發(fā)布時間：2018-10-10 16:50

【摘要】：針對現(xiàn)在對低速率分布式拒絕攻擊的研究不足,提出了一種在軟件定義網(wǎng)絡(SDN)環(huán)境下,利用Renyi熵來檢測L-DDoS的方法.該方法首先在控制器上收集PACKET_IN數(shù)據(jù)包,然后基于目的 IP來計算Renyi熵,最后通過設定一定的閾值來檢測異常流量.實驗結果表明:相比于利用香農(nóng)熵的檢測方法,該方法通過調整一定目的 IP熵的階數(shù)可以檢測L-DDoS攻擊流量從而降低誤警率.
[Abstract]:In view of the lack of research on low rate distributed denial of attack, a method to detect L-DDoS using Renyi entropy in the software defined network (SDN) environment is proposed. Firstly, PACKET_IN packets are collected on the controller, then the Renyi entropy is calculated based on the destination IP, and the abnormal traffic is detected by setting a certain threshold. The experimental results show that compared with the Shannon entropy detection method, this method can detect the L-DDoS attack flow by adjusting the order of the objective IP entropy and thus reduce the false alarm rate.
【作者單位】： 中南民族大學計算機科學學院;
【基金】：國家民委教改基金資助項目(15013)
【分類號】：TP393.08

【參考文獻】

相關期刊論文 前2條

1 張朝昆;崔勇;唐，

本文編號：2262536