本文選題：移動(dòng)自組網(wǎng) + 網(wǎng)絡(luò)層攻擊��； 參考：《東北大學(xué)》2014年碩士論文

【摘要】：移動(dòng)自組網(wǎng)(MANET)是一種無(wú)中心控制、對(duì)固定基礎(chǔ)設(shè)施沒(méi)有依賴(lài)的新型無(wú)線(xiàn)網(wǎng)絡(luò),具有快速自治成網(wǎng)、部署靈活多變的特點(diǎn),在應(yīng)急通信和軍事戰(zhàn)術(shù)通信方面具有廣闊的應(yīng)用前景。但由于網(wǎng)絡(luò)的拓?fù)浣Y(jié)構(gòu)變化頻繁,無(wú)線(xiàn)介質(zhì)開(kāi)放和缺乏集中的監(jiān)控機(jī)制,加之節(jié)點(diǎn)本身的能力有限使得網(wǎng)絡(luò)很容易遭到攻擊。入侵檢測(cè)作為一項(xiàng)重要的網(wǎng)絡(luò)安全技術(shù),一直是當(dāng)前移動(dòng)自組網(wǎng)安全領(lǐng)域的研究熱點(diǎn)。首先對(duì)目前的移動(dòng)自組網(wǎng)進(jìn)行了安全需求分析,指出了網(wǎng)絡(luò)的安全目標(biāo),討論和研究了網(wǎng)絡(luò)層存在的安全弱點(diǎn)和面臨的安全威脅,并對(duì)網(wǎng)絡(luò)層可能存在的各種攻擊總結(jié)出三大類(lèi),即路由類(lèi)攻擊、資源消耗類(lèi)攻擊和數(shù)據(jù)流量類(lèi)攻擊。然后詳細(xì)的介紹了入侵檢測(cè)的相關(guān)概念及基礎(chǔ)知識(shí),對(duì)移動(dòng)自組網(wǎng)中入侵檢測(cè)系統(tǒng)框架模型及技術(shù)的研究進(jìn)展進(jìn)行了重點(diǎn)綜述。在此基礎(chǔ)上提出一種基于按需路由協(xié)議的入侵檢測(cè)算法,該算法結(jié)合按需路由協(xié)議的特點(diǎn),包括三個(gè)部分：實(shí)時(shí)路由檢測(cè)算法、分布式洪泛攻擊檢測(cè)算法和基于路徑的丟包檢測(cè)算法,能夠針對(duì)網(wǎng)絡(luò)層這三大類(lèi)攻擊進(jìn)行有效的檢測(cè),保證網(wǎng)絡(luò)的安全運(yùn)行。在NS2仿真平臺(tái)上對(duì)所設(shè)計(jì)的檢測(cè)算法進(jìn)行了仿真分析。仿真結(jié)果表明,該檢測(cè)算法具有很好的檢測(cè)性能并且開(kāi)銷(xiāo)很小,檢測(cè)出攻擊后對(duì)網(wǎng)絡(luò)性能有了很好的改善。
[Abstract]:Manet (Mobile Ad Hoc Network) is a new wireless network with no center control and no dependence on fixed infrastructure. It has the characteristics of fast autonomous networking and flexible deployment. It has a broad application prospect in emergency communication and military tactical communication. However, due to the frequent changes of the network topology, the open wireless media and the lack of centralized monitoring mechanism, and the limited ability of the nodes themselves, the network is vulnerable to attack. Intrusion detection as an important network security technology, has been the current research hotspot in the field of mobile ad hoc network security. Firstly, the security requirements of the mobile ad hoc network are analyzed, the security target of the network is pointed out, and the security weakness and the security threat in the network layer are discussed and studied. There are three kinds of attacks in the network layer, namely, routing attack, resource consumption attack and data traffic attack. Then the related concepts and basic knowledge of intrusion detection are introduced in detail, and the research progress of intrusion detection system framework model and technology in mobile ad hoc network is summarized emphatically. On this basis, an intrusion detection algorithm based on on-demand routing protocol is proposed. The algorithm combines the characteristics of on-demand routing protocol, including three parts: real-time routing detection algorithm. The distributed flood attack detection algorithm and the path-based packet loss detection algorithm can effectively detect the three kinds of attacks in the network layer and ensure the network running safely. The designed detection algorithm is simulated and analyzed on the NS2 simulation platform. The simulation results show that the proposed algorithm has good detection performance and low overhead, and the network performance is improved after the attack is detected.
【學(xué)位授予單位】：東北大學(xué)
【學(xué)位級(jí)別】：碩士
【學(xué)位授予年份】：2014
【分類(lèi)號(hào)】：TN915.08

【相似文獻(xiàn)】

相關(guān)期刊論文 前10條

1 宦娟;鞠時(shí)光;;移動(dòng)自組網(wǎng)入侵檢測(cè)綜述[J];計(jì)算機(jī)工程與設(shè)計(jì);2007年13期

2 周進(jìn)怡;;移動(dòng)自組網(wǎng)中可用性分析研究[J];湖南科技大學(xué)學(xué)報(bào)(自然科學(xué)版);2007年03期

3 程鈴;;移動(dòng)自組網(wǎng)的單播地址自動(dòng)分配方案[J];通信技術(shù);2009年05期

4 劉瑋瑋;;移動(dòng)自組網(wǎng)流量仿真及特征分析[J];價(jià)值工程;2010年11期

5 譚龍文;王國(guó)才;;一種基于權(quán)值的移動(dòng)自組網(wǎng)門(mén)限證書(shū)更新方案[J];微計(jì)算機(jī)信息;2011年02期

6 陳超;;移動(dòng)自組網(wǎng)技術(shù)在消防部隊(duì)搶險(xiǎn)救援通信保障中的應(yīng)用[J];消防技術(shù)與產(chǎn)品信息;2012年10期

7 蘆鴻雁;;移動(dòng)自組網(wǎng)安全技術(shù)綜述[J];黑龍江科技信息;2013年05期

8 陳曦,張霞,梁興強(qiáng);移動(dòng)自組網(wǎng)測(cè)試平臺(tái)設(shè)計(jì)研究[J];計(jì)算機(jī)工程與應(yīng)用;2004年12期

9 王建新,拉米;移動(dòng)自組網(wǎng)安全的性研究[J];電信快報(bào);2004年05期

10 鄭源,陳建二,王建新;移動(dòng)自組網(wǎng)中泛播技術(shù)研究綜述[J];計(jì)算技術(shù)與自動(dòng)化;2004年02期

相關(guān)會(huì)議論文 前10條

1 楊樂(lè);;移動(dòng)自組網(wǎng)中廣播算法綜述[A];第三屆全國(guó)軟件測(cè)試會(huì)議與移動(dòng)計(jì)算、柵格、智能化高級(jí)論壇論文集[C];2009年

2 石川;高婧怡;朱培棟;張楊;;基于移動(dòng)自組網(wǎng)的分布式設(shè)備故障感知和實(shí)時(shí)宣告系統(tǒng)的研究與實(shí)現(xiàn)[A];2010年第16屆全國(guó)信息存儲(chǔ)技術(shù)大會(huì)（IST2010）論文集[C];2010年

3 王敏;經(jīng)繼松;楊s，

本文編號(hào)：1928572