ALP：一種在保持帳戶鎖定的同時解決帳 戶拒絕服務攻擊的解決方案

DC 欄位	值	語言
DC.contributor	資訊工程學系	zh_TW
DC.creator	何雋永	zh_TW
DC.creator	Chun-Yung Ho	en_US
dc.date.accessioned	2024-7-22T07:39:07Z
dc.date.available	2024-7-22T07:39:07Z
dc.date.issued	2024
dc.identifier.uri	http://ir.lib.ncu.edu.tw:444/thesis/view_etd.asp?URN=111525013
dc.contributor.department	資訊工程學系	zh_TW
DC.description	國立中央大學	zh_TW
DC.description	National Central University	en_US
dc.description.abstract	使用帳戶密碼進行驗證的登入方式廣泛應用於各種應用程式。然而，攻擊者可能通過自動化腳本對應用程序進行暴力破解攻擊。為了防止帳戶被惡意攻擊者破解並導致帳戶被接管，大多數應用程式都採取了帳戶鎖定政策。然而，帳戶鎖定政策也可能被用於阻斷服務攻擊，導致合法使用者無法訪問自己的帳戶。現有的解鎖方式在面對持續的帳戶阻斷服務攻擊時往往無法有效防範，甚至在 SSH 上也缺乏相關的解鎖方式。因此，需要一個解決方案，既能讓使用者正常訪問帳戶，又能保護使用者免於帳戶被反覆鎖定的風險。在這篇論文中，我們提出 ALP 來保護系統避免同時受到密碼破解和帳戶 DoS 攻擊。	zh_TW
dc.description.abstract	Password-based authentication is widely used in various applications. However, attackers may use automated scripts to perform brute force attacks on these applications. To prevent accounts from being compromised by malicious attackers, most applications implement account lockout policies. However, these account lockout policies can also be exploited for Denial-of-Service attacks, preventing legitimate users from accessing their accounts. Existing unlock mechanisms are often ineffective against sustained account lockout attacks and are even absent for services like SSH. Therefore, a solution is needed that allows users to access their accounts normally while protecting them from the risk of repeated account lockouts. In this paper, we propose Account Lock Protector (ALP) to defend a system against password cracking and account DoS simultaneously.	en_US
DC.subject	帳戶鎖定	zh_TW
DC.subject	阻斷服務攻擊	zh_TW
DC.subject	account lockout	en_US
DC.subject	Denial-of-Service	en_US
DC.title	ALP：一種在保持帳戶鎖定的同時解決帳戶拒絕服務攻擊的解決方案	zh_TW
dc.language.iso	zh-TW	zh-TW
DC.title	ALP: A Solution Solving Account Denial-of-Service while Maintaining Account Lock	en_US
DC.type	博碩士論文	zh_TW
DC.type	thesis	en_US
DC.publisher	National Central University	en_US

博碩士論文 111525013 完整後設資料紀錄