Paper Info
Title
Efficient and beneficial defense against DDoS direct attack and reflector attack
Abstract
Distributed Denial-of-Service (DDoS) attacks misuse network resource and bring serious threats to the internet. Detecting DDoS at the source-end has many advantages over defense at the victim-end and intermediate-network. However, one of the main problems for source-end methods is the performance degradation brought by these methods and no direct benefit for Internet Service Provider(ISP), which discourages ISPs to deploy the defense system. We propose an efficient detection approach, which only requires limited fixed-length memory and low computation overhead but provides satisfying detection results. Our method is also beneficial because the method can not only detect direct DDoS attack for other ISPs, but also protect the ISP itself from reflector DDoS attack. The efficient and beneficial defense is practical and expected to attract more ISPs to join the cooperation. The experiments results show our approach is efficient and feasible for defense at the source-end.
Year
DOI
Venue
2005
10.1007/11576235_59
ISPA
Keywords
Field
DocType
reflector attack,defense system,beneficial defense,detecting ddos,internet service provider,detection result,efficient detection approach,direct benefit,reflector ddos attack,direct ddos attack,ddos direct attack,source-end method,distributed denial of service,satisfiability,ddos attack
Denial-of-service attack,Computer security,Computer science,Trinoo,Computer network,Internet service provider,Transmission Control Protocol,Web service,Application layer DDoS attack,Hash table,The Internet
Conference
Volume
ISSN
ISBN
3758
0302-9743
3-540-29769-3
Citations 
PageRank 
References 
2
0.51
18
Authors
4
Name
Order
Citations
PageRank
Yanxiang He156868.23
Wei Chen28612.45
Wenling Peng3121.94
Min Yang413817.35