Title :
Cooperative Scenario based Centralized Defense Mechanisms for Low-Rate TCP Attacks
Author :
Won-Ho So ; Shim, Sang-Heon ; Han, Kyeong-Eun ; Yoo, Kyoung-Min ; Lee, Soon-Seok ; Kim, Young-Sun ; Kim, Young-Chon
Author_Institution :
Dept. of Comput. Educ., Sunchon Nat. Univ., Suncheon
Abstract :
The low-rate TCP attack has been reported recently. That is essentially a periodic short burst which exploits the homogeneity of the minimum retransmission timeout (RTO) of TCP flows. It is difficult to identify this sort of attack in BcN (broadband convergence network) due to no cooperative defense mechanisms among different networks. In this paper, NCP (network control platform) based centralized defense mechanisms are proposed. Firstly, low-rate TCP attack and the previous defense mechanisms are reviewed. It helps us to find and select reasonable features of them for supporting the proposed mechanism. Secondly, we propose a cooperative defending scenario between NCP as centralized controller and MDRs (monitoring and defending routers). Without adopting defense mechanism to all routers in network, it is possible to effectively protect network resource from low-rate TCP. That is because the attack flows can be filtered at both victim-side and attack side MDRs with cooperative scenario. The performance id evaluated by using ns-2 simulator
Keywords :
routing protocols; telecommunication security; transport protocols; MDR; NCP; RTO; cooperative defending scenario; low-rate TCP attacks; minimum retransmission timeout; monitoring-defending routers; network control platform; ns-2 simulator; Centralized control; Computer architecture; Computer crime; Computer science education; Degradation; Floods; IP networks; TCPIP; Throughput; Web and internet services; BcN; DoS; Low-rate TCP; Network Security;
Conference_Titel :
Communications, 2006. APCC '06. Asia-Pacific Conference on
Conference_Location :
Busan
Print_ISBN :
1-4244-0574-2
Electronic_ISBN :
1-4244-0574-2
DOI :
10.1109/APCC.2006.255813
