Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

A dynamically scalable and efficient single-packet traceability method

A dynamic expansion and high-efficiency technology, applied in the field of IP traceability, can solve the problems of management mode conflict, network topology privacy leakage, hinder the scale expansion of the traceability system, etc., to improve efficiency and accuracy, improve execution speed, and ensure scalability. Effect

Active Publication Date: 2020-12-15
东北大学秦皇岛分校
View PDF5 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] The purpose of the present invention is to provide a dynamically expandable and efficient single-package traceability method, which can effectively solve the problems existing in the prior art, especially the flat system structure, and the traceability management granularity is relatively single, so that autonomous domains must Seamless cooperation, which not only conflicts with the current Internet multi-polarization management model, but also causes network topology privacy leakage, thus hindering the expansion of the traceability system

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A dynamically scalable and efficient single-packet traceability method
  • A dynamically scalable and efficient single-packet traceability method
  • A dynamically scalable and efficient single-packet traceability method

Examples

Experimental program
Comparison scheme
Effect test

experiment example

[0109] The present invention can hide the cross-domain single-packet traceability architecture of the inter-domain network topology (that is, the hierarchical system architecture model in which the inter-domain network and the intra-domain network are separated) such as figure 1 As shown in , where the inter-domain network establishes an anti-anonymity alliance based on peer-to-peer relationships, such as figure 1 and figure 2 As shown in , assuming that the network prefix of a traceable Stub domain is AS 1 _prefix, in order to prevent the anonymous flow of this domain from entering the inter-domain network, the border router of this domain needs to configure two filtering rules: 1) permit AS 1 _prefix any; 2) deny anyany, that is, allow the outflow of IP packets whose prefix belongs to the Stub domain; 2) deny the outflow of any anonymous packets whose prefix does not belong to the Stub domain. For these two rules, the router matches the first rule first, and if the mat...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a dynamically expandable and efficient single-packet traceability method, comprising: in an inter-domain network composed of transit domains, using all traceability Stub domains to form an anti-anonymous alliance, and the anti-anonymous alliance passes through each traceability Configure ACL filtering rules on the border routers in the Stub domain, so that all anonymous packets that are about to flow into the inter-domain network are cleaned up; in each traceability Stub domain, build a traceability network, and establish a path fingerprint in the traceability network; when the attack occurs , by using the anti-anonymity alliance, the network service provider directly uses the source address of the anonymous packet and the ingress router to locate the attack domain, and then restores the attack path by extracting the path fingerprint. The invention weakens the coupling between autonomous domains, thereby achieving the purpose of phased management and flexible control, and avoiding the leakage of network topology privacy, which is beneficial to the expansion of the scale of the traceability system.

Description

technical field [0001] The invention relates to a dynamically expandable and efficient single-packet traceability method, which belongs to the technical field of IP traceability. Background technique [0002] Among many network security issues, "IP anonymity" is undoubtedly one of the most serious security risks restricting the development of the Internet. Among them, the source address forgery technology is a major IP anonymity method. In order to carry out normal communication on the Internet, when the message sender sends a message, it needs to fill in the real IP address assigned to the sender in the source address field, so that the report Only the receiver of the text knows the destination address when sending the reply. For a special purpose, the sender of the message modifies the source address carried in the message to an arbitrary address. This behavior is called forging the source address. A series of notorious network attacks (including SYNFlooding, DNS amplifi...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L12/26
CPCH04L43/10H04L2463/146
Inventor 鲁宁许志勤史闻博李峰
Owner 东北大学秦皇岛分校
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com