A Statistic-based Response System against DDoS Using Legitimated IP Table


The KIPS Transactions:PartC, Vol. 12, No. 6, pp. 827-838, Oct. 2005
10.3745/KIPSTC.2005.12.6.827,   PDF Download:

Abstract

DDoS(Distributed Denial of Service) attack is a critical threat to current Internet. To solve the detection and response of DDoS attack of BcN, we have investigated detection algorithms of DDoS and implemented anamaly detection modules. Recently too many technologies of the detection and prevention have developed, but it is difficult that the IDS distinguishes normal traffic from the DDoS attack. Threfore, when the DDoS attack is detected by IDS, the firewall just discards all over-bounded traffic for a victim of absolutely decreases the threshold of the router. That is just only a method for preventing the DDoS attack. This paper proposed the mechanism of response for the legitimated clients to be protected. Then, we have designed and implemented the statistic based system that had the automated detection and response functionality against DDoS on Linux Zebra router environment.


Statistics
Show / Hide Statistics

Statistics (Cumulative Counts from September 1st, 2017)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.


Cite this article
[IEEE Style]
P. Y. Park, C. S. Hong, S. H. Choi, "A Statistic-based Response System against DDoS Using Legitimated IP Table," The KIPS Transactions:PartC, vol. 12, no. 6, pp. 827-838, 2005. DOI: 10.3745/KIPSTC.2005.12.6.827.

[ACM Style]
Pil Yong Park, Choong Seon Hong, and Sang Hyun Choi. 2005. A Statistic-based Response System against DDoS Using Legitimated IP Table. The KIPS Transactions:PartC, 12, 6, (2005), 827-838. DOI: 10.3745/KIPSTC.2005.12.6.827.