthentheylowerthecorrespondingpriorityaccordingtotherateofincomingquerie
6、s1Moreover,notservicedlowpriorityqueriesareeventuallydiscarded1WhentheintrudersendsmanyuselessDATApacketstothevictimnode,thenodemaycutoffthepathanddoesnotsetupapathwiththeintruderanymore1TheresultsoftheimplementationshowthatFAPcanpreventtheadhocfloodingattackefficiently1Ke
7、ywordsmobileadhocnetworks;routingprotocol;security;denialofservice;adhocfloodingattack摘 要 移动adhoc网络由于其动态拓扑、无线信道以及各种资源有限的特点,特别容易遭受拒绝服务(DOS)攻击1提出了移动adhoc网络中一种新的DOS攻击模型———adhocflooding攻击及其防御策略1该攻击主要针对移动adhoc网络中的按需路由协议,如AODV,DSR等1adhocflooding攻击是通过在网络中泛洪发送超量路由查询报文及数据报文,大量地占用网络
8、通信及节点资源,以至于阻塞节点正常的通信1分析adhocflooding攻击之后,提出了两种防御策略:其一是邻居阻止,即当入侵者发送大量路由查询报文时,邻居节点降低对其报文的处理