Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Single-packet tracing method based on label switching

A label switching and label switching path technology, applied in electrical components, transmission systems, etc., can solve the problems of long processing time, severe traceability storage, and reduction of traceability storage overhead. The effect of reducing storage overhead

Inactive Publication Date: 2016-07-27
NORTHEASTERN UNIV
View PDF2 Cites 14 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Although researchers have used some compression tools with high space usage (such as Bloom filter) or packet marking technology to store trace traces, thereby reducing the storage overhead of traceability, these technologies only reduce the unit storage of trace traces. The capacity does not change the proportional relationship between storage and packet forwarding, so the problem of traceable storage is still severe
[0006] 2) They usually use a centralized method to manage traces, so that the traceability router can only serially process the arriving data packets
For example, a router usually only needs to perform IP packet decapsulation and encapsulation operations, but the traceability router also needs to perform operations such as packet recording and packet marking in addition to the two operations. In the NE5000E router, the average processing time of IP packets is about 0.06ns. When After it is upgraded to a traceable router, the IP packet processing time will definitely exceed 0.06ns, resulting in a decrease in network transmission performance

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Single-packet tracing method based on label switching
  • Single-packet tracing method based on label switching
  • Single-packet tracing method based on label switching

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0047] Embodiment 1 of the present invention: a single packet traceability method based on label switching, such as figure 1 , figure 2 shown, including the following steps:

[0048] S1, when the IP packet propagates in the network, the traceability router (that is, the router with the traceability function) establishes the trace trace of the IP data packet according to the establishment principle of the label switching path in the MPLS network; specifically includes:

[0049] S11, for each IP packet arriving at the traceable router, by using the mapping table of the router ID and the router IP address, it is judged whether the upstream router IP carried by the IP packet is legal; wherein, the 12-bit router ID and the router IP address can be used for mapping ;

[0050] S12, if it is illegal, it means that the upstream router is the ingress router of the IP packet, distributes the standard outgoing label SOL, and marks the new router ID and standard outgoing label SOL to t...

Embodiment 2

[0062] Embodiment 2: A single packet traceability method based on label switching, such as figure 1 , figure 2 shown, including the following steps:

[0063] S1, when the IP packet propagates in the network, the traceability router (that is, the router with the traceability function) establishes the trace trace of the IP data packet according to the establishment principle of the label switching path in the MPLS network; wherein, the traceability router according to the MPLS network The establishment principle of the label switching path The establishment of the tracking trace of the IP data packet specifically includes:

[0064] S11, for each IP packet arriving at the traceability router, judge whether the upstream router ID it carries is legal;

[0065] S12, if it is illegal, it means that the upstream router is the ingress router of the IP packet, distributes the standard outgoing label SOL, and marks the new router ID and standard outgoing label SOL to the IP packet, g...

Embodiment 3

[0073] Embodiment 3: A single-package traceability method based on label switching, such as figure 1 , figure 2 shown, including the following steps:

[0074] S1, when the IP packet propagates in the network, the traceability router (that is, the router with the traceability function) establishes the trace trace of the IP data packet according to the establishment principle of the label switching path in the MPLS network; wherein, the traceability router according to the MPLS network The establishment principle of the label switching path The establishment of the tracking trace of the IP data packet specifically includes:

[0075] S11, for each IP packet arriving at the source tracing router, judge whether the upstream router IP carried by the IP packet is legal by using the mapping table of the router ID and the router IP address;

[0076] S12, if it is illegal, it means that the upstream router is the ingress router of the IP packet, distributes the standard outgoing lab...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a single-packet tracing method based on label switching. The method comprises the following steps that S1, when an IP packet is performing transmission in a network, a tracing router establishes a tracing track of the IP data packet according to the a label switching path establishment principle in an MPLS network; and S2, after a network attack occurs, a victim emits a tracing request, and a tracing manager reconstructs an attack path according to the tracing track. According to the method, the reverse-routing-oriented tracking track is established by using the label switching path establishment principle in the MPLS network, thus the memory expense of the tracing router is no longer dependent of the forwarding amount of the IP packet (namely, the memory expense of the tracing router is no longer in direct proportion to the forwarding amount of the IP packet of the tracing router, and as the operation time goes on, the memory expense of the router is no longer linearly increased), but only related to the number of routing paths passing through the tracing router, and thereby greatly reducing the memory expense of the tracing router.

Description

technical field [0001] The present invention relates to an anonymous packet tracking technology of an IP network, in particular to a label switching based single-packeTTraceback (S3T for short) method for a Mixed Denial-of-Service attack (MDos for short). Background technique [0002] Denial-of-Service (DoS for short) attacks have occurred at the beginning of the rise of the Internet, and in just a few years it has rapidly become the most important security threat hindering the development of the Internet. In recent years, with the continuous upgrading of hacking techniques, DoS attacks are undergoing a revolution. In 2013, Radware, the world's top provider of network security and management solutions, pointed out in a report that DoS attacks are gradually evolving into an advanced persistent penetration attack, and the most fundamental reason for this change is "hybrid denial of service attacks (i.e. MDos)" appears. Different from traditional DoS attacks, MDoS is an intel...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06
CPCH04L63/1458H04L2463/143
Inventor 鲁宁韩潇潇
Owner NORTHEASTERN UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com