Deakin home > Deakin University Library > Deakin Research Online > Source-based filtering scheme against DDOS attacks

Source-based filtering scheme against DDOS attacks

Yi, Fasheng, Yu, Shui, Zhou, Wanlei, Hai, Jing and Bonti, Alessio 2008, Source-based filtering scheme against DDOS attacks, International journal of database theory and application, vol. 1, no. 1, pp. 9-20.

Attached Files (Some files may be inaccessible until you login with your Deakin Research Online credentials)
Name Description MIMEType Size Downloads

Title Source-based filtering scheme against DDOS attacks
Author(s) Yi, Fasheng
Yu, Shui
Zhou, Wanlei
Hai, Jing
Bonti, Alessio
Journal name International journal of database theory and application
Volume number 1
Issue number 1
Start page 9
End page 20
Publisher Science & Engineering Research Support Centre, (SERSC)
Place of publication Korea
Publication date 2008
ISSN 2005-4270
Keyword(s) Network Security
DDoS
Packet Filtering
Summary IP address spoofing is employed by a lot of DDoS attack tools. Most of the current research on DDoS attack packet filtering depends on cooperation among routers, which is hard to achieve in real campaigns. Therefore, in the paper, we propose a novel filtering scheme based on source information in this paper to defend against various source IP address spoofing. The proposed method works independently at the potential victim side, and accumulates the source information of its clients, for instance, source IP addresses, hops from the server during attacks free period. When a DDoS attack alarm is raised, we can filter out the attack packets based on the accumulated knowledge of the legitimate clients. We divide the source IP addresses into n(1 ≤ n ≤ 32) segments in our proposed algorithm; as a result, we can therefore release the challenge storage and speed up the procedure of information retrieval. The system which is proposed by us and the experiments indicated that the proposed method works effectively and efficiently.
Language eng
Field of Research 100503 Computer Communications Networks
HERDC Research category C1 Refereed article in a scholarly journal
Persistent URL http://hdl.handle.net/10536/DRO/DU:30017709

Document type: Journal Article
Collection: School of Engineering and Information Technology
Connect to link resolver
 
Unless expressly stated otherwise, the copyright for items in Deakin Research Online is owned by the author, with all rights reserved.

Versions
Version Filter Type
Access Statistics: 399 Abstract Views, 0 File Downloads  -  Detailed Statistics
Created: Fri, 14 Aug 2009, 13:56:19 EST