This paper first introduced the principle of exploiting P2P systems to perform DDoS attacks, and then classified existing researches as two types: active attacks and passive attacks.Summarized the defense solutions and described them from four aspects: validation-based method, membership-based method, reputation-based method and victim method.Finally, discussed the further directions of P2P-based attacks and their defense mechanism from the view of promoting the safety of P2P network and Intemet.%首先概述了利用P2P系统进行DDoS攻击的原理,并根据攻击方式的不同将现有研究划分为主动攻击和被动攻击两种.综述了当前针对基于P2P的DDoS攻击的防御方法,分别从基于验证的方法、基于成员管理的方法、基于信誉的方法和受害者端的方法四个方面进行说明.最后,从推动P2P网络安全和Internet网络安全的角度出发,对基于P2P的DDoS攻击及其防御技术未来的研究方向进行了探讨.
展开▼