Академический Документы
Профессиональный Документы
Культура Документы
net
Tan cong t choi dch vu (DoS) la cac cuoc tan cong tren he thong mang nham ngan can nhng truy xuat ti mot dch vu. Tan cong DoS pha huy dch vu mang bang cach lam tran ngap so lng ket noi, qua tai server hoac chng trnh chay tren server, tieu ton tai nguyen cua server, hoac ngan chan ngi dung hp le truy nhap ti dch vu mang.
1/8
www.nhipsongcongnghe.net
Co rat nhieu cac phng cach e thc hien cac cuoc tan cong t choi dch vu, v the cung co rat nhieu cach phan loai DoS. Cach phan loai pho bien thng dung da vao giao thc trong hnh thc tan cong cua DoS, v du nh tran ngap ICMP vi Smurf, Ping of Death, khai thac iem yeu cua TCP trong hoat ong cua giao thc va phan manh goi tin vi SYN flood, LanD attacks, TearDrop hay tren mc dch vu nh vi Flash Crowds ( Viet Nam thng biet en vi ten X-flash). Phan loai theo phng thc tan cong, DoS co the c thc hien bang mot vai goi tin n le gi thang ti server gay roi loan hoat ong (nh slammer worm), hoac kch hoat e gi t nhieu nguon (t choi dch vu phan tan DdoS). Tan cong co the thc hien tren mang Internet (s dung ngay cac web server), hoac broadcast trong mang ben trong (insider attacks nh vi Blaster worm), tren mang P2P (P2P index poinsioning) hay Wireless (WLAN authentication rejection attack- spoof sender). Tuy nhien, co the thay cac cach phan loai tren da chu yeu vao cach nhn t s phat sinh tan cong, va v the, khong he thong hoa c phng thc phong tranh.
2/8
www.nhipsongcongnghe.net
Mot cach chung nhat, co 7 pham tru cac to chc can xem xet khi oi pho vi cac moi e doa ve DoS nh sau:
chng trnh webserver, DNS, hay SQL database. Cap nhat ban va (patching) la mot trong nhng yeu cau quan trong cho viec phong nga. Trong thi gian cha the cap nhat toan bo mang, he thong phai c bao ve bang ban va ao (virtual patch). Ngoai ra, he thong can ac biet xem xet nhng yeu cau trao oi noi dung gia client va server, nham tranh cho server chu tan cong qua cac thanh phan gian tiep (v du SQL injection).
3/8
www.nhipsongcongnghe.net
4/8
www.nhipsongcongnghe.net
5/8
www.nhipsongcongnghe.net
bang thong nham giam thieu tac hai cua tan cong dang nay.
www.nhipsongcongnghe.net
nay, he thong can phan tch va chong c spoofing. Gii han so lng ket noi t mot nguon cu the ti server (quota). 7. Phat hien va ngan chan tan cong ti hantoc o thiet lap ket noi Mot trong nhng iem cac server thng b li dung la kha nang cac bo em gii han gianh cho toc o thiet lap ket noi, dan en qua tai phai chu s thay oi ot ngot ve so lng sinh ket noi. ay viec ap dung bo loc e gii han so lng ket noi trung bnh rat quan trong. Mot bo loc se xac nh ngng toc o ket noi cho tng oi tng mang. Thong thng, viec nay c o bang so lng ket noi trong thi gian nhat nh e cho phep s dao ong trong lu lng.
Cac phan tch tren c da tren nhng ngam nh c ban sau trong viec bao ve he thong.
1. o la cac thiet b bao ve can c at tren luong thong tin va thc hien trc tiep viec ngan nga. ieu nay xuat phat t ly do cho toc o cua mot cuoc tan cong (v du khoang 10.000 ang ky thanh vien tren 1s hng ti 1 server, hoac phat tan worm vi toc o 200s tren he thong mang Ethernet 100M). Vi toc o nh vay, cach thc phong nga dang phat hien thong bao ngan chan (Host Shun va TCP Reset) khong con phu hp.
7/8
www.nhipsongcongnghe.net
2. Cac cuoc tan cong t choi dch vu chu yeu nham ti kha nang x ly cua he thong mang ma au tien la cac thiet b an ninh thong tin. Nang lc x ly cua IPS hoac cac thanh phan content filtering la mot trong nhng iem can chu y, ac biet s on nh trong viec x ly ong thi cac loai lu lng hon tap vi kch thc goi tin thay oi. 3. Cac cuoc tan cong luon c tch hp (blend attacks) vi s tong hp cac phng thc khac nhau. Chnh v vay, tam quan trong cua viec phong nga nhng dau hieu lay nhiem n gian la bc au tien e ngan chan nhng cuoc tan cong t choi dch vu. Trong he thong tong the ve security, e oi pho vi cac cuoc tan cong t choi dch vu, th thanh phan IPS c coi la quan trong nhat tnh trong suot vi ngi dung, nen viec phan tch cac luong thong tin trao oi gia server va ngi dung khong b anh hng bi cac luong tan cong hng thang en no. Di ay la tom tat nhng bao cao cua NSS, to chc kiem tra nh kha nang cac thiet b mang trong moi trng gia lap tan cong cho cac thiet b IPS cua cac hang hang au.
8/8