A Router-based Technique to Detect and Defend against Low-rate Denial of Service

被引:0
|
作者
Zhu Lina [1 ]
Zhu Dongzhao [1 ]
机构
[1] Guangdong Police Officer Coll, Dept Comp Sci, Guangzhou, Guangdong, Peoples R China
来源
2009 INTERNATIONAL SYMPOSIUM ON WEB INFORMATION SYSTEMS AND APPLICATIONS, PROCEEDINGS | 2009年
关键词
Network security; Low-rate; Denial of service; retransmit-overtime; ATTACK;
D O I
暂无
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
With the successful use of router technique, we consider to give routers additional function to defect and defend against LDOS. LDOS is a kind of miniature network attack which can affect TCP flows to zero or very low transmission bandwidth, just because it takes advantage of retransmission timeout of TCP. This sort of attack is difficult to identify due to its good cryptcity. We appiciate the distributed detection mechanism, and we add a new fast detection function on it. We can accurately and fast find and locate the LDOS with it. Otherwise, we always try to remove the attack without complicated arithmetic or losing legal data. At the end of this paper, we will show the new way can break up the attack burst into parts.
引用
收藏
页码:257 / 260
页数:4
相关论文
共 50 条
  • [41] A new marking scheme to defend against distributed denial of service attacks
    Gao, ZQ
    Ansari, N
    Anantharam, K
    GLOBECOM '04: IEEE GLOBAL TELECOMMUNICATIONS CONFERENCE, VOLS 1-6, 2004, : 2256 - 2260
  • [42] Low-rate TCP-targeted denial of service attacks - (The shrew vs. the mice and elephants)
    Kuzmanovic, A
    Knightly, EW
    ACM SIGCOMM COMPUTER COMMUNICATION REVIEW, 2003, 33 (04) : 75 - 86
  • [43] Enhanced Detection and Restoration of Low-Rate Denial-of-Service in Wireless Multi-Hop Networks
    Liu, Qiang
    Yin, Jianping
    Jokar, Paria
    Hu, Xiping
    2013 INTERNATIONAL CONFERENCE ON COMPUTING, NETWORKING AND COMMUNICATIONS (ICNC), 2013,
  • [44] An analysis of a router-based loss detection service for active reliable multicast protocols
    Maimour, M
    Pham, CD
    10TH IEEE INTERNATIONAL CONFERENCE ON NETWORKS (ICON 2002), PROCEEDINGS, 2002, : 49 - 56
  • [45] A router-based technique for monitoring the next-generation of Internet multicast protocols
    Rajvaidya, P
    Almeroth, KC
    PROCEEDINGS OF THE 2001 INTERNATIONAL CONFERENCE ON PARALLEL PROCESSING, 2001, : 545 - 552
  • [46] Denying denial-of-service attacks: A router based solution
    Zhang, S
    Dasgupta, P
    IC'03: PROCEEDINGS OF THE INTERNATIONAL CONFERENCE ON INTERNET COMPUTING, VOLS 1 AND 2, 2003, : 301 - 307
  • [47] Fast and lightweight detection and filtering method for low-rate TCP targeted distributed denial of service (LDDoS) attacks
    Simsek, Mehmet
    Senturk, Arafat
    INTERNATIONAL JOURNAL OF COMMUNICATION SYSTEMS, 2018, 31 (18)
  • [48] Using adaptive router throttles against distributed denial-of-service attacks
    Liang, Feng
    Yau, David
    Ruan Jian Xue Bao/Journal of Software, 2002, 13 (07): : 1220 - 1227
  • [49] Low overhead router-based congestion control techniques to protect responsive traffic
    Ramaswamy, Venkatesh
    Cuellar, Leticia
    Eidenbenz, Stephan
    Hengartner, Nicolas
    GLOBECOM 2007: 2007 IEEE GLOBAL TELECOMMUNICATIONS CONFERENCE, VOLS 1-11, 2007, : 2740 - 2745
  • [50] Two-Layer Approach for Mixed High-Rate and Low-Rate Distributed Denial of Service (DDoS) Attack Detection and Filtering
    Toklu, S.
    Simsek, M.
    ARABIAN JOURNAL FOR SCIENCE AND ENGINEERING, 2018, 43 (12) : 7923 - 7931
12345