A Puzzle-Based Defense Strategy Against Flooding Attacks Using Game Theory

被引:42
作者
Fallah, Mehran S. [1 ]
机构
[1] Amirkabir Univ Technol, Dept Comp Engn, Tehran 15914, Iran
来源
IEEE TRANSACTIONS ON DEPENDABLE AND SECURE COMPUTING | 2010年 / 7卷 / 01期
关键词
Client-puzzle approach; flooding DoS attack; game theory; reliability; availability; serviceability;
D O I
10.1109/TDSC.2008.13
中图分类号
TP3 [计算技术、计算机技术];
学科分类号
0812 ;
摘要
In recent years, a number of puzzle-based defense mechanisms have been proposed against flooding denial-of-service (DoS) attacks in networks. Nonetheless, these mechanisms have not been designed through formal approaches and thereby some important design issues such as effectiveness and optimality have remained unresolved. This paper utilizes game theory to propose a series of optimal puzzle-based strategies for handling increasingly sophisticated flooding attack scenarios. In doing so, the solution concept of Nash equilibrium is used in a prescriptive way, where the defender takes his part in the solution as an optimum defense against rational attackers. This study culminates in a strategy for handling distributed attacks from an unknown number of sources.
引用
收藏
页码:5 / 19
页数:15
相关论文
共 36 条
  • [1] Abadi M., 2003, P 10 ANN NETWORK DIS, P25
  • [2] [Anonymous], 2003, 2003 C APPL TECHNOLO, P99, DOI 10.1145/863955.863968
  • [3] [Anonymous], 2001, ACM
  • [4] [Anonymous], 2000, P 2000 ACM SIGCOMM C
  • [5] Aura T., 2000, 8 INT WORKSH SEC PRO, P170
  • [6] Bencsath B., 2003, P 11 INT C SOFTW TEL, P763
  • [7] *CARN MELL U CERT, 1998, SMURF IP DEN OF SERV
  • [8] *CARN MELL U CERT, 1999, DEN OF SERV TOOLS
  • [9] *CARN MELL U CERT, 1997, IP DEN OF SERV ATT
  • [10] *CARN MELL U CERT, 1996, DEN OF SERV ATT VIA
1234