| Low-rate denial of service attacks(LDo S)have become a major threat to Internet.LDo S attacks seriously damage the quality of service of the network by precisely attacking the security vulnerabilities of system devices.The main goal of LDo S attacks is to cause the maximum attack damage at the lowest attack cost.Therefore,LDo S attacks have low average attack traffic,which well covers their malicious behaviors and is not easy to be detected by detection systems.Up to now,network security researchers have proposed many LDo S attack forms,but the most common LDo S attack is against TCP protocol.CUBIC is the most widely used TCP congestion control algorithm.Compared with traditional TCP,CUBIC is more resistant and resilient to LDo S attacks.Firstly,a full-queue LDo S attack model of CUBIC+Drop Tail scenario is designed in this thesis.The attack parameters are determined through packet process analysis,the accuracy of the model is validated through experiments,and the attack performance of the attack model is evaluated.Then,the LDo S attack model of CUBIC+RED scenario is extensively verified,the effects of different network parameters on attack performance are evaluated,and the conditions for maximizing attack efficiency are discussed.The new attack form can not only dig out the security loopholes which can be exploited by attackers,but also promote the research of detection and defense system. |
PDF Full Text Request