Item request has been placed! ×
Item request cannot be made. ×
loading  Processing Request

On the effectiveness of flexible deterministic packet marking for DDoS defense

Item request has been placed! ×
Item request cannot be made. ×
loading   Processing Request
Read More Add to Saved list
  • Additional Information
    • Publication Information:
      IEEE Computer Society
    • Publication Date:
      2007
    • Collection:
      Central Queensland University: aCQUIRe
    • Abstract:
      IP traceback is one of the defense mechanisms for Distributed Denial of Service (DDoS) attacks. However, most traceback schemes consume extensive resources such as CPU, memory, disk storage and bandwidth and require a large amount of IP packets to reconstruct sources, which makes them impractical and ineffective. In this paper, we present a new flexible IP traceback scheme called Flexible Deterministic Packet Marking (FDPM). The flexibilities of FDPM are in two ways, one is that it can adjust the length of marking field according to the network protocols deployed, thus it can work well even in an environment with different network protocols; the other is that it can adjust the marking rate according to the load of participating router, while it still can maintain the marking function. In order to verify the effectiveness of FDPM for DDoS defense in terms of marking efficiency, maximum forwarding rate, and number of packets for reconstruction, we tested FDPM by both simulation and Linux router implementation with an emphasis on the latter. The experiments demonstrate that the built-in overload prevention mechanism, flow-based marking, can isolate and mark the most possible DDoS attack packets, while keeping the load of the participating router in a reasonably low degree. The real hardware implementation confirms that this flexible capability is important when traceback mechanisms are used in a real DDoS defense scenario.
    • ISBN:
      978-0-7695-2943-1
      0-7695-2943-7
    • Relation:
      IFIP International Conference on Network and Parallel Computing Workshops: Los Alamitos. : IEEE Computer Society, 2007. p.183-190 8 pages Refereed 0769529437; aCQUIRe [electronic resource] : Central Queensland University Institutional Repository.; http://hdl.cqu.edu.au/10018/5121; dest1-20071106-14281; cqu:2258; http://acquire.cqu.edu.au:8080/vital/access/manager/Repository/cqu:2258; http://doi.ieeecomputersociety.org/10.1109/ICNPCW.2007.127
    • Accession Number:
      10.1109/ICNPCW.2007.127
    • Online Access:
      https://doi.org/10.1109/ICNPCW.2007.127
      http://hdl.cqu.edu.au/10018/5121
      http://acquire.cqu.edu.au:8080/vital/access/manager/Repository/cqu:2258
    • Rights:
      By submitting a Work to aCQUIRe the author(s) grant(s) to Central Queensland University permission to publish the Work under the terms of the Creative Commons Attribution-NonCommercial-NoDerivs Licence. ; Reproduced with permission. "This material is presented to ensure timely dissemination of scholarly and technical work. Copyright and all rights therein are retained by authors or by other copyright holders. All persons copying this information are expected to adhere to the terms and constraints invoked by each author's copyright. In most cases, these works may not be reposted without the explicit permission of the copyright holder."
    • Accession Number:
      edsbas.1E264022