Controlling high bandwidth aggregates in the network
ACM SIGCOMM Computer Communication Review
Tracing Network Attacks to Their Sources
IEEE Internet Computing
Origin authentication in interdomain routing
Proceedings of the 10th ACM conference on Computer and communications security
Characterization of network-wide anomalies in traffic flows
Proceedings of the 4th ACM SIGCOMM conference on Internet measurement
IEEE Communications Magazine
Hi-index | 0.01 |
In this paper, we propose a cooperative management method to increase the service survivability in a large-scale networked information system. We assume that the system is composed of multiple domains and there exists a domain manager in each domain, which is responsible to monitor network traffics and control resource usage in the domain. Inter-domain cooperation against distributed denial of service (DDoS) attacks is achieved through the exchange of pushback and feedback messages. The management method is designed not only to prevent network resources from being exhausted by the attacks but also to increase the possibility that legitimate users can fairly access the target services. Though the experiment on a test-bed, the proposed method was verified to be able to maintain high survivability in a cost-effect manner even when DDoS attacks exist.