Denying denial-of-service attacks: A router based solution

Shu Zhang, Partha Dasgupta

Research output: Chapter in Book/Report/Conference proceedingConference contribution

18 Scopus citations

Abstract

Distributed Denial-of-Service (DDoS) attacks prevent users from accessing services on the target network by flooding the target network with a large volume of traffic. In this paper, we propose a "Hardened Network" system, which is based on intelligent routers. This network can be incrementally deployed on the Internet and can be used to detect, stop, and recover from DDoS attacks. This Hardened Network does not require any modification to the end-systems, such as the client and server hosts. It can detect a DDoS attack before it severely slows down the target machine or the network. Then, it can selectively drop packets close to the sources and hence stop the attack at points that are closer to the attack origin, and continue to provide service.

Original languageEnglish (US)
Title of host publicationProceedings of the International Conference on Internet Computing
EditorsH.R. Arabnia, Y. Mun
Pages301-307
Number of pages7
Volume1
StatePublished - 2003
EventProceedings of the International Conference on Internet Computing, IC'03 - Las Vegas, NV, United States
Duration: Jun 23 2003Jun 26 2003

Other

OtherProceedings of the International Conference on Internet Computing, IC'03
CountryUnited States
CityLas Vegas, NV
Period6/23/036/26/03

Keywords

  • Autonomous system
  • Cryptography
  • DDoS

ASJC Scopus subject areas

  • Computer Networks and Communications

Fingerprint Dive into the research topics of 'Denying denial-of-service attacks: A router based solution'. Together they form a unique fingerprint.

  • Cite this

    Zhang, S., & Dasgupta, P. (2003). Denying denial-of-service attacks: A router based solution. In H. R. Arabnia, & Y. Mun (Eds.), Proceedings of the International Conference on Internet Computing (Vol. 1, pp. 301-307)