IP source address spoofing exploits a fundamental weakness in the Internet Protocol. It is exploited in many types of network-based attacks such as session hijacking and Denial of Service (DoS). Ingress and egress filtering is aimed at preventing IP spoofing. Techniques such as History based filtering are being used during DoS attacks to filter out attack packets. Packet marking techniques are being used to trace IP packets to a point that is close as possible to their actual source. Present IP spoofing countermeasures are hindered by compatibility issues between IPv4 and IPv6, implementation issues and their effectiveness under different types of attacks. We propose a topology based packet marking method that builds on the flexibility of packet marking as an IP trace back method while overcoming most of the shortcomings of present packet marking techniques.
History
Pagination
224-228
Location
Melbourne, Australia
Open access
Yes
Start date
2006-12-04
End date
2006-12-06
ISBN-13
9780977586103
ISBN-10
0977586103
Language
eng
Publication classification
E1 Full written paper - refereed
Copyright notice
2006, The Author
Editor/Contributor(s)
Tucker R
Title of proceedings
Proceedings of the (ATNAC) Australian Telecommunication Networks and Applications Conference
Event
Australian Telecommunication Networks & Applications Conference (2006 : University of Melbourne)