@inproceedings{fec9b6ec496e4532bbcd425e37fd17c7,
title = "UAS: Universal anti-spoofing by incorporating existing mechanisms",
abstract = "IP spoofing is attractive to amplify network attacks and to provide anonymity. Many approaches have to prevent IP spoofing attacks; however, they do not address a significant deployment issue: filtering inefficiency caused by lack of incentives for early adopters. Practically, no mechanism has been widely deployed and none successfully blocks IP spoofing attacks. We propose a universal anti-spoofing (UAS) mechanism that incorporates existing mechanisms to thwart IP spoofing attacks. In the proposed mechanism, intermediate routers utilize any existing anti-spoofing mechanism that ascertains whether a packet is spoofed or not, and inscribes this information in the packet header. The edge routers at a victim network can estimate the forgery of a packet based on the information sent by the upstream routers. The results of experiments conducted with Internet topologies indicate that UAS reduces false alarms up to 84.5% compared to cases where each mechanism operates separately. Our evaluation shows that incorporating multiple anti-spoofing mechanisms reduces false alarms significantly.",
keywords = "DDoS attacks, IP spoofing prevention, Network security, packet filtering, packet marking",
author = "Hyok An and Heejo Lee and Adrian Perrig",
year = "2013",
doi = "10.1109/LCN.2013.6761258",
language = "English",
isbn = "9781479905379",
series = "Proceedings - Conference on Local Computer Networks, LCN",
publisher = "IEEE Computer Society",
pages = "316--319",
booktitle = "Proceedings of the 38th Annual IEEE Conference on Local Computer Networks, LCN 2013",
note = "38th Annual IEEE Conference on Local Computer Networks, LCN 2013 ; Conference date: 21-10-2013 Through 24-10-2013",
}