Network support for IP traceback
IEEE/ACM Transactions on Networking (TON)
An intelligent approach of packet marking at edge router for IP traceback
KES'05 Proceedings of the 9th international conference on Knowledge-Based Intelligent Information and Engineering Systems - Volume Part III
Tracing cyber attacks from the practical perspective
IEEE Communications Magazine
IEEE Transactions on Parallel and Distributed Systems
| Hi-index | 0.00 |
The rising threat of cyber attacks, especially distributed denial-of-service (DDos), makes the IP traceback problem very relevant to today's Internet security. In this paper, a novel deterministic packet marking scheme called PN-DPM for IP traceback is presented. Through a unique technique: path numbering, our scheme provides ISPs a feasible solution to make IP traceback as a value-added network service, which allows the victim not only to detect and filter spoofed DDOS attacks immediately, but also to obtain more accurate information about the source of the attacks from the corresponding ISPs by the authenticated marks, even after the attacks has been completed. Our techniques feature low network and router overhead, low computational load for victim, and support incremental deployment. In contrast to previous work, our technique has significantly higher feasibility by considering much more aspects of IP traceback technology from practical perspective.