TY - JOUR
T1 - Tracing DDoS floods
T2 - An automated approach
AU - Tupakula, Udaya Kiran
AU - Varadharajan, Vijay
PY - 2004/3
Y1 - 2004/3
N2 - We propose a Controller-Agent model that would greatly minimize distributed denial-of-servicfe (DDoS) attacks on the Internet. We introduce a new packet marking technique and agent design that enables us to identify the approximate source of attack (nearest router) with a single packet even in the case of attacks with spoofed source addresses. Our model is invoked only during attack times, and is able to process the victims traffic separately without disturbing other traffic, it is also able to establish different attack signatures for different attacking sources and can prevent the attack traffic at the nearest router to the attacking system. It is simple in its implementation, it has fast response for any changes in attack traffic pattern, and can be incrementally deployed. Hence we believe that the model proposed in this paper seems to be a promising approach to prevent distributed denial-of-service attacks.
AB - We propose a Controller-Agent model that would greatly minimize distributed denial-of-servicfe (DDoS) attacks on the Internet. We introduce a new packet marking technique and agent design that enables us to identify the approximate source of attack (nearest router) with a single packet even in the case of attacks with spoofed source addresses. Our model is invoked only during attack times, and is able to process the victims traffic separately without disturbing other traffic, it is also able to establish different attack signatures for different attacking sources and can prevent the attack traffic at the nearest router to the attacking system. It is simple in its implementation, it has fast response for any changes in attack traffic pattern, and can be incrementally deployed. Hence we believe that the model proposed in this paper seems to be a promising approach to prevent distributed denial-of-service attacks.
UR - http://www.scopus.com/inward/record.url?scp=3543079857&partnerID=8YFLogxK
U2 - 10.1023/B:JONS.0000015701.83726.ca
DO - 10.1023/B:JONS.0000015701.83726.ca
M3 - Article
AN - SCOPUS:3543079857
SN - 1064-7570
VL - 12
SP - 111
EP - 135
JO - Journal of Network and Systems Management
JF - Journal of Network and Systems Management
IS - 1
ER -