Design of Secure Diffserv Ingress Edge Routers

被引：0

作者：

Xiao, Yang ^{[1
]}

Qu, Guangzhi ^{[2
]}

Kim, Kiseon ^{[3
]}

机构：

[1] Beijing Jiaotong Univ, Inst Informat & Sci, Beijing 100044, Peoples R China

[2] Oakland Univ, Dept Engn & Comp Sci, Rochester, MI 48309 USA

[3] Gwangju Inst Sci & Technol, Dept Informat & Commun, Gwangju 500712, South Korea

来源：

ICWMMN 2010, PROCEEDINGS | 2010年

基金：

北京市自然科学基金;

关键词：

hybrid traffics; network security; edge routers; control protocol; congestion control; stability; ACTIVE QUEUE MANAGEMENT;

D O I：

暂无

中图分类号：

TP3 [计算技术、计算机技术];

学科分类号：

0812 ;

摘要：

Classical Differentiated Service (DiffServ) routers ha e not considered the security problem in their designs generally they have no ability to countering Denial of Service (DoS) attacks because of their simple system structures DoS attacks against DiffServ clients are more targeted and require less attack bandwidth than current attacks for classical DiffServ routers due to the per-client and per-class bandwidth limitations, since they must be imposed to ensure QoS guarantees To solve the problem in this paper me present the design of new ingress DiffServ edge router(IDER) for defeating DoS attacks on DiffServ clients The classifier and access control model of ingress DiffServ edge routers(IDERs) secure the Quality of Service (QoS) by policing traffics and limiting the data rate and access number of traffics and distinguish the traffics with higher priorities from malicious traffics The algorithms of secure TCP AQM and UDP AQM are derived from to fluid models The network behaviors of proposed secure IDERs have been simulated by several to to fluid models with the traffic policing

引用

页码：55 / +

页数：2

共 50 条

[1] Diffserv AQM algorithm for edge and core routers
Xiao, Yang
Lu, Lingyun
Kim, Kiseon
[J]. JOURNAL OF SYSTEMS ENGINEERING AND ELECTRONICS, 2010, 21 (06) : 1033 - 1040
[2] Diffserv AQM algorithm for edge and core routers
Kiseon Kim
[J]. Journal of Systems Engineering and Electronics, 2010, 21 (06) : 1033 - 1040
[3] DiffServ edge routers over network processors: Implementation and evaluation
Lin, YD
Lin, YN
Yang, SC
Lin, YS
[J]. IEEE NETWORK, 2003, 17 (04): : 28 - 34
[4] An API for advanced traffic control in diffserv routers
Bianchi, G
Mancuso, V
Di Francesco, P
[J]. NETWORK CONTROL AND ENGINEERING FOR QOS, SECURITY AND MOBILITY, 2003, 107 : 369 - 380
[5] A Design of DSP, CPU architecture on FPGA for secure routers
Quoc, Bao Bui
Nguyen, Phu
Hoang, Trang
[J]. PROCEEDINGS OF 202013TH INTERNATIONAL CONFERENCE ON ADVANCED TECHNOLOGIES FOR COMMUNICATIONS (ATC 2020), 2020, : 231 - 236
[6] Dynamic resource allocation in core routers of a DiffServ network
Serban, R
Barakat, C
Dabbous, W
[J]. ADVANCES IN COMPUTING SCIENCE-ASIAN 2002: INTERNET-COMPUTING AND MODELING, GRID COMPUTING, PEER-TO PEER COMPUTING, AND CLUSTER COMPUTING, 2002, 2550 : 153 - 167
[7] Configuration of DiffServ routers for high-speed links
Banchs, A
Tartarelli, S
Orlandi, F
Sato, S
Kobayashi, K
Pan, HX
[J]. HPSR 2002: WORKSHOP ON HIGH PERFORMANCE SWITCHING AND ROUTING, PROCEEDINGS: MERGING OPTICAL AND IP TECHNOLOGIES, 2002, : 172 - 177
[8] Design and evaluation of DiffServ functionalities in the MPLS edge router architecture
Lai, Wei-Chu
Wu, Kuo-Ching
Hou, Ting-Chao
[J]. FIRST INTERNATIONAL WORKSHOP ON ADVANCED ARCHITECTURES AND ALGORITHMS FOR INTERNET DELIVERY AND APPLICATIONS, PROCEEDINGS, 2006, : 18 - +
[9] How to secure switches and routers
Hayes, J
[J]. COMMUNICATIONS NEWS, 2003, 40 (01): : 20 - +
[10] Routers home in on edge services
[J]. Electron. Eng. Times, 2006, 1452 (31+34):

← 1 2 3 4 5 →