Title :
Across-Domain Deterministic Packet Marking for IP Traceback
Author :
Jin, Guang ; Yang, Jiangang ; Wei, Wei ; Dong, Yabo
Author_Institution :
Zhejiang Univ., Hangzhou
Abstract :
Among IP traceback techniques, deterministic packet marking (DPM) can locate the ingress border routers of destination domains with sound effectiveness and robustness. Yet DPM is inefficient to trace to attack origins of remote domains. A novel mechanism, across-domain deterministic packet marking (ADDPM), for IP traceback is proposed. It uses the 30-bit space in IP header reserved for fragmented traffic. Three deterministic markings are recorded into a packet at both the ingress router of source domain and the border router of destination domain respectively. Besides the both routers´ IP addresses, the source AS number is also marked. The victim can trace to the remote attack origin by the markings. Deterministic markings can also be used to differentiate malicious packets. Theoretical analyses, deployment policies and simulation results are provided in detail and show the effectiveness of ADDPM.
Keywords :
IP networks; Internet; telecommunication security; IP traceback; Internet secuity; across-domain deterministic packet marking; border router; ingress router; word length 30 bit; Acoustical engineering; Analytical models; Computer crime; Computer science; Educational institutions; Filtering; Information science; Injuries; Robustness; Web and internet services; Deterministic packet marking; DoS; IP traceback; Internet security;
Conference_Titel :
Communications and Networking in China, 2007. CHINACOM '07. Second International Conference on
Conference_Location :
Shanghai
Print_ISBN :
978-1-4244-1009-5
Electronic_ISBN :
978-1-4244-1009-5
DOI :
10.1109/CHINACOM.2007.4469407
