Á¤º¸Ã³¸®ÇÐȸ ³í¹®Áö ÄÄÇ»ÅÍ ¹× Åë½Å½Ã½ºÅÛ
Current Result Document : 3 / 3
ÀÌÀü°Ç
ÇѱÛÁ¦¸ñ(Korean Title) |
CLDAP ÇÁ·ÎÅäÄÝÀ» ÀÌ¿ëÇÑ DDoS ÁõÆø°ø°Ý¿¡ ´ëÇÑ ¼¹ö °¡¿ë¼º Çâ»ó¹æ¾È ¿¬±¸ |
¿µ¹®Á¦¸ñ(English Title) |
Enhanced Server Availability for DDoS Amplification Attack Using CLDAP Protocol |
ÀúÀÚ(Author) |
ÃÖ¼®ÁØ
°ûÁø
Choi Suk June
Kwak Jin
|
¿ø¹®¼ö·Ïó(Citation) |
VOL 07 NO. 01 PP. 0019 ~ 0026 (2018. 01) |
Çѱ۳»¿ë (Korean Abstract) |
ÃÖ±Ù CLDAPÇÁ·ÎÅäÄÝÀ» »ç¿ëÇÏ¿© Microsoft Active Directory Á¤º¸¸¦ Á¦°øÇÏ´Â ¼¹ö¸¦ ÀÌ¿ëÇÑ DDoS ÁõÆø °ø°ÝÀÌ Á¡Á¡ Áõ°¡ÇÏ°í ÀÖ´Ù. CLDAP´Â ³×Æ®¿öÅ©¿¡¼ ±¤¹üÀ§ÇÑ µð·ºÅ丮 Á¤º¸¸¦ Á¢±ÙÇÏ°í À¯ÁöÇϵµ·Ï ÇÏ´Â °³¹æÇü Ç¥ÁØ ¾îÇø®ÄÉÀ̼ÇÀ̱⠶§¹®¿¡, ¼¹ö°¡ ÀÎÅͳݿ¡ °³¹æµÇ¾îÀִ Ư¡À» °¡Áö°í ÀÖ´Ù. ÀÌ·ÎÀÎÇØ, °ø°ÝÀÚ¿¡ ÀÇÇØ ÁõÆø°ø°ÝÀ» Çϱâ À§ÇÑ Reflector¼¹ö·Î ¾Ç¿ëµÉ ¼ö ÀÖ´Ù. ¶ÇÇÑ ÀÌ °ø°ÝÀº ±âÁ¸ÀÇ UDP ±â¹Ý Ç÷çµù °ø°Ýº¸´Ù 70¹è°¡·® ÁõÆøµÈ ÆÐŶÀ¸·Î °ø°ÝÀÌ °¡´ÉÇϸç, Áß¼Ò±Ô¸ðÀÇ ¼¹ö¿¡ ´ëÇÑ ¼ºñ½º Â÷´ÜÀ» ÇÒ ¼ö ÀÖ´Ù. µû¶ó¼ º» ³í¹®¿¡¼´Â CLDAP ¼¹ö¸¦ È°¿ëÇÏ´Â DDoS ÁõÆø °ø°ÝÀ» °¨¼ÒÇÒ ¼ö ÀÖ´Â ¾Ë°í¸®ÁòÀ» Á¦¾ÈÇÏ°í ÇØ´ç CLDAP ¼¹ö ȯ°æÀ» °¡»óÀ¸·Î ±¸ÇöÇÏ¿©, ÇØ´ç ¾Ë°í¸®Áò¿¡ ´ëÇÑ ±¸Çö ¹× ½ÇÁõÀ» ÁøÇàÇÑ´Ù. À̸¦ µ¿ÇØ °ø°Ý ´ë»ó¿¡ ´ëÇÑ °¡¿ë¼ºÀ» È®º¸ÇÒ ¼ö ÀÖµµ·Ï ¹æ¾ÈÀ» ¸¶·ÃÇÑ´Ù.
|
¿µ¹®³»¿ë (English Abstract) |
Recently, DDoS amplification attacks using servers that provide Microsoft Active Directory information using CLDAP protocol are increasing. Because CLDAP is an open standard application that allows a wide range of directory information to be accessed and maintained in a network, the server is characterized by its openness to the Internet. This can be exploited by the Reflector server to perform an amplification attack by an attacker. In addition, this attack can be attacked with a packet that is amplified 70 times more than the conventional UDP-based flooding attack, and it can block service to small and medium sized server. Therefore, in this paper, we propose an algorithm that can reduce the DDoS amplification attack using CLDAP server and implement the corresponding CLDAP server environment virtually, and implement and demonstrate the corresponding algorithm. This provides a way to ensure the availability of the server.
|
Å°¿öµå(Keyword) |
UDP ¼ÒÄÏ
CLDAP ÇÁ·ÎÅäÄÝ
DDoS ÁõÆø °ø°Ý
UDP Socket
CLDAP Protocol
DDoS Amplificattion Attack
|
ÆÄÀÏ÷ºÎ |
PDF ´Ù¿î·Îµå
|