DocumentCode :
2617818
Title :
A two-tier coordinated defense scheme against DDoS attacks
Author :
Chen, Chin-Ling ; Chang, Chih-Yu
Author_Institution :
Dept. of Inf. Manage., Nat. Pingtung Inst. of Commerce, Pingtung, Taiwan
fYear :
2011
fDate :
27-29 June 2011
Firstpage :
148
Lastpage :
151
Abstract :
Distributed denial-of-service (DDoS) attacks can be regarded as the most serious threats for current Internet. This paper presents a two-tier coordination approach for detecting and mitigating DDoS attacks. The first tier traffic filter (1st-TF) filters suspicious traffic for possible flooding. This is achieved by using proactive tests to identify and isolate the malicious traffic. The second tier traffic filter (2nd-TF), which is deployed on network routers, performs online monitoring on queue length status with RED/Droptail mechanism for any incoming traffic. The simulation shows that the scheme can detect attacks accurately and effectively.
Keywords :
Internet; computer network security; telecommunication traffic; DDoS attacks; Internet; RED-droptail mechanism; distributed denial-of-service attacks; first tier traffic filter; malicious traffic; network routers; proactive tests; queue length status online monitoring; second tier traffic filter; two-tier coordinated defense scheme; Computer crime; Protocols;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Computer Science and Service System (CSSS), 2011 International Conference on
Conference_Location :
Nanjing
Print_ISBN :
978-1-4244-9762-1
Type :
conf
DOI :
10.1109/CSSS.2011.5974535
Filename :
5974535
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=2617818
بازگشت