流量控制傳輸協定在無線網路換手時防禦阻絕式服務攻擊的效能分析

本篇論文探討流量控制傳輸協定(Stream Control Transmission Protocol,SCTP)於無線網路換手程序中防禦阻絕式服務(Denial of Service,DoS)攻擊和換手延遲的分析。在無線網路環境裡，換手延遲導致封包遺失的問題與阻絕式服務攻擊的威脅一直被關注，而SCTP的多元宿主(Multi-Homed)和多路串流(Multi-Streams)功能，可有效減少無線網路換手延遲時間並提升端點到端點的吞吐量，SCTP的四路交握的連線建立程序加上曲奇(Cookie)的使用以及核查標記的設計可防禦阻絕式服務攻擊的威脅。基於上述原因，本論文在NS-2(Network Simulator)模擬器上實作SCTP的通訊協定，以模擬SCTP在換手程序時防禦阻絕式服務攻擊的能力、分析換手延遲時間、以及分析端點對端點的吞吐量。

關鍵字

流量控制傳輸協定；阻絕式服務；多元宿主；多路串流；曲奇

並列摘要

This paper explores the performance analysis of Denial of Service(DoS) protection scheme for Stream Control Transmission Protocol(SCTP) in the process of wireless handoff. In wireless networks, the problem of packet loss caused by handoff process and the threat of DoS attack has been concerned. The Multi-Homed and Multi-Streams function of SCTP effectively reduce the handoff delay and enhance the end-to-end throughput. However, 4-way handshake function of SCTP cooperate with Cookie and Verification Tag to prevent the threat of DoS attack. Based on above reasons, we implement the SCTP module in NS-2. Finally, we simulated SCTP in wireless network with or without the attacks, reflected the handoff delay and end-to-end throughput.

並列關鍵字

Stream Control Transmission Protocol ； Denial of Service ； Multi-Homed ； Multi-Streams ； Cookie ； Verification Tag

參考文獻

[7] J. Postel, “Transmission Control Protocol,” RFC 793, IETF, January 1980.

[9] R. Stewart et al., “Stream Control Transmission Protocol,” RFC 2960, IETF, October 2000.

[10] Md. Nurul Islam and A. Kara, “Throughput Analysis of SCTP over a Multi-homed Association,” Proceedings of IEEE CIT’06, 2006.

[12] J. K. Song and W. Wang, “A simulation study of IP-based vertical handoff in wireless convergent networks”, Wirel. Commun. Mob. Comput., 2006.

[21] T. Chen, M. Sortais, G. Schäfer, S. Adams, C. Fan and A. Wolisz, “Performance analysis of a Denial of Service protection scheme for optimized and QoS-aware handover, ” Computer Networks, Volume:49, 2005, pp.449-464.

國際替代計量

流量控制傳輸協定在無線網路換手時防禦阻絕式服務攻擊的效能分析

未授權

主題瀏覽