Title :
VPNshield: protecting VPN services from denial-of-service (DoS) attacks
Author :
Ramanujan, R. ; Kaddoura, M. ; Wu, J. ; Sanders, C. ; Millikin, K.
Author_Institution :
Archit. Technol. Corp., Minneapolis, MN, USA
Abstract :
Employing survivability techniques developed by Architecture Technology Corporation (ATC) under the DARPA OASIS program, VPNshield implements DoS-resistant (or survivable) VPNs that provide continuous, uninterrupted operation of VPN services in spite of access link flooding attacks. In contrast to existing infrastructure based approaches for detecting and countering these attacks, the VPNshield approach relies on survivability techniques that are implemented within the edge networks. That is, the survivability mechanisms associated with this approach require no modifications or additions to equipment in the core network infrastructure owned by the service provider.
Keywords :
military communication; military computing; security of data; telecommunication security; virtual private networks; DARPA OASIS program; DoS resistant VPNs; VPN service protection; VPNshield; access link flooding attacks; core network infrastructure; denial-of-service attacks; edge networks; service provider; survivability mechanisms; survivability techniques; Access protocols; Bandwidth; Computer crime; Filters; Floods; Internet; Joining processes; Local area networks; Termination of employment; Virtual private networks;
Conference_Titel :
DARPA Information Survivability Conference and Exposition, 2003. Proceedings
Print_ISBN :
0-7695-1897-4
DOI :
10.1109/DISCEX.2003.1194950
