Title :
IP traceback system for network and application layer attacks
Author :
Vijayalakshmi, M. ; Shalinie, S. Mercy ; Pragash, A. Arun
Author_Institution :
Dept. of Comput. Sci. & Eng., Thiagarajar Coll. of Eng., Madurai, India
Abstract :
Distributed Denial of Service attacks pose an ever great challenge to the Internet with an increasing resources and techniques available to the attackers. From SYN flooding to spoofing it has finally arrived at application layer attacks with legitimate IP addresses. Our traceback system detects the network layer attacks carried out with spoofed IP addresses, application layer attacks carried with legitimate IP addresses and traceback the real source of the attack. In contrast to the earlier works, the proposed system detects the attack, traceback the attack source and also enhances the availability of the server by proactive traffic shaping and reactive filtering mechanism. The work is deployed in the NTRO sponsored Smart and Secure Environment Test Bed and programmable routers in real time and the efficacy of the system is evaluated. Our system not only detects and traceback the attacker but also reduces the magnitude of the attack traffic and improves the probability of survival of legitimate flow.
Keywords :
Internet; computer network security; probability; protocols; telecommunication network routing; IP address; IP traceback system; Internet protocols; SYN flooding; application layer attack; attack traffic; distributed denial-of-service attack; legitimate flow survival probability; network layer attack; proactive traffic shaping; programmable router; reactive filtering mechanism; Computer crime; Entropy; Feature extraction; Filtering; Histograms; IP networks; Payloads; DDoS Detection; DDoS attack; Filtering; IP Trace back Packet Marking; Proactive Traffic Shaping;
Conference_Titel :
Recent Trends In Information Technology (ICRTIT), 2012 International Conference on
Conference_Location :
Chennai, Tamil Nadu
Print_ISBN :
978-1-4673-1599-9
DOI :
10.1109/ICRTIT.2012.6206778
