On design and evaluation of "intention-driven" ICMP traceback

نویسندگان

  • Allison Mankin
  • Daniel Massey
  • Chien-Lung Wu
  • Shyhtsun Felix Wu
  • Lixia Zhang
چکیده

ION Since late 1999, DDoS (Distributed Denial of Service) [1,2,3] attack has drawn many attentions from both research and industry communities. Many potential solutions (e.g., ingress filtering [6,7], packet marking [5,8,9,10,11] or tracing [4], and aggregate-based congestion control or rate limiting) have been proposed to handle this network bandwidth consumption attack. Among them, “ICMP traceback (iTrace)” is currently being considered as an industry standard by IETF (Internet Engineering Task Force). While the idea of iTrace is very clever, efficient, reasonably secure and practical, it suffers a serious statistic problem such that the chance for “useful” and “valuable” iTrace messages can be extremely small against various types of DDoS attacks. This implies that most of the network resources spent on generating and utilizing iTrace messages will be wasted. Therefore, we propose a simple enhancement called “Intention-Driven” iTrace, which conceptually introduces an extra bit in the routing and forwarding process. With the new “intention-bit”, it is shown that, through our simulation study, the performance of iTrace improves dramatically. This work has been proposed to IETF’s ICMP Trace-Back working group.

برای دانلود رایگان متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

منابع مشابه

Single Packet ICMP Traceback Technique using Router Interface

In the modern technological world, with the increasing dependency on Internet the security threats are on the rise. Distributed Denial of Service (DDoS) attack is one of the biggest threats. The attackers tend to exhaust the network resources, while ingeniously hiding their identity, making the defense process extremely difficult. Many researchers have proposed various solutions to traceback th...

متن کامل

ICMP Traceback with Cumulative Path, an Efficient Solution for IP Traceback

DoS/DDoS attacks constitute one of the major classes of security threats in the Internet today. The attackers usually use IP spoofing to conceal their real location. The current Internet protocols and infrastructure do not provide intrinsic support to traceback the real attack sources. The objective of IP Traceback is to determine the real attack sources, as well as the full path taken by the a...

متن کامل

MIB-ITrace-CP: An Improvement of ICMP-Based Traceback Efficiency in Network Forensic Analysis

A denial-of-service (DoS) / distributed-denial-of-service (DDoS) attack may result in rapid resource depletion along the attack path. For stepping-stone and masquerading techniques typically used in DoS/DDoS attacks such as internet protocol (IP) or Media Access Control (MAC) address spoofing, tracing the intrusion back to the true attacker becomes a challenging task for network security engine...

متن کامل

Design, Implementation and Evaluation of Azmer Online Quiz Application Based on Technology Acceptance Model (TAM): A pilot study

Introduction: Acceptance and intention to use the mobile device in the  student evaluation is an interesting topic in education. Although there are significant studies of mobile learning acceptance and mobile-based assessment (MBA), there is little research on app design and driving factors that influence students' intention to use mobile technology for assessment purposes. The purpose of this ...

متن کامل

Analysis of traceback techniques

Today’s Internet is extremely vulnerable to Distributed Denial of service (DDoS) attacks. There is tremendous pressure on the sites performing online business and ISP’s to protect their networks from DDoS attacks. Recently, several novel traceback techniques have been proposed to trace the approximate spoofed source of attack. Each proposed traceback technique has some unique advantages and dis...

متن کامل

ذخیره در منابع من


  با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید

عنوان ژورنال:

دوره   شماره 

صفحات  -

تاریخ انتشار 2001