Parallel Ranking Assist against Distributed Reflection Denial of Service Attack

Distributed Reflection Denial of Service is the recent iteration in the series of Denial of Service attacks. It works similar to Distributed Denial of Service, in that it uses many sources to attack one victim and the attacker hides behind the zombies. In this paper, we concentrate on assisting the nodes of network during the DRDoS attack, by using detection algorithm to detect the attack whenever a suspicious flow is noticed and then by proper analysis of the network we can find the attack free path which can be used by the nodes in the network. We use Rank Correlation based Detection algorithm which helps to find whether the network is experiencing a channel failure or is under attack. Once the attack is detected, the attack path and source are multicast to all nodes, so that the nodes in the network can avoid any traffic from them, thus reducing the effect of DRDoS attack for a specified period of time.

[1]  Wei Wei,et al.  A Rank Correlation Based Detection against Distributed Reflection DoS Attacks , 2013, IEEE Communications Letters.

[2]  Di Wu,et al.  A Survey on Latest Botnet Attack and Defense , 2011, 2011IEEE 10th International Conference on Trust, Security and Privacy in Computing and Communications.

[3]  Vern Paxson,et al.  An analysis of using reflectors for distributed denial-of-service attacks , 2001, CCRV.

[4]  Nirwan Ansari,et al.  Detecting DRDoS attacks by a simple response packet confirmation mechanism , 2008, Comput. Commun..

[5]  Kotagiri Ramamohanarao,et al.  Proactively Detecting Distributed Denial of Service Attacks Using Source IP Address Monitoring , 2004, NETWORKING.

[6]  Song Guo,et al.  Discriminating DDoS Attacks from Flash Crowds Using Flow Correlation Coefficient , 2012, IEEE Transactions on Parallel and Distributed Systems.