Survey of Low rate Denial of Service (LDoS) attack on RED and its counter strategies

Author

Mohan, L. ; Bijesh, M.G. ; John, Jessin K.

Author_Institution

Dept. of Comput. Sci., Fed. Inst. of Sci. & Technol., Kochi, India

fYear

2012

fDate

18-20 Dec. 2012

Firstpage

1

Lastpage

7

Abstract

RED Active Queue Management is designed to avoid congestion by controlling the average queue size. Also it avoids TCP global synchronization and provides a bias against burst traffic. But studies show that RED is vulnerable to Shrew attacks. Shrew attack is a Low rate Denial of Service (LDoS) attack, if properly executed could exploit TCP´s re-transmission time-out mechanism (RTO) and ultimately reduce its throughput to zero. LDoS attack is very difficult to identify because the average rate of packet sending will be very low. This is achieved by sending large amount of packets for a very short duration and repeating this process in regular intervals. This article analyzes the effect of LDoS attack on TCP as well as RED and compares the existing prevention methods. It also proposes an RED based method to detect and prevent LDoS attacks.

Keywords

queueing theory; telecommunication congestion control; telecommunication network management; telecommunication traffic; transport protocols; LDoS; RED; RTO; Shrew attack; TCP global synchronization; active queue management; average packet sending rate; congestion avoidance; low rate denial of service attack; retransmission time-out mechanism; Low Rate Denial of Service Attack; Random Early Detection Queue; Retransmission timeout; TCP;

fLanguage

English

Publisher

ieee

Conference_Titel

Computational Intelligence & Computing Research (ICCIC), 2012 IEEE International Conference on

Conference_Location

Coimbatore

Print_ISBN

978-1-4673-1342-1

Type

conf

DOI

10.1109/ICCIC.2012.6510186

Filename

6510186