Probabilistic packet filtering model to protect web server from DDoS attacks

Authors:
Jung-Taek Seo;Cheol-Ho Lee;Jungtae Kim;Taeshik Shon;Jongsub Moon
Affiliations:
National Security Research Institute, Daejeon, Republic of Korea;National Security Research Institute, Daejeon, Republic of Korea;Graduate School of Information and Communication, Ajou University, Republic of Korea;CIST, KOREA University, Seoul, Republic of Korea;CIST, KOREA University, Seoul, Republic of Korea
Venue:
NPC'05 Proceedings of the 2005 IFIP international conference on Network and Parallel Computing
Year:
2005

Citing 4
Cited 0

Random early detection gateways for congestion avoidance

IEEE/ACM Transactions on Networking (TON)
Protecting web servers from distributed denial of service attacks

Proceedings of the 10th international conference on World Wide Web
Denial-of-Service Attacks Rip the Internet

Computer
MULTOPS: a data-structure for bandwidth attack detection

SSYM'01 Proceedings of the 10th conference on USENIX Security Symposium - Volume 10

Quantified Score

Hi-index	0.00

Visualization

Abstract

We present a probabilistic packet filtering (PPF) mechanism to defend the Web server against Distributed Denial-of-Service (DDoS) attacks. To distinguish abnormal traffics from normal ones, we use Traffic Rate Analysis (TRA). If the TRA mechanism detects DDoS attacks, the proposed model probabilistically filters the packets related to the attacks. The simulation results demonstrate that it is useful to early detect DDoS attacks and effective to protect the Web servers from DDoS attacks.