Title :
On the (in)Effectiveness of Probabilistic Marking for IP Traceback Under DDoS Attacks
Author :
Paruchuri, Vamsi ; Durresi, Arjan ; Jain, Raj
Author_Institution :
Univ. of Central Arkansas, Conway
Abstract :
Distributed denial-of-service attacks (DDoS) pose an immense threat to the Internet. The most studied solution is to let routers probabilistically mark packets with partial path information during packet forwarding, which is referred as Probabilistic Packet Marking (PPM). In this paper, we study the effect of simple attacker strategies to spoof the markings to impede victim´s capacity to traceback. We show that random marking is sufficient to impede the victim from tracing the attackers. A simple enhancement based on IP path length distribution makes it harder for the victim. We hope that this analysis would help researchers to adapt the current PPM techniques accordingly to thwart the DDoS attacks.
Keywords :
IP networks; Internet; probability; telecommunication security; DDoS attack; IP traceback; Internet; distributed denial-of-service; network security; packet forwarding; probabilistic packet marking; Computer crime; Computer networks; Computer science; Distributed computing; Impedance; Information science; Internet; Network topology; Performance analysis; Security;
Conference_Titel :
Global Telecommunications Conference, 2007. GLOBECOM '07. IEEE
Conference_Location :
Washington, DC
Print_ISBN :
978-1-4244-1042-2
Electronic_ISBN :
978-1-4244-1043-9
DOI :
10.1109/GLOCOM.2007.377
