Alwis, Harendra A., Doss, Robin C., Hewage, Praveen S. and Chowdhury, Morshed U. 2006, Topology based packet marking for IP traceback, in Proceedings of the (ATNAC) Australian Telecommunication Networks and Applications Conference, University of Melbourne, Melbourne, Vic., pp. 224-228.
(Some files may be inaccessible until you login with your Deakin Research Online credentials)
IP source address spoofing exploits a fundamental weakness in the Internet Protocol. It is exploited in many types of network-based attacks such as session hijacking and Denial of Service (DoS). Ingress and egress filtering is aimed at preventing IP spoofing. Techniques such as History based filtering are being used during DoS attacks to filter out attack packets. Packet marking techniques are being used to trace IP packets to a point that is close as possible to their actual source. Present IP spoofing countermeasures are hindered by compatibility issues between IPv4 and IPv6, implementation issues and their effectiveness under different types of attacks. We propose a topology based packet marking method that builds on the flexibility of packet marking as an IP trace back method while overcoming most of the shortcomings of present packet marking techniques.