Title :
IP traceback solutions based on time to live covert channel
Author :
Jones, Emanuele ; Le Moigne, Olivier ; Robert, Jean-Marc
Author_Institution :
Alcatel Res. & Innovation, Ottawa, Ont., Canada
Abstract :
Due to its stateless nature, the Internet protocol (IP) requires forwarding devices to only know each packet´s next hop to correctly route any IP datagram towards its final destination. Thus, since identification of the source solely relies on the information provided by the sender itself, IP makes it extremely difficult to correctly identify the real origin of any datagram. We propose a novel way to locate the entry point of an IP flow into a given network domain based on a marking method using the IP header time to live (TTL) field as a covert channel to carry the information. The proposed solution overcomes drawbacks that undermine previous traceback schemes based on overloading various IP header fields and does not rely on attack signatures.
Keywords :
IP networks; telecommunication channels; telecommunication network routing; IP header time to live field; IP traceback solution; Internet protocol; time to live covert channel; Algorithm design and analysis; Bandwidth; Computer crime; Counting circuits; Current supplies; Filtering; Internet; Protocols; Technological innovation;
Conference_Titel :
Networks, 2004. (ICON 2004). Proceedings. 12th IEEE International Conference on
Print_ISBN :
0-7803-8783-X
DOI :
10.1109/ICON.2004.1409207
