A SIGNALING ARCHITECTURE AGAINST DOS ATTACKS

Ahmad Fadlallah, Ahmed Serhrouchni

Abstract

Denial of service (DoS) attacks figure highly among the dangers that face the Internet. Many research studies deal with DoS, proposing models and/or architectures to stop this threat. The proposed solutions vary between prevention, detection, filtering and traceback of the attack. The latter (attack traceback) constitutes an important part of the DoS defense. The most complex issue it has to face is related to the fact that attackers often used spoofed or incorrect IP addresses, thus disguising the true origin. In this work, we propose a signaling architecture and a security-oriented signaling protocol named 3SP (Simple Security Signaling Protocol). This solution makes it easier to trace both the DoS and other types of attack back to their sources; it is simple, robust and efficient against IP spoofing, and thus constitutes a novel and efficient approach to deal with the attack traceback problem.

References

  1. Bellovin, S.M., 2001. ICMP traceback messages, Internet draft.
  2. Bloom, B. H., 1970. Space/time tradeoffs in hash coding with allowable errors. Communications of the ACM, 13(7):422- 426.
  3. Burch, H., Cheswick, B., 2000. Tracing Anonymous Packets to Their Approximate Source, in Proceedings of the 14th USENIX Systems Administration Conference.
  4. CERT® Coordination Center, 1997. “Denial of Service Attacks”. Available from:
  5. Dean, D., Franklin, M., Stubblefield, A., 2001. An algebraic approach to IP Traceback. In Proceedings of
  6. Gil, T.M., Poleto, M., 2001. MULTOPS: a data-structure for bandwidth attack detection, in Proceedings of 10th Usenix Security Symposium.
  7. Lee, S. C., Shields, C., 2001. Tracing the Source of Network Attack: A Technical, Legal and Societal Problem, in proceedings of the 2001 IEEE Workshop on Information Assurance and Security.
  8. Mankin, A., Massey, D., Wu, C., Wu, S. F., Zhang, L., 2001. On Design and Evaluation of Intention-Driven ICMP Traceback, In Proceedings of IEEE International Conference on Computer Communications and Networks.
  9. Mirkovic, J., Prier, G., Reiher, P., 2002. Attacking DDoS at the source. In Proceedings of ICNP 2002, pp. 312- 321
  10. Park, K., Lee, H., 2001. On the Effectiveness of Probabilistic Packet Marking for IP Traceback, In Proceedings of IEEE INFOCOM 2001.
  11. Paxon, V., 2001. An analysis of using reflectors for distributed denial-of-service attacks. Computer Communication Review.
  12. Sanchez, L.A., Milliken, W.C., Snoeren, A.C., Tchakountio, F., Jones, C.E,. Kent, S.T., Partridge, C., Strayer, W.T., 2001. Hardware Support for a HashBased IP Traceback, in Proceedings of DARPA Information Survivability Conference & Exposition.
  13. Savage, S., Wetherall, D., Karlin, A., Anderson, T., 2000. Practical network support for IP Traceback, In Proceedings of 2000 ACM SIGCOMM Conference.
  14. Song, D. X., Perrig, A., 2001. Advanced and authenticated marking schemes for IP Traceback, IEEE INFOCOM 2001.
  15. Stein, L.D., Stewart, J.N., 2003. The World Wide Web Security FAQ, v 1.7.
  16. Stone, R., 2000. CenterTrack: An IP Overlay Network for Tracking DoS Floods, In Proceedings of 9th Usenix Security Symposium.
Download


Paper Citation


in Harvard Style

Fadlallah A. and Serhrouchni A. (2005). A SIGNALING ARCHITECTURE AGAINST DOS ATTACKS . In Proceedings of the Second International Conference on e-Business and Telecommunication Networks - Volume 1: ICETE, ISBN 972-8865-32-5, pages 216-221. DOI: 10.5220/0001415702160221


in Bibtex Style

@conference{icete05,
author={Ahmad Fadlallah and Ahmed Serhrouchni},
title={A SIGNALING ARCHITECTURE AGAINST DOS ATTACKS},
booktitle={Proceedings of the Second International Conference on e-Business and Telecommunication Networks - Volume 1: ICETE,},
year={2005},
pages={216-221},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0001415702160221},
isbn={972-8865-32-5},
}


in EndNote Style

TY - CONF
JO - Proceedings of the Second International Conference on e-Business and Telecommunication Networks - Volume 1: ICETE,
TI - A SIGNALING ARCHITECTURE AGAINST DOS ATTACKS
SN - 972-8865-32-5
AU - Fadlallah A.
AU - Serhrouchni A.
PY - 2005
SP - 216
EP - 221
DO - 10.5220/0001415702160221