Please use this identifier to cite or link to this item: http://hdl.handle.net/10397/24545
Title: An autonomous defense against SYN flooding attacks : detect and throttle attacks at the victim side independently
Authors: Xiao, B 
Chen, W
He, Y
Keywords: DDoS attacks
SYN flooding
TTL
Early detection
Rate-limit counteraction
Issue Date: 2008
Source: Journal of parallel and distributed computing, 2008, v. 68, no. 4, p. 456-470 How to cite?
Journal: Journal of parallel and distributed computing 
Abstract: Distributed denial of service (DDoS) attacks seriously threaten Internet services yet there is currently no defence against such attacks that provides both early detection, allowing time for counteraction, and an accurate response. Traditional detection methods rely on passively sniffing an attacking signature and are inaccurate in the early stages of an attack. Current counteractions such as traffic filter or rate-limit methods do not accurately distinguish between legitimate and illegitimate traffic and are difficult to deploy. This work seeks to provide a method that detects SYN flooding attacks in a timely fashion and that responds accurately and independently on the victim side. We use the knowledge of network traffic delay distribution and apply an active probing technique (DARB) to identify half-open connections that, suspiciously, may not arise from normal network congestion. This method is suitable for large network areas and is capable of handling bursts of traffic flowing into a victim server. Accurate filtering is ensured by a counteraction method using IP address and time-to-live(TTL) fields. Simulation results show that our active detection method can detect SYN flooding attacks accurately and promptly and that the proposed rate-limit counteraction scheme can efficiently minimize the damage caused by DDoS attacks and guarantee constant services to legitimate users.
URI: http://hdl.handle.net/10397/24545
ISSN: 0743-7315
DOI: 10.1016/j.jpdc.2007.06.013
Appears in Collections:Journal/Magazine Article

Access
View full-text via PolyU eLinks SFX Query
Show full item record

SCOPUSTM   
Citations

15
Last Week
0
Last month
0
Citations as of Feb 25, 2017

WEB OF SCIENCETM
Citations

6
Last Week
0
Last month
0
Citations as of Jun 26, 2017

Page view(s)

36
Last Week
0
Last month
Checked on Jun 25, 2017

Google ScholarTM

Check

Altmetric



Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.