Tracing High Bandwidth Aggregates

B.-T. Wang (USA)


Denial-of-Service (DoS), Distributed Denial-of-Service(DDoS), IP Traceback


Defending of Distributed Denial-of-Service (DDoS) attacks or even identifying their sources are among the hardest research topics in the Internet security area. There are various potential solutions proposed, such as packet filtering and IP traceback. Pushback is currently considered to be one of the most well designed methods for controlling high bandwidth aggregates at their sources and protecting legitimate traffic within the aggregate. However, potential bandwidth and storage overheads added at routers make the method vulnerable to DoS attacks. I therefore propose a simple enhancement called Aggregate Initiation Detection (AID), which significantly reduces those overheads at routers to prevent routers from being targeted in DoS attacks.

Important Links:

Go Back