Title :
An IP traceback mechanism for reflective DoS attacks
Author :
Wang, Bao-Tung ; Schulzrinne, Henning
Author_Institution :
Dept. of Comput. Sci., Columbia Univ., New York, NY, USA
Abstract :
We present a new ICMP message and an automatic process capable of tracing reflective DoS attacks back to attack agents. The newly designed ICMP message carries the packet routing history and is signed by each forwarding router. After receiving the loaded ICMP messages, attack targets can identify the border routers of reflectors in the first flooding path and then use an ICMP message to inform accountable border routers to continue the traceback process to find the attack agents. In this paper, we propose an automatic, efficient, and secure traceback process across domains and discuss some limitations of the protocol.
Keywords :
Internet; computer crime; routing protocols; telecommunication security; ICMP message; IP traceback mechanism; automatic process; border router identification; flooding path; forwarding router signature; packet routing history; protocol; reflective DoS attacks; Computer crime; Computer science; Computerized monitoring; Condition monitoring; Distributed computing; Filtering; Floods; History; Protocols; Routing;
Conference_Titel :
Electrical and Computer Engineering, 2004. Canadian Conference on
Print_ISBN :
0-7803-8253-6
DOI :
10.1109/CCECE.2004.1345260
