NS-2 based IP traceback simulation against reflector based DDoS attack

Hyung Woo Lee; Taekyoung Kwon; Hyung Jong Kim

doi:10.1007/978-3-540-30583-5_10

NS-2 based IP traceback simulation against reflector based DDoS attack

Hyung Woo Lee, Taekyoung Kwon, Hyung Jong Kim

Graduate School of Information

Research output: Contribution to journal › Conference article › peer-review

5 Citations (Scopus)

Abstract

Reflector attack belongs to one of the most serious types of Distributed Denial-of-Service (DDoS) attacks, which can hardly be traced by traceback techniques, since the marked information written by any routers between the attacker and the reflectors will be lost in the replied packets from the reflectors. In response to such attacks, advanced IP traceback technology must be suggested. This study proposed a NS-2 based traceback system for simulating iTrace technique that identifies DDoS traffics with multi-hop iTrace mechanism based on TTL information at reflector for malicious reflector source trace. According to the result of simulation, the proposed technique reduced network load and improved filter/traceback performance on distributed reflector attacks¹.

Original language	English
Pages (from-to)	90-99
Number of pages	10
Journal	Lecture Notes in Artificial Intelligence (Subseries of Lecture Notes in Computer Science)
Volume	3397
DOIs	https://doi.org/10.1007/978-3-540-30583-5_10
Publication status	Published - 2005
Event	13th International Conference on AIS 2004 - Jeju Island, Korea, Republic of Duration: 2004 Oct 4 → 2004 Oct 6

All Science Journal Classification (ASJC) codes

Theoretical Computer Science
Computer Science(all)

Access to Document

10.1007/978-3-540-30583-5_10

Cite this

@article{dc8192b92ed14b74a2d0ba205ef2ed48,

title = "NS-2 based IP traceback simulation against reflector based DDoS attack",

abstract = "Reflector attack belongs to one of the most serious types of Distributed Denial-of-Service (DDoS) attacks, which can hardly be traced by traceback techniques, since the marked information written by any routers between the attacker and the reflectors will be lost in the replied packets from the reflectors. In response to such attacks, advanced IP traceback technology must be suggested. This study proposed a NS-2 based traceback system for simulating iTrace technique that identifies DDoS traffics with multi-hop iTrace mechanism based on TTL information at reflector for malicious reflector source trace. According to the result of simulation, the proposed technique reduced network load and improved filter/traceback performance on distributed reflector attacks1.",

author = "Lee, {Hyung Woo} and Taekyoung Kwon and Kim, {Hyung Jong}",

year = "2005",

doi = "10.1007/978-3-540-30583-5_10",

language = "English",

volume = "3397",

pages = "90--99",

journal = "Lecture Notes in Computer Science",

issn = "0302-9743",

publisher = "Springer Verlag",

note = "13th International Conference on AIS 2004 ; Conference date: 04-10-2004 Through 06-10-2004",

}

TY - JOUR

T1 - NS-2 based IP traceback simulation against reflector based DDoS attack

AU - Lee, Hyung Woo

AU - Kwon, Taekyoung

AU - Kim, Hyung Jong

PY - 2005

Y1 - 2005

N2 - Reflector attack belongs to one of the most serious types of Distributed Denial-of-Service (DDoS) attacks, which can hardly be traced by traceback techniques, since the marked information written by any routers between the attacker and the reflectors will be lost in the replied packets from the reflectors. In response to such attacks, advanced IP traceback technology must be suggested. This study proposed a NS-2 based traceback system for simulating iTrace technique that identifies DDoS traffics with multi-hop iTrace mechanism based on TTL information at reflector for malicious reflector source trace. According to the result of simulation, the proposed technique reduced network load and improved filter/traceback performance on distributed reflector attacks1.

AB - Reflector attack belongs to one of the most serious types of Distributed Denial-of-Service (DDoS) attacks, which can hardly be traced by traceback techniques, since the marked information written by any routers between the attacker and the reflectors will be lost in the replied packets from the reflectors. In response to such attacks, advanced IP traceback technology must be suggested. This study proposed a NS-2 based traceback system for simulating iTrace technique that identifies DDoS traffics with multi-hop iTrace mechanism based on TTL information at reflector for malicious reflector source trace. According to the result of simulation, the proposed technique reduced network load and improved filter/traceback performance on distributed reflector attacks1.

UR - http://www.scopus.com/inward/record.url?scp=26844526354&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=26844526354&partnerID=8YFLogxK

U2 - 10.1007/978-3-540-30583-5_10

DO - 10.1007/978-3-540-30583-5_10

M3 - Conference article

AN - SCOPUS:26844526354

SN - 0302-9743

VL - 3397

SP - 90

EP - 99

JO - Lecture Notes in Computer Science

JF - Lecture Notes in Computer Science

T2 - 13th International Conference on AIS 2004

Y2 - 4 October 2004 through 6 October 2004

ER -

NS-2 based IP traceback simulation against reflector based DDoS attack

Abstract

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this