Title :
Secure Transport Protocols for DDoS Attack Resistant Communication
Author :
Ghavidel, A.Z. ; Issac, B.
Author_Institution :
Swinburne Univ. of Technol., Kuching
Abstract :
A technical solution has been proposed in this paper to secure transport protocol communication in the case of DDoS (distributed denial of service) attacks. The recent papers about DDoS attacks, especially the amplification attack looks for abnormal transaction that signals and eventually reports them. These methods may generate false positives or negatives and in turn can be quite dismal in its performance, in the wake of a real DDoS attack. This paper suggests a symmetric key exchange and hiding of a secret code in the UDP (user datagram protocol) packets. Any packet that has the secret code missing would be rejected. At first, the secure UDP protocol will be discussed and later, a similar method for the TCP (transmission control protocol) will be discussed. Finally the performance analysis is done to compare the overhead incurred.
Keywords :
security of data; telecommunication security; transport protocols; DDoS attack resistant communication; TCP; distributed denial of service attack; performance analysis; secret code hiding; secure UDP protocol; secure transport protocol communication; symmetric key exchange; transmission control protocol; user datagram protocol packet; Bandwidth; Computer crime; Data security; Floods; Network servers; Performance analysis; Research and development; Steganography; Student members; Transport protocols; SYN flooding; UDP attacks; network security attacks; packet analysis; steganography;
Conference_Titel :
Research and Development, 2007. SCOReD 2007. 5th Student Conference on
Conference_Location :
Selangor, Malaysia
Print_ISBN :
978-1-4244-1469-7
Electronic_ISBN :
978-1-4244-1470-3
DOI :
10.1109/SCORED.2007.4451371
