DocumentCode
1605216
Title
An IP traceback mechanism for reflective DoS attacks
Author
Wang, Bao-Tung ; Schulzrinne, Henning
Author_Institution
Dept. of Comput. Sci., Columbia Univ., New York, NY, USA
Volume
2
fYear
2004
Firstpage
901
Abstract
We present a new ICMP message and an automatic process capable of tracing reflective DoS attacks back to attack agents. The newly designed ICMP message carries the packet routing history and is signed by each forwarding router. After receiving the loaded ICMP messages, attack targets can identify the border routers of reflectors in the first flooding path and then use an ICMP message to inform accountable border routers to continue the traceback process to find the attack agents. In this paper, we propose an automatic, efficient, and secure traceback process across domains and discuss some limitations of the protocol.
Keywords
Internet; computer crime; routing protocols; telecommunication security; ICMP message; IP traceback mechanism; automatic process; border router identification; flooding path; forwarding router signature; packet routing history; protocol; reflective DoS attacks; Computer crime; Computer science; Computerized monitoring; Condition monitoring; Distributed computing; Filtering; Floods; History; Protocols; Routing;
fLanguage
English
Publisher
ieee
Conference_Titel
Electrical and Computer Engineering, 2004. Canadian Conference on
ISSN
0840-7789
Print_ISBN
0-7803-8253-6
Type
conf
DOI
10.1109/CCECE.2004.1345260
Filename
1345260
Link To Document