• DocumentCode
    3306286
  • Title

    Deterministic link signature based IP traceback algorithm under IPv6

  • Author

    Shi, Yi ; Qi, Yong ; Yang, BinXia

  • Author_Institution
    Dept. of Comput. Sci. & Technol., Xi´´an Jiaotong Univ., Xi´´an
  • Volume
    2
  • fYear
    2008
  • fDate
    17-20 Feb. 2008
  • Firstpage
    1010
  • Lastpage
    1014
  • Abstract
    The IPv6 security architecture, IPSec, plays a positive role in the protection of IPv6 networks. To some special attacks, especially DDoS attacks, IPSec appears relatively weak, because IPSec can only defend against DDoS attacks that spoof their source addresses. In cases where attackers launch DDoS attacks with their real identity, IPSec is helpless. This paper proposes a deterministic link signature based DDoS IP traceback algorithm. It can immediately reconstruct the entire attack path after suffering a DDoS attack whether or not the source addresses are spoofed. To verify the validity of our algorithm, we implemented it under a simulated IPv6 environment with the OMNeT++ IPv6Suite.
  • Keywords
    IP networks; authorisation; digital signatures; telecommunication security; DDoS attack; IP traceback algorithm; IPv6 security; deterministic link signature; distributed denial of service; Algorithm design and analysis; Communication system traffic control; Computer crime; Filters; Internet; Protection; Protocols; Testing; DDoS attack; IPv6 IP traceback; packet marking;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Advanced Communication Technology, 2008. ICACT 2008. 10th International Conference on
  • Conference_Location
    Gangwon-Do
  • ISSN
    1738-9445
  • Print_ISBN
    978-89-5519-136-3
  • Type

    conf

  • DOI
    10.1109/ICACT.2008.4493937
  • Filename
    4493937
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3306286