Abstract
DoS / DDoS(Distributed Denial of Service) attacks deny regular, internet services accessed by legitimate users, either by blocking the services completely, or by disturbing it completely, so as to cause customer baulking. Several traceback schemes are available to mitigate these attacks. The simulation approach also can be used to test the performing effects of different marking schemes in large-scale DDoS attacks. Based on the simulation and evaluation results, more efficient and effective algorithms, techniques and procedures to combat these attacks may be developed. DGT8, directional geographical trackback scheme, with 8 directions is one of them. Having a limited set of 8 directions, DGT8 may not work for routers with more than 8 interfaces. In this paper, we propose M-DGT i.e DGT 16, a 16 directional geographical traceback scheme having all the advantages of DGT. The 16 directions, though not having exactly equal interface, have nearly equal measures, and are identified using a novel scheme of Segment Direction Ratios (SDR). The SDR concept and the associated marking scheme allow the victim to defend against DDoS attacks independent of its ISP and also the generalization to DGT2n, having 2n directions (n>4).
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
Similar content being viewed by others
References
Yaar, et al.: FTT: Fast Internet Trackback. In: IEEE INFOCOM 2005, Miami, Florida (March 2005)
Al–Duwairi, B., et al.: Topology Based Packet Marking. In: IEEE Int. Conf. Computer Comm. and Networks, ICCN 2004 (October 2004)
Al-Duwairi, B., et al.: Novel Hybrid Schemes Employing Packet Marking and bagging for IP Traceback. IEEE Transactions on Parallel and Distribution Systems 17(5), 403–418 (2006)
Meadows: A formal framework and evaluation method for network denial of service. In: Proceedings of the 12th IEEE Computer Security Foundations Workshop (June 8-10, 1999)
Cisco. Strategies to Protect Against Distributed Denial of Service Attacks, http://www.cisco.com/en/US/tech/tk59/technologies_white_paper09186a0080174a5b.shtml
Cisco. Strategies to Protect Against Distributed Denial of Service Attacks, http://www.cisco.com/warp/public/707/newsflash.html
Computer Incident Advisory Capability. Network Intrusion Detector Overview, http://ciac.llnl.gov/cstc/nid/intro.html
Song, D.X., Perrig, A.: Advanced and Authenticated Marking Schemes for IP Traceback. In: IEEE INFOCOM 2001 Anchorage AK, AP 2001, pp. 878–886 (2001)
Karthik, S., Arunachalam, V.P., Ravichandran, T.: Multi directional geographical trace back within directions generalization. J. Compute. Sci. 4(8), 646–651 (2008) ISSN: 1549-3636
Karthik, S., Arunachalam, V.P., Bhavdharini, R.M.: Analyzing interaction between denial of service (dos) attacks and threats. In: Proceeding of the IEEE Int. Conf. on Computing, Communication and Networking, ICCCN 2008 (2008), 978-1-4244-3595-1/08/2008, doi:10.1109/ICCCNET.2008. 4787663
Karthik, S., Arunachalam, V.P., Ravichandran, T.: Analyzing interaction between denial of service (dos) attacks and threats. Int. J. Soft Computing, 68–75 (2009) ISSN: 1816-9503
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2010 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Karthik, S., Arunachalam, V.P., Ravichandran, T., Valarmathi, M.L. (2010). An Optimizing Technique for MDGT Using DRSA Algorithm Association with IP Traceback Strategies. In: Das, V.V., Vijaykumar, R. (eds) Information and Communication Technologies. ICT 2010. Communications in Computer and Information Science, vol 101. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-15766-0_9
Download citation
DOI: https://doi.org/10.1007/978-3-642-15766-0_9
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-15765-3
Online ISBN: 978-3-642-15766-0
eBook Packages: Computer ScienceComputer Science (R0)