Title :
Active shaping: a countermeasure against DDoS attacks
Author :
Kashiwa, Dai ; Chen, Eric Y. ; Fuji, Hitoshi
Author_Institution :
NTT Inf. Sharing Platform Labs., Yokosuka, Japan
fDate :
6/24/1905 12:00:00 AM
Abstract :
Distributed denial of service (DDoS) attacks are a pressing problem on the Internet as demonstrated by attacks on major e-commerce servers and ISPs. Since the attack is distributed and the attack tools evolve at a rapid and alarming rate, an effective solution must be formulated using a distributed and adaptive approach. In this paper, we propose a countermeasure against DDoS attacks using a method we call active shaping. The core-enabling technology of this framework is the active network, which allows us to detect, backtrack and defend against attacks at suitable network nodes and minimize damage. We also evaluate the effectiveness of our system using a prototype.
Keywords :
Internet; telecommunication control; telecommunication security; telecommunication traffic; DDoS attacks; ISPs; Internet; active shaping; attack tools; core-enabling technology; countermeasure; damage; distributed denial of service attacks; e-commerce servers; network nodes; Computer crime; File servers; Floods; Laboratories; Master-slave; Network servers; Pressing; Prototypes; Telecommunication traffic; Traffic control;
Conference_Titel :
Universal Multiservice Networks, 2002. ECUMN 2002. 2nd European Conference on
Print_ISBN :
0-7803-7422-3
DOI :
10.1109/ECUMN.2002.1002103
