Title :
Survey of Low rate Denial of Service (LDoS) attack on RED and its counter strategies
Author :
Mohan, L. ; Bijesh, M.G. ; John, Jessin K.
Author_Institution :
Dept. of Comput. Sci., Fed. Inst. of Sci. & Technol., Kochi, India
Abstract :
RED Active Queue Management is designed to avoid congestion by controlling the average queue size. Also it avoids TCP global synchronization and provides a bias against burst traffic. But studies show that RED is vulnerable to Shrew attacks. Shrew attack is a Low rate Denial of Service (LDoS) attack, if properly executed could exploit TCP´s re-transmission time-out mechanism (RTO) and ultimately reduce its throughput to zero. LDoS attack is very difficult to identify because the average rate of packet sending will be very low. This is achieved by sending large amount of packets for a very short duration and repeating this process in regular intervals. This article analyzes the effect of LDoS attack on TCP as well as RED and compares the existing prevention methods. It also proposes an RED based method to detect and prevent LDoS attacks.
Keywords :
queueing theory; telecommunication congestion control; telecommunication network management; telecommunication traffic; transport protocols; LDoS; RED; RTO; Shrew attack; TCP global synchronization; active queue management; average packet sending rate; congestion avoidance; low rate denial of service attack; retransmission time-out mechanism; Low Rate Denial of Service Attack; Random Early Detection Queue; Retransmission timeout; TCP;
Conference_Titel :
Computational Intelligence & Computing Research (ICCIC), 2012 IEEE International Conference on
Conference_Location :
Coimbatore
Print_ISBN :
978-1-4673-1342-1
DOI :
10.1109/ICCIC.2012.6510186
