Single packet IP traceback in AS-level partial deployment scenario

Authors:
Turgay Korkmaz;Chao Gong;Kamil Sarac;Sandra G. Dykes
Affiliations:
Department of Computer Science, The University of Texas at San Antonio, 6900 North Loop 1604 West, San Antonio, TX 78249, USA.;Department of Computer Science, The University of Texas at Dallas, 2601 N Floyd Road, Richardson, TX 75080, USA.;Department of Computer Science, The University of Texas at Dallas, 2601 N Floyd Road, Richardson, TX 75080, USA.;Communications and Embedded Systems Department, Southwest Research Institute, 6220 Culebra Road, San Antonio, TX 78238, USA
Venue:
International Journal of Security and Networks
Year:
2007

Citing 9
Cited 10

Summary cache: a scalable wide-area web cache sharing protocol

IEEE/ACM Transactions on Networking (TON)
Space/time trade-offs in hash coding with allowable errors

Communications of the ACM
Single-packet IP traceback

IEEE/ACM Transactions on Networking (TON)
Denial-of-Service Attacks Rip the Internet

Computer
Hop-count filtering: an effective defense against spoofed DDoS traffic

Proceedings of the 10th ACM conference on Computer and communications security
Applied Combinatorics

Applied Combinatorics
Inferring internet denial-of-service activity

SSYM'01 Proceedings of the 10th conference on USENIX Security Symposium - Volume 10
On IP traceback

IEEE Communications Magazine
Tracing cyber attacks from the practical perspective

IEEE Communications Magazine

A measurement study on overhead distribution of value-added internet services

Computer Networks: The International Journal of Computer and Telecommunications Networking
Evaluating the partial deployment of an AS-level IP traceback system

Proceedings of the 2008 ACM symposium on Applied computing
An AS-level IP traceback system

CoNEXT '07 Proceedings of the 2007 ACM CoNEXT conference
Outfitting an inter-AS topology to a network emulation testbed for realistic performance tests of DDoS countermeasures

CSET'08 Proceedings of the conference on Cyber security experimentation and test
An AS-level overlay network for IP traceback

IEEE Network: The Magazine of Global Internetworking - Special issue title on recent developments in network intrusion detection
Wireless telemedicine and m-health: technologies, applications and research issues

International Journal of Sensor Networks
Intra-domain IP traceback using OSPF

Computer Communications
The effect of leaders on the consistency of group behaviour

International Journal of Sensor Networks
A survey of cyber crimes

Security and Communication Networks
IP traceback with sparsely-tagged fragment marking scheme under massively multiple attack paths

Cluster Computing

Quantified Score

Hi-index	0.00

Visualization

Abstract

Denial-of-Service (DoS) attacks commonly use IP spoofing to hide the identity and the location of the attack origin. To defend against various DoS attacks and make the attacker accountable, it is necessary to trace IP packets regardless of their source addresses. In this direction, log-based IP traceback is a promising and powerful approach due to its ability to traceback even a single packet. However, the global deployment of log-based IP traceback at all the routers in the internet requires a significant amount of modifications in the routers and introduces a serious operation and management overhead. To facilitate global deployment, we consider the Autonomous Systems (AS) level deployment of log-based IP traceback and accordingly propose a new mechanism called AS-level Single Packet Traceback (AS-SPT). We then evaluate the performance and overhead of the proposed AS-SPT under various partial deployment scenarios.