Protecting information infrastructure from DDoS attacks by MADF

Authors:
Yang Xiang;Wanlei Zhou
Affiliations:
School of Management and Information Systems, Central Queensland University, Rockhampton, Australia.;School of Engineering and Information Technology, Deakin University, Melbourne, Australia
Venue:
International Journal of High Performance Computing and Networking
Year:
2006

Citing 20
Cited 1

Random early detection gateways for congestion avoidance

IEEE/ACM Transactions on Networking (TON)
Neural networks (2nd ed.): an introduction

Neural networks (2nd ed.): an introduction
Providing guaranteed services without per flow management

Proceedings of the conference on Applications, technologies, architectures, and protocols for computer communication
Inside Risks: denial-of-service attacks

Communications of the ACM
On the effectiveness of route-based packet filtering for distributed DoS attack prevention in power-law internets

Proceedings of the 2001 conference on Applications, technologies, architectures, and protocols for computer communications
Network support for IP traceback

IEEE/ACM Transactions on Networking (TON)
Neural Networks: A Comprehensive Foundation

Neural Networks: A Comprehensive Foundation
Controlling high bandwidth aggregates in the network

ACM SIGCOMM Computer Communication Review
Single-packet IP traceback

IEEE/ACM Transactions on Networking (TON)
Denial-of-Service Attacks Rip the Internet

Computer
A Simulation Study of the Proactive Server Roaming for Mitigating Denial of Service Attacks

ANSS '03 Proceedings of the 36th annual symposium on Simulation
Pi: A Path Identification Mechanism to Defend against DDoS Attacks

SP '03 Proceedings of the 2003 IEEE Symposium on Security and Privacy
IP Traceback: A New Denial-of-Service Deterrent?

IEEE Security and Privacy
Hop-count filtering: an effective defense against spoofed DDoS traffic

Proceedings of the 10th ACM conference on Computer and communications security
Packet Filtering for Congestion Control under DoS Attacks

IWIA '04 Proceedings of the Second IEEE International Information Assurance Workshop (IWIA'04)
Tracing Anonymous Packets to Their Approximate Source

LISA '00 Proceedings of the 14th USENIX conference on System administration
Change-Point Monitoring for the Detection of DoS Attacks

IEEE Transactions on Dependable and Secure Computing
MULTOPS: a data-structure for bandwidth attack detection

SSYM'01 Proceedings of the 10th conference on USENIX Security Symposium - Volume 10
IP traceback-based intelligent packet filtering: a novel technique for defending against Internet DDoS attacks

IEEE Transactions on Parallel and Distributed Systems
Congestion control mechanisms and the best effort service model

IEEE Network: The Magazine of Global Internetworking

Bionic Autonomic Nervous Systems for Self-Defense against DoS, Spyware, Malware, Virus, and Fishing

ACM Transactions on Autonomous and Adaptive Systems (TAAS)

Quantified Score

Hi-index	0.00

Visualization

Abstract

Distributed Denial of Service (DDoS) attacks have become one of the most serious threats to the information infrastructure. In this paper, we propose a new approach, Mark-Aided Distributed Filtering (MADF), to find the network anomalies by using a back-propagation neural network. The marks in the IP header that are generated by a group of IP traceback schemes called Deterministic Packet Marking (DPM)/Flexible Deterministic Packet Marking (FDPM) assist this process of identifying and filtering attack packets. MADF can detect and filter DDoS attack packets with high sensitivity and accuracy, thus providing high legitimate traffic throughput and low attack traffic throughput.