中大機構典藏-NCU Institutional Repository-提供博碩士論文、考古題、期刊論文、研究計畫等下載:Item 987654321/86789
English  |  正體中文  |  简体中文  |  Items with full text/Total items : 78852/78852 (100%)
Visitors : 37045890      Online Users : 482
RC Version 7.0 © Powered By DSPACE, MIT. Enhanced by NTU Library IR team.
Scope Tips:
  • please add "double quotation mark" for query phrases to get precise results
  • please goto advance search for comprehansive author search
    •  Adv. Search
    HomeLoginUploadHelpAboutAdminister Goto mobile version


    Please use this identifier to cite or link to this item: http://ir.lib.ncu.edu.tw/handle/987654321/86789


    Title: 針對EDoS攻擊偵測及防禦之研究;A Study of Detection and Defense for EDoS Attack
    Authors: 賴映岑;Lai, Ying-Cen
    Contributors: 資訊工程學系
    Keywords: EDoS攻擊;Yo-Yo攻擊;流量分析;K-means clustering;Dynamic Time Warping;EDoS attack;Yo-Yo attack;Traffic analysis;K-means clustering;Dynamic Time Warping
    Date: 2021-09-02
    Issue Date: 2021-12-07 13:13:10 (UTC+8)
    Publisher: 國立中央大學
    Abstract: 在雲端運算蓬勃發展下,彈性雲之營運方式被廣泛使用,透過根據用戶服務級別協議(SLA)提供 QoS,使服務更能按需求部署及彈性擴展。然而此種營運機制可能會受到針對雲服務之 Economic Denial of Sustainability(EDoS)攻擊,表面上對服務提出合法請求,利用服務自動擴展機制,造成系統持續擴展資源,讓用戶需要支付龐大的資源使用費。而本論文提出一個機制,利用基於 Dynamic Time Warping 的 K-means 分群演算法對用戶流量進行分群,並分析服務資源使用率和用戶流量之間的時間分布,來區分合法用戶及惡意用戶,並限制惡意用戶存取服務,來達到偵測 Yo-Yo 攻擊以及防禦之效果。;As development of cloud computing grows rapidly, the operation with Elastic Cloud is widely used. By providing QoS according to the user service level agreement (SLA), the service can be deployed and expanded flexibly on demand. However, this kind of operation may suffer Economic Denial of Sustainability (EDoS) attacks against cloud services. On the surface, legal requests are sent to the service, cause the system to continue to expand resources with auto-scaling mechanism. Let users need to pay for a huge usage fee. This paper proposes a mechanism that uses the K-means clustering algorithm based on Dynamic Time Warping to cluster users’ traffic, and analyzes the time distribution between system resource usage and user traffic to distinguish legitimate users from malicious users. Then restrict malicious users to access the Service. Keep the service from the threat of Yo-Yo attack.
    Appears in Collections:[Graduate Institute of Computer Science and Information Engineering] Electronic Thesis & Dissertation

    Files in This Item:

    File Description SizeFormat
    index.html0KbHTML176View/Open


    All items in NCUIR are protected by copyright, with all rights reserved.

    社群 sharing

    ::: Copyright National Central University. | 國立中央大學圖書館版權所有 | 收藏本站 | 設為首頁 | 最佳瀏覽畫面: 1024*768 | 建站日期:8-24-2009 :::
    DSpace Software Copyright © 2002-2004  MIT &  Hewlett-Packard  /   Enhanced by   NTU Library IR team Copyright ©   - 隱私權政策聲明