English  |  正體中文  |  简体中文  |  Items with full text/Total items : 88295/117812 (75%)
Visitors : 23405210      Online Users : 92
RC Version 6.0 © Powered By DSPACE, MIT. Enhanced by NTU Library IR team.
Scope Tips:
  • please add "double quotation mark" for query phrases to get precise results
  • please goto advance search for comprehansive author search
  • Adv. Search
    HomeLoginUploadHelpAboutAdminister Goto mobile version
    Please use this identifier to cite or link to this item: http://nccur.lib.nccu.edu.tw/handle/140.119/113413


    Title: Detection and Prevention of DDoS Attack over Wireless IPv6 Network
    Authors: 林政穎
    黃永銘
    陳麒元
    曾龍
    Keywords: 聯防機制
    DDoS Wireless IPv6 Network W6SGW(Wireless IPv6-enabling Security Gateway)
    Date: 2005
    Issue Date: 2017-10-05 12:03:38 (UTC+8)
    Abstract: 「分散式阻斷攻擊」Distributed Denial of Service(DDoS)攻擊,是現今IPv4網路具有嚴重性的威脅。新一代IPv6網路由於其有龐大住址空間以及IPSec機制,因此TPv6網路比傳統IPv4網路具有更高的安全性,但IPv6網路上仍無法免除DDoS攻擊。在邁向Wireless及3G的時代,IPv6扮演著重要的角色,而安全性也是必須被重視的一個環節。為了瞭解無線IPv6網路上的安全性問題,本文提出並分析Wireless IPv6 Network 上的DDoS攻擊,同時我們以Signature-Based Detection技術進行偵測,並提出Auto-Response Algonthm 實作Inline TPS。就我們所知,現有文獻中尚無詳細記載DDoS 在無線IPv6網路上的攻擊分析與偵測文件,本文特別針對Wireless IPv6 Home Network,進行DDoS攻擊的偵測與防禦。我們以tunnel broker為基礎實作出 W6SGW(Wireless IPv6-enabling Security Gateway),並規劃Scenario-Based Testing進行DDoS 攻擊測試,且利用W6SGW來偵測並加以阻擋此攻擊。實驗結果顯示W6SGW可正確無誤地偵測4to6 DDoS攻擊。
    Although many proposals of detection and prevention technologies for DDoS (Distributed Denial of Service) attack, it is still the major threat in IPv4 network. Due to providing larger address space and ipsec, IPv6 network is believed to be more secure than IPv4 network. However, IPv6 network still suffer from DDoS attack. In the era of the 3G and Wireless network, IPv6 plays an important role and then the security of IPv6 is important issue should be studied. In this paper, we present the security analysis of DDoS attack in the Wireless IPv6 Network and implement an integrated Security Gateway W6SGW(Wireless IPv6 enabled Security Gateway).
    Our W6SGW is designed with an IPv6 active inline IPS engine, which is based on signature-based detection and auto-response algorithm. We also employ tunnel broker mechanism to implement the W6SGW (Wireless IPv6-enabling Security Gateway). To test the effectiveness of our W6SGW, we conduct scenario-based testing based on 4to6 DDoS attack over Wireless IPv6 Home Network. Our primary results show that 4to6 DDoS attack can be correctly detected and prevented by our W6SGW. To our knowledge, this is the first literature to discuss the detection and prevention of DDoS attack in Wireless IPv6 Network.
    Relation: TANET 2005 台灣網際網路研討會論文集
    網路安全
    Data Type: conference
    Appears in Collections:[TANET 台灣網際網路研討會] 會議論文

    Files in This Item:

    File Description SizeFormat
    333.pdf828KbAdobe PDF165View/Open


    All items in 政大典藏 are protected by copyright, with all rights reserved.


    社群 sharing

    著作權政策宣告
    1.本網站之數位內容為國立政治大學所收錄之機構典藏,無償提供學術研究與公眾教育等公益性使用,惟仍請適度,合理使用本網站之內容,以尊重著作權人之權益。商業上之利用,則請先取得著作權人之授權。
    2.本網站之製作,已盡力防止侵害著作權人之權益,如仍發現本網站之數位內容有侵害著作權人權益情事者,請權利人通知本網站維護人員(nccur@nccu.edu.tw),維護人員將立即採取移除該數位著作等補救措施。
    DSpace Software Copyright © 2002-2004  MIT &  Hewlett-Packard  /   Enhanced by   NTU Library IR team Copyright ©   - Feedback