网络与信息安全学报 ›› 2017, Vol. 3 ›› Issue (2): 53-65.doi: 10.11959/j.issn.2096-109x.2017.00135

• 学术论文 • 上一篇    下一篇

分布式拒绝服务的可视分析

张毅凡,董笑菊()   

  1. 上海交通大学电子信息与电气工程学院,上海 200240
  • 修回日期:2017-01-05 出版日期:2017-02-01 发布日期:2017-02-10
  • 作者简介:张毅凡(1993-),女,天津人,上海交通大学硕士生,主要研究方向为网络安全可视化。|董笑菊(1975-),女,吉林公主岭人,博士,上海交通大学副教授,主要研究方向为信息可视化与可视分析、形式化方法。
  • 基金资助:
    国家自然科学基金资助项目(61100053)

Visualization analysis and design of DDoS attack

Yi-fan ZHANG,Xiao-ju DONG()   

  1. School of Electronic Information and Electrical Engineering, Shanghai Jiaotong University, Shanghai 200240, China
  • Revised:2017-01-05 Online:2017-02-01 Published:2017-02-10
  • Supported by:
    The National Natural Science Foundation of China(61100053)

在线阅读

12

pdf下载

674

摘要:

首先,对网络日志中提取出的IP地址进行可视分析,设计完整的可视方案,通过采取有效的可视化方法,利用网页语言工具,将网络日志数据以图形的形式有效表示出来。其次,使用IP地址作为分析中心,分别以源IP、目的IP以及二者之间关联作为各个视图的重点,向用户展现不同视角,进而显示更多细节,发现数据间的隐藏关联。在此方案的可视设计中,加入了大量交互设计如联动等,提高了视图的显示效率及可用性,使各个视图间的关系更加清晰。最后,分别采用DDoS发生后提取的实际网络日志与未发生时的网络日志作为源数据引入设计,通过对比,显示设计的实用效果及实际意义。

关键词: 网络安全, 数据可视化, 分布式拒绝服务攻击, IP地址

Abstract:

Firstly, the IP address of the Web log were visualized, and an integral system was presented by using proper visualization methods. Secondly, the whole system was related to the IP address, containing source IP address, target IP address and their relationship respectively. It provided users with different views of data, which could show more details and undetected relations among massive data. Besides, some interactions were added into the system, which made it more effective and useful. Finally, it ended up with the comparison of the systems when loading data with the DDoS attack and without it. It made much sense in the application field.

Key words: network security, data visualization, DDoS attack, IP address

中图分类号: 

No Suggested Reading articles found!