Near-optimal defense strategies against DDoS attacks based upon packet filtering and blocking enabled by packet marking

Frank Yeong Sung Lin, Pei-yu Chen, Chun Wei Fan Chiang

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

In the paper, the DDoS scenario is modelled as a mathematical programming problem. The defender strategically utilizes the limited resources to maximize the legitimate traffic, and he can adopt packet marking to observe the network status. The information extracts from the marking field can help the defender develop a defense strategy which combines packet filtering and packet blocking. A Lagrangean relaxation-based algorithm is proposed to optimally solve the problem.

Original languageEnglish (US)
Title of host publicationPACIS 2010 - 14th Pacific Asia Conference on Information Systems
Pages1703-1710
Number of pages8
StatePublished - 2010
Externally publishedYes
Event14th Pacific Asia Conference on Information Systems, PACIS 2010 - Taipei, Taiwan, Province of China
Duration: Jul 9 2010Jul 12 2010

Other

Other14th Pacific Asia Conference on Information Systems, PACIS 2010
CountryTaiwan, Province of China
CityTaipei
Period7/9/107/12/10

Keywords

  • Blocking
  • Distributed-denial-of-service (DDoS)
  • Filtering
  • Mathematical programming
  • Optimization and lagrangean relaxation
  • Packet marking

ASJC Scopus subject areas

  • Information Systems

Fingerprint Dive into the research topics of 'Near-optimal defense strategies against DDoS attacks based upon packet filtering and blocking enabled by packet marking'. Together they form a unique fingerprint.

  • Cite this

    Lin, F. Y. S., Chen, P., & Chiang, C. W. F. (2010). Near-optimal defense strategies against DDoS attacks based upon packet filtering and blocking enabled by packet marking. In PACIS 2010 - 14th Pacific Asia Conference on Information Systems (pp. 1703-1710)