Tracemax: A Novel Single Packet IP Traceback Strategy for Data-Flow Analysis

被引:0
作者
Hillmann, Peter [1 ]
Tietze, Frank [1 ]
Rodosek, Gabi Dreo [1 ]
机构
[1] Univ Bundeswehr Munchen, D-85577 Neubiberg, Germany
来源
40TH ANNUAL IEEE CONFERENCE ON LOCAL COMPUTER NETWORKS (LCN 2015) | 2015年
关键词
Computer network management; IP networks; IP packet; Traceback; Packet trace; Denial of Service;
D O I
暂无
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
The identification of the exact path that packets are routed on in the network is quite a challenge. This paper presents a novel, efficient traceback strategy named Tracemax in context of a defense system against distributed denial of service (DDoS) attacks. A single packet can be directly traced over many more hops than the current existing techniques allow. In combination with a defense system it differentiates between multiple connections. It aims to letting non-malicious connections pass while bad ones get thwarted. The novel concept allows detailed analyses of the traffic and the transmission path through the network. The strategy can effectively reduce the effect of common bandwidth and resource consumption attacks, foster early warning and prevention as well as higher the availability of the network services for the wanted customers.
引用
收藏
页码:177 / 180
页数:4
相关论文
共 14 条
[1]  
Belenky A., 2003, P IEEE COMM LETT
[2]  
BURCH H, 2000, P 14 SYST ADM C LISA
[3]  
Chinnery D., 2010, NETWORK HUB ARCHITEC
[4]  
Cisco FAQ, 2014, WHAT IS SOURC ROUT
[5]  
Gong C., 2008, P IEEE T PAR DISTR S
[6]  
IANA, 2013, IP OPT NUMB
[7]  
Izaddoost A., 2007, P ADV COMP COMM ADCO
[8]  
Khan Z., 2010, P IEEE INT TECHN SEC
[9]  
Olson P., 2010, DDOS ATTACKS VISA MA
[10]  
Olson P., 2014, The Largest Cyber Attack in History has been Hitting Hong Kong Sites
12