Directed geographical traceback

In this paper, a new mechanism for IP traceback based on the geographic information rather than the traditional IP address information is proposed. The proposed solution possesses several desirable features such as fast convergence (the attack source can be identified with a single packet), lightweight (imposing little computational overhead on routers), and improved robustness. In addition, a service provider can implement this scheme without revealing its internal network topology. Furthermore, the new marking scheme allows the victim to defend against DDoS attacks without counting on its ISP, which is an important improvement.

[1]  Stefan Savage,et al.  Inferring Internet denial-of-service activity , 2001, TOCS.

[2]  Nirwan Ansari,et al.  IP traceback with deterministic packet marking , 2003, IEEE Communications Letters.

[3]  Jun Xu,et al.  IP traceback-based intelligent packet filtering: a novel technique for defending against Internet DDoS attacks , 2002, 10th IEEE International Conference on Network Protocols, 2002. Proceedings..

[4]  Farnam Jahanian,et al.  Internet routing instability , 1997, SIGCOMM '97.

[5]  Anna R. Karlin,et al.  Network support for IP traceback , 2001, TNET.

[6]  Dawn Xiaodong Song,et al.  Advanced and authenticated marking schemes for IP traceback , 2001, Proceedings IEEE INFOCOM 2001. Conference on Computer Communications. Twentieth Annual Joint Conference of the IEEE Computer and Communications Society (Cat. No.01CH37213).

[7]  Dawn Xiaodong Song,et al.  FIT: fast Internet traceback , 2005, Proceedings IEEE 24th Annual Joint Conference of the IEEE Computer and Communications Societies..

[8]  Vern Paxson End-to-end routing behavior in the internet , 2006, Comput. Commun. Rev..

[9]  Lakshminarayanan Subramanian,et al.  Determining the geographic location of Internet hosts , 2001, SIGMETRICS '01.

[10]  Vern Paxson,et al.  End-to-end routing behavior in the Internet , 1996, TNET.

[11]  Heejo Lee,et al.  On the effectiveness of probabilistic packet marking for IP traceback under denial of service attack , 2001, Proceedings IEEE INFOCOM 2001. Conference on Computer Communications. Twentieth Annual Joint Conference of the IEEE Computer and Communications Society (Cat. No.01CH37213).

[12]  Jun Li,et al.  Large-scale IP traceback in high-speed Internet: practical techniques and theoretical foundation , 2004, IEEE Symposium on Security and Privacy, 2004. Proceedings. 2004.

[13]  V. Padmanabhan,et al.  An investigation of geographic mapping techniques for internet hosts , 2001, SIGCOMM '01.

[14]  Lakshminarayanan Subramanian,et al.  An investigation of geographic mapping techniques for internet hosts , 2001, SIGCOMM 2001.

[15]  Martin P. Loeb,et al.  CSI/FBI Computer Crime and Security Survey , 2004 .

[16]  Craig Partridge,et al.  Single-packet IP traceback , 2002, TNET.

[17]  R. Power CSI/FBI computer crime and security survey , 2001 .