A rule based DDoS detection and mitigation technique

Distributed Denial of Service (DDoS) is a type of attack in which the attacker tries to degrade the performance of server (or) network so that the server may not provide service to legitimate users. Since there is a huge increase in DDoS attacks which has created many financial losses in the E-Commerce world. To avoid the losses incurred because of DDoS attacks, efficient mechanisms are required to counter these attacks. In the proposed approach routers collectively try to mitigate the DDoS attack on the server. There are three steps in the proposed approach, initially, for attack detection and classification destination router (which is attached to the victim) monitors continuously the traffic pattern. Second, once the attack is detected destination router tries to balance the load using the NAT (Network Address Translator). Third, whenever the attack is detected to mitigate different types of attacks, the signature is pushback to upstream routers so that the upstream routers start monitoring the traffic and apply the mitigation mechanism depending on type of attack detected.