• DocumentCode
    1828610
  • Title

    Intentional dropping: a novel scheme for SYN flooding mitigation

  • Author

    Al-Duwairi, B. ; Manimaran, G.

  • Author_Institution
    Dept. of Electr. & Comput. Eng., Iowa State Univ., Iowa City, IA, USA
  • Volume
    4
  • fYear
    2005
  • fDate
    13-17 March 2005
  • Firstpage
    2820
  • Abstract
    This paper presents a novel scheme to mitigate the effect of SYN flooding attacks. The scheme, called intentional dropping based filtering, is based on the observation of client´s persistence (i.e., client´s reaction to packet loss by subsequent retransmissions) which is very widespread as it is built in TCP´s connection setup. The main idea is to intentionally drop the first SYN packet of each connection request. Subsequent SYN packet from a request is passed only if it adheres to the TCP´s timeout mechanism. Our analysis shows that the proposed scheme reduces attacker´s effective attack rate significantly with an acceptable increase in connection establishment latency.
  • Keywords
    Internet; routing protocols; telecommunication congestion control; telecommunication security; transport protocols; SYN flooding attack; TCP connection; intentional dropping based filtering; transmission control protocol; Access protocols; Bandwidth; Computer crime; Computer networks; Delay; Filtering; Floods; TCPIP; Traffic control; Web and internet services;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    INFOCOM 2005. 24th Annual Joint Conference of the IEEE Computer and Communications Societies. Proceedings IEEE
  • ISSN
    0743-166X
  • Print_ISBN
    0-7803-8968-9
  • Type

    conf

  • DOI
    10.1109/INFCOM.2005.1498569
  • Filename
    1498569