English  |  正體中文  |  简体中文  |  全文筆數/總筆數 : 80990/80990 (100%)
造訪人次 : 41263053      線上人數 : 930
RC Version 7.0 © Powered By DSPACE, MIT. Enhanced by NTU Library IR team.
搜尋範圍 查詢小技巧:
  • 您可在西文檢索詞彙前後加上"雙引號",以獲取較精準的檢索結果
  • 若欲以作者姓名搜尋,建議至進階搜尋限定作者欄位,可獲得較完整資料
  • 進階搜尋


    請使用永久網址來引用或連結此文件: http://ir.lib.ncu.edu.tw/handle/987654321/95343


    題名: 透過DPDK技術實現容器化環境中的VPP應用防火牆部署
    作者: 姚昭宇;Yao, Chao-Yu
    貢獻者: 通訊工程學系在職專班
    關鍵詞: 應用程式防火牆;容器化;DPDK;網頁應用程式攻擊;WAF;Containerization;DPDK;Application Attack
    日期: 2024-07-17
    上傳時間: 2024-10-09 16:41:31 (UTC+8)
    出版者: 國立中央大學
    摘要: 近年來,隨著網路的蓬勃發展,各種網路服務提供範圍不斷擴大,人們的生活和工作已經密不可分地與網路連結在一起。然而,便利的同時也帶來了嚴峻的安全挑戰。特別是應用層攻擊和分散式阻斷服務攻擊(DDoS)的威脅日益凸顯,給企業和用戶的隱私和資料安全帶來了嚴重的威脅。

    應用層攻擊是針對網路應用層協議的攻擊,通常是利用應用程式的漏洞來進行攻擊,攻擊者可能會利用這些漏洞竊取敏感資訊、破壞系統運作,甚至控制系統進行惡意操作。而DDoS攻擊旨在癱瘓正常運作的服務,使得合法使用者無法訪問,造成極大損失。

    為了應對這些威脅,本論文提出了一種基於容器化和DPDK技術的應用程式防火牆。容器化技術實現了快速部署和輕量化運行,而DPDK技術則提高了封包處理效率。結合這些特點,為本應用程式防火牆系統增加了強大的防禦能力,在與原生Linux相比提高了百分之五效能的情況下,還能有效保護網路應用服務免受應用層攻擊的威脅。;In recent years, with the rapid development of the Internet, the range of various online services has been continuously expanding, making people′s lives and work inseparably connected to the network. However, this convenience also brings severe security challenges. Particularly, the threats of application layer attacks and Distributed Denial of Service (DDoS) attacks are becoming increasingly prominent, posing significant risks to the data security and privacy of enterprises and users.
    Application layer attacks target network application layer protocols, often exploiting vulnerabilities in applications. Attackers may use these vulnerabilities to steal sensitive information, disrupt system operations, or even control systems for malicious purposes. DDoS attacks aim to paralyze normally functioning services, denying legitimate users access to them, resulting in substantial losses.
    To solve these problems, this paper proposes an application firewall based on containerization and DPDK technology. Containerization technology enables rapid deployment and lightweight operation, while DPDK technology enhances packet processing efficiency. Combining these features, the proposed application firewall system significantly strengthens defensive capabilities, achieving a 5% performance improvement compared to native Linux, and effectively protects network application services from application layer attack threats.
    顯示於類別:[通訊工程學系碩士在職專班 ] 博碩士論文

    文件中的檔案:

    檔案 描述 大小格式瀏覽次數
    index.html0KbHTML21檢視/開啟


    在NCUIR中所有的資料項目都受到原著作權保護.

    社群 sharing

    ::: Copyright National Central University. | 國立中央大學圖書館版權所有 | 收藏本站 | 設為首頁 | 最佳瀏覽畫面: 1024*768 | 建站日期:8-24-2009 :::
    DSpace Software Copyright © 2002-2004  MIT &  Hewlett-Packard  /   Enhanced by   NTU Library IR team Copyright ©   - 隱私權政策聲明