公开(公告)号：KR101409758B1

公开(公告)日：2014-06-27

申请号：KR1020130060327

申请日：2013-05-28

Applicant: 아주대학교산학협력단

Inventor： 노병희 ,  최승오 ,  김광수 ,  김성민

IPC: H04L12/22 ,  H04L12/26

CPC classification number: H04L63/1458 ,  H04L43/0852 ,  H04L43/0888

Abstract: The present invention relates to an apparatus and method used to detect a service denial attack in a content-centric network. The apparatus capable of detecting a service denial attack in a content-centric network according to the present invention includes: a storage unit; an inflow rate change calculation unit; a threshold value calculation unit; and a detection unit. The apparatus capable of detecting a service denial attack also includes a plurality of interfaces to transmit and receive interests and data by communication with the content-centric network. The present invention can detect a service denial attack which causes the interest flooding to prevent a normal interest from being processed.

Abstract translation: 本发明涉及用于检测以内容为中心的网络中的服务拒绝攻击的装置和方法。 根据本发明的能够检测以内容为中心的网络中的服务拒绝攻击的装置包括：存储单元; 流入速率变化计算单元; 阈值计算单元; 和检测单元。 能够检测服务拒绝攻击的装置还包括通过与内容为中心的网络通信来发送和接收兴趣和数据的多个接口。 本发明可以检测到导致兴趣溢出的服务拒绝攻击以防止正常兴趣被处理。

公开(公告)号：KR101381606B1

公开(公告)日：2014-04-14

申请号：KR1020130060328

申请日：2013-05-28

Applicant: 아주대학교산학협력단

Inventor： 노병희 ,  최승오 ,  김광수 ,  김성민

IPC: H04L12/26 ,  H04L12/70

CPC classification number: H04L63/1416 ,  H04L43/04 ,  H04L43/16 ,  H04L63/1458

Abstract: A content centric network node and a method for detecting denial of service of the node are provided. A content concentric network node according to an embodiment of the present invention includes: a network congestion index calculation unit to detect the occurrence of service denial by comparing input or output information of interest and data with the threshold value which is a criteria for determining whether the service denial due to interest flooding is occurred or not and recalculating a return time using the exponential weighted moving average after setting a time between an interest is transmitted to the content concentric network and the corresponding data reaches as a network congestion indicator; and a threshold value correction unit to correct the threshold value using a timeout time which is a time limit which an interest transmitted to the content concentric network node is stored in the content concentric network node, the recalculated return time and weighting factor set by a user. [Reference numerals] (10) Network congestion index calculation unit; (11) Threshold value correction unit; (12) Attack detection unit; (16) First face; (17) Second face; (18) Third face; (19) N^th face

Abstract translation: 提供了一种以内容为中心的网络节点和一种检测该节点的拒绝服务的方法。 根据本发明的实施例的内容同心网络节点包括：网络拥塞指标计算单元，通过将感兴趣的和输入的信息与数据进行比较来检测服务拒绝的发生，阈值是用于确定是否 由于利息淹没而导致的服务拒绝发生或不发生，并且在将兴趣发送到内容同心网络并且对应的数据作为网络拥塞指示符设置时间之后，使用指数加权移动平均线重新计算返回时间; 以及阈值校正单元，其使用超时时间来校正阈值，该超时时间是发送到内容同心网络节点的兴趣被存储在内容同心网络节点中的时间限制，由用户设置的重新计算的返回时间和加权因子 。 （附图标记）（10）网络拥塞指标计算单元; （11）阈值校正单元; （12）攻击检测单元; （16）第一面; （17）第二面; （18）第三面; （19）N ^ th面