A dynamic path identification mechanism to defend against DDoS attacks

Gang Shin Lee, Heeran Lim, Manpyo Hong, Dong Hoon Lee

Research output: Contribution to journalConference article

3 Citations (Scopus)

Abstract

Many Researchers have tried to design mechanisms to resist Distributed Denial of Service(DDoS) attacks. Unfortunately, any of them has not been satisfactory. Recently, Yaar et al. suggested Pi (short for Path Identifier) marking scheme as one of solutions to thwart DDoS attacks, which is fast and effective in dropping the false positive and negative packets from users and attackers. They make use of the IP Identification field of which length is 16 bits as marking section. Every router en-route to the victim marks 1-bit or 2-bits by wrapping method sequentially. The victim drops the false positive and negative packets according to the attack markings list. The performance of Pi is measured for marking bit size of 1 or 2 bits. This paper suggests the method to decide the marking bit size dynamically in accordance with the number of hop counts. The performance is quite improved, compared with the existing one.

Original languageEnglish
Pages (from-to)806-813
Number of pages8
JournalLecture Notes in Computer Science
Volume3391
Publication statusPublished - 2005
EventInternational Conference on Information Networking, ICOIN 2005 - Jeju Island, Korea, Republic of
Duration: 2005 Jan 312005 Feb 2

ASJC Scopus subject areas

  • Theoretical Computer Science
  • Computer Science(all)

Fingerprint Dive into the research topics of 'A dynamic path identification mechanism to defend against DDoS attacks'. Together they form a unique fingerprint.

  • Cite this