Title :
IDR: an intrusion detection router for defending against distributed denial-of-service (DDoS) attacks
Author :
Chan, Eric Y K ; Chan, H.W. ; Chan, K.M. ; Chan, Vivien P S ; Chanson, Samuel T. ; Cheung, Matthew M H ; Chong, C.F. ; Chow, K.P. ; Hui, Albert K T ; Hui, Lucas C K ; Lam, Luke C K ; Lau, W.C. ; Pun, Kevin K H ; Tsang, Anthony Y F ; Tsang, W.W. ; Tso, Sam
Author_Institution :
Dept. of Comput. Sci. & Inf. Syst., Hong Kong Univ., China
Abstract :
Distributed denial-of-service (DDoS) attack has turned into one of the major security threats in recent years. Usually the only solution is to stop the services or shut down the victim and then discard the attack traffic only after the DDoS attack characteristics (such as the destination ports of the attack packets) are known. In this paper, we introduce a generic DDoS attack detection mechanism as well as the design and setup of a testbed for performing experiments and analysis. Our results showed that the mechanism can detect DDoS attack. This enables us to proceed to the next steps of packet classification and traffic control.
Keywords :
security of data; distributed denial-of-service attacks; intrusion detection router; network traffic control; packet classification; Computer crime; Computer science; Filters; Intrusion detection; Large-scale systems; Performance analysis; Performance evaluation; Protection; Testing; Traffic control;
Conference_Titel :
Parallel Architectures, Algorithms and Networks, 2004. Proceedings. 7th International Symposium on
Print_ISBN :
0-7695-2135-5
DOI :
10.1109/ISPAN.2004.1300541
