Adjusted Probabilistic Packet Marking for
نویسندگان
چکیده
Distributed denial-of-service attack is one of the greatest threats to the Internet today. One of the biggest diiculties in defending against this attack is that attackers always use incorrect, or \spoofed" IP source addresses to disguise their true origin. In this paper, we present a packet marking algorithm which allows the victim to traceback the approximate origin of spoofed IP packets. The diierence between this proposal and previous proposals lies in two points. First, we develop three techniques to adjust the packet marking probability, which signii-cantly reduces the number of packets needed by the victim to reconstruct the attack path. Second, we give a detailed analysis of the vulnerabilities of probabilistic packet marking, and describe a version of our adjusted probabilistic packet marking scheme whose performance is not aaected by spoofed marking elds.
منابع مشابه
An Accurate Termination Condition of the Probabilistic Packet Marking Algorithm
Denial-of-service (DoS) attacks pose an increasing threat to today’s Internet. One major difficulty to defend against Distributed Denial-of-service attack is that attackers often use fake, or spoofed IP addresses as the IP source address. Probabilistic packet marking algorithm (PPM), allows the victim to trace back the appropriate origin of spoofed IP source address to disguise the true origin....
متن کاملDenial of Service Attacks: Path Reconstruction for Ip Traceback Using Adjusted Probabilistic Packet Marking
Denial of Service Attacks: Path Reconstruction for IP Traceback Using Adjusted Probabilistic Packet Marking. (December 2004) Raghav Dube, B.E., Motilal Nehru Regional Engineering College, Allahabad, India Chair of Advisory Committee: Dr. Deepa Kundur The use of Internet has revolutionized the way information is exchanged, changed business paradigms and put mission critical and sensitive systems...
متن کاملA Network Coding-Based Approach to Probabilistic Packet Marking
Traceback schemes aim at identifying the source(s) of a sequence of packets and the nodes these packets traversed. This is useful for tracing the sources of high volume traffic, e.g., in Distributed Denial-of-Service (DDoS) attacks. In this paper, we are interested in Probabilistic Packet Marking (PPM) schemes, in which intermediate nodes probabilistically mark packets with information about th...
متن کاملAn Efficient Ip Traceback through Packet Marking Algorithm
Denial-of-service (DoS) attacks pose an increasing threat to today’s Internet. One major difficulty to defend against Distributed Denial-of-service attack is that attackers often use fake, or spoofed IP addresses as the IP source address. Probabilistic packet marking algorithm (PPM), allows the victim to trace back the appropriate origin of spoofed IP source address to disguise the true origin....
متن کاملAn adaptive probabilistic marking scheme for fast and secure traceback
IP traceback can be used to find direct generator(s) and path(s) of attacking traffic. Probabilistic marking schemes, as one type of IP traceback technologies, have been most studied, but they are difficult to fast reconstruct attacking path(s) and defend against spoofed marks generated by attacking source(s). In this paper, we present Adaptive Probabilistic Marking scheme (APM). In APM, when e...
متن کامل