Packet reordering is not pathological network behavior
IEEE/ACM Transactions on Networking (TON)
Measurement and classification of out-of-sequence packets in a tier-1 IP backbone
Proceedings of the 2nd ACM SIGCOMM Workshop on Internet measurment
A Practical Approach to Network-Based Processing
AMS '02 Proceedings of the Fourth Annual International Workshop on Active Middleware Services
NCA '03 Proceedings of the Second IEEE International Symposium on Network Computing and Applications
MULTOPS: a data-structure for bandwidth attack detection
SSYM'01 Proceedings of the 10th conference on USENIX Security Symposium - Volume 10
Introducing new Internet services: why and how
IEEE Network: The Magazine of Global Internetworking
| Hi-index | 0.00 |
We propose a scenario of a multiservice network, based on pragmatic ideas of programmable networks. Active routers are capable of processing both active and legacy packets. This scenario is vulnerable to a Denial of Service attack, which consists in inserting false legacy packets into active routers. We propose a mechanism for detecting the injection of fake legacy packets into active routers. This mechanism consists in exchanging accounting information on the traffic between neighboring active routers. The exchange of accounting information must be carried out in a secure way using secure active packets. The proposed mechanism is sensitive to the loss of packets. To deal with this problem some improvements in the mechanism has been proposed. An important issue is the procedure for discharging packets when an attack has been detected. We propose an easy and efficient mechanism that would be improved in future work.