政大機構典藏-National Chengchi University Institutional Repository(NCCUR):Item 140.119/113413

English | 正體中文 | 简体中文 | Post-Print筆數 : 27 | Items with full text/Total items : 109952/140887 (78%)
Visitors : 46295691 Online Users : 1215

RC Version 6.0 © Powered By DSPACE, MIT. Enhanced by NTU Library IR team.

Scope

please add "double quotation mark" for query phrases to get precise results

please goto advance search for comprehansive author search

Adv. Search

Home ‧ Login ‧ Upload ‧ Help ‧ About ‧ Administer

Goto mobile version

政大機構典藏 > 政大會議論文集 > TANET 台灣網際網路研討會 > 會議論文 > Item 140.119/113413

Please use this identifier to cite or link to this item: https://nccur.lib.nccu.edu.tw/handle/140.119/113413

Title:	Detection and Prevention of DDoS Attack over Wireless IPv6 Network
Authors:	林政穎黃永銘陳麒元曾龍
Keywords:	聯防機制 DDoS Wireless IPv6 Network W6SGW(Wireless IPv6-enabling Security Gateway)
Date:	2005
Issue Date:	2017-10-05 12:03:38 (UTC+8)
Abstract:	「分散式阻斷攻擊」Distributed Denial of Service(DDoS)攻擊，是現今IPv4網路具有嚴重性的威脅。新一代IPv6網路由於其有龐大住址空間以及IPSec機制，因此TPv6網路比傳統IPv4網路具有更高的安全性，但IPv6網路上仍無法免除DDoS攻擊。在邁向Wireless及3G的時代，IPv6扮演著重要的角色，而安全性也是必須被重視的一個環節。為了瞭解無線IPv6網路上的安全性問題，本文提出並分析Wireless IPv6 Network 上的DDoS攻擊，同時我們以Signature-Based Detection技術進行偵測，並提出Auto-Response Algonthm 實作Inline TPS。就我們所知，現有文獻中尚無詳細記載DDoS 在無線IPv6網路上的攻擊分析與偵測文件，本文特別針對Wireless IPv6 Home Network，進行DDoS攻擊的偵測與防禦。我們以tunnel broker為基礎實作出 W6SGW(Wireless IPv6-enabling Security Gateway)，並規劃Scenario-Based Testing進行DDoS 攻擊測試，且利用W6SGW來偵測並加以阻擋此攻擊。實驗結果顯示W6SGW可正確無誤地偵測4to6 DDoS攻擊。 Although many proposals of detection and prevention technologies for DDoS (Distributed Denial of Service) attack, it is still the major threat in IPv4 network. Due to providing larger address space and ipsec, IPv6 network is believed to be more secure than IPv4 network. However, IPv6 network still suffer from DDoS attack. In the era of the 3G and Wireless network, IPv6 plays an important role and then the security of IPv6 is important issue should be studied. In this paper, we present the security analysis of DDoS attack in the Wireless IPv6 Network and implement an integrated Security Gateway W6SGW(Wireless IPv6 enabled Security Gateway). Our W6SGW is designed with an IPv6 active inline IPS engine, which is based on signature-based detection and auto-response algorithm. We also employ tunnel broker mechanism to implement the W6SGW (Wireless IPv6-enabling Security Gateway). To test the effectiveness of our W6SGW, we conduct scenario-based testing based on 4to6 DDoS attack over Wireless IPv6 Home Network. Our primary results show that 4to6 DDoS attack can be correctly detected and prevented by our W6SGW. To our knowledge, this is the first literature to discuss the detection and prevention of DDoS attack in Wireless IPv6 Network.
Relation:	TANET 2005 台灣網際網路研討會論文集網路安全
Data Type:	conference
Appears in Collections:	[TANET 台灣網際網路研討會] 會議論文

Files in This Item:

File	Description	Size	Format
333.pdf		828Kb	Adobe PDF2	277	View/Open

All items in 政大典藏 are protected by copyright, with all rights reserved.

社群 sharing

著作權政策宣告 Copyright Announcement

1.本網站之數位內容為國立政治大學所收錄之機構典藏，無償提供學術研究與公眾教育等公益性使用，惟仍請適度，合理使用本網站之內容，以尊重著作權人之權益。商業上之利用，則請先取得著作權人之授權。
The digital content of this website is part of National Chengchi University Institutional Repository. It provides free access to academic research and public education for non-commercial use. Please utilize it in a proper and reasonable manner and respect the rights of copyright owners. For commercial use, please obtain authorization from the copyright owner in advance.

2.本網站之製作，已盡力防止侵害著作權人之權益，如仍發現本網站之數位內容有侵害著作權人權益情事者，請權利人通知本網站維護人員(nccur@nccu.edu.tw)，維護人員將立即採取移除該數位著作等補救措施。
NCCU Institutional Repository is made to protect the interests of copyright owners. If you believe that any material on the website infringes copyright, please contact our staff(nccur@nccu.edu.tw). We will remove the work from the repository and investigate your claim.

DSpace Software Copyright © 2002-2004 MIT & Hewlett-Packard / Enhanced by NTU Library IR team Copyright © - Feedback