论文信息 - A Service Architecture for Countering Distributed Denial of Service Attacks

A Service Architecture for Countering Distributed Denial of Service Attacks

We present AMP, a novel service architecture for countering distributed denial of service (dDos) attacks. AMP uses dynamically configured network components to perform traffic monitoring, filtering and detection of commonly known attacks. It does not require universal deployment and is complementary to other schemes for countering dDoS attacks, however with the use of collaborative policing techniques, the performance of the scheme can be improved greatly. In addition, it is economically viable, it can be offered as a service to the customers by service providers. We give a detailed design of our system which we implemented on our simulation test-bed. Performance evaluation of our system shows that using our scheme we were able to recover 83% of throughput lost during an attack.

Fareed Zaffar | Gershon Kedem | G. Kedem | Fareed Zaffar

[1] Richard Lippmann,et al. The 1999 DARPA off-line intrusion detection evaluation , 2000, Comput. Networks.

[2] Fareed Zaffar,et al. Cooperative Forensics Sharing , 2006, 2006 1st Bio-Inspired Models of Network, Information and Computing Systems.

[3] John Mhugh. The 1998 Lincoln Laboratory IDS evaluation : A critique , 2000 .

[4] David L. Black,et al. An Architecture for Differentiated Service , 1998 .

[5] Zheng Wang,et al. An Architecture for Differentiated Services , 1998, RFC.

[6] Raj Jain,et al. The art of computer systems performance analysis - techniques for experimental design, measurement, simulation, and modeling , 1991, Wiley professional computing.

[7] William L. Fithen,et al. State of the Practice of Intrusion Detection Technologies , 2000 .

[8] Paul Ferguson,et al. Network Ingress Filtering: Defeating Denial of Service Attacks which employ IP Source Address Spoofing , 1998, RFC.