论文信息 - A dynamic probabilistic marking approach with multi-tag for tracing ICMP-based DoS attacks

A dynamic probabilistic marking approach with multi-tag for tracing ICMP-based DoS attacks

This paper presents a dynamic probabilistic marking algorithm with multiple routing address tags, which allows the victim to traceback the origin of ICMP (Internet Control Message Protocol)-based direct and reflective DoS attacks. The proposed approach makes full use of scalable data space of ICMP packet to achieve multiple information tags. The difference between this proposal and previous proposals lies in two points. First, the number of packets needed by the victim to reconstruct the attack path is greatly reduced because of three key mechanisms: multi-tag, uniform leftover probability, and tag location choice based on the module of accommodated tag numbers within a packet. Second, the true origin of both direct and reflective ICMP-based DoS attacks can be traced.

Jin Ma | Ahmed Serhrouchni | Xiuzhen Chen | Shenghong Li | Ken Chen

[1] A. Tamilarasi,et al. A hybrid scheme using packet marking and logging for IP traceback , 2010, Int. J. Internet Protoc. Technol..

[2] Esraa Alomari,et al. Botnet-based Distributed Denial of Service (DDoS) Attacks on Web Servers: Classification and Art , 2012, ArXiv.

[3] Kotagiri Ramamohanarao,et al. Survey of network-based defense mechanisms countering the DoS and DDoS problems , 2007, CSUR.

[4] Johann van der Merwe,et al. A survey on peer-to-peer key management for mobile ad hoc networks , 2007, CSUR.

[5] Yeh-Ching Chung,et al. Dynamic probabilistic packet marking for efficient IP traceback , 2007, Comput. Networks.

[6] Xiaoming He,et al. An Improved Dynamic Probabilistic Packet Marking for IP Traceback , 2010 .

[7] Wang Xin. A PPM probabilistic packet marking improving scheme , 2011 .

[8] J. Immanuel John Raja,et al. A survey of IP traceback mechanisms to overcome denial-of-service attacks , 2010, ICN 2010.

[9] PengTao,et al. Survey of network-based defense mechanisms countering the DoS and DDoS problems , 2007 .

[10] Aikaterini Mitrokotsa,et al. DDoS attacks and defense mechanisms: classification and state-of-the-art , 2004, Comput. Networks.

[11] Ahmed Serhrouchni,et al. A Novel Traceback Approach for Direct and Reflected ICMP Attacks , 2011, 2011 Conference on Network and Information Systems Security.