RED-FT: A Scalable Random Early Detection Scheme with Flow Trust against DoS Attacks

Author

Xianliang Jiang ; Jiangang Yang ; Guang Jin ; Wei Wei

Author_Institution

Coll. of Comput. Sci. & Technol., Zhejiang Univ., Hangzhou, China

Volume

17

Issue

5

fYear

2013

fDate

May-13

Firstpage

1032

Lastpage

1035

Abstract

In traditional Active Queue Management algorithms, e.g. RED, each flow, defined with the source and destination IP address of packets, fairly contends for the cache of bottleneck queues. However a malicious flow cannot be identified. And it enables potential network-layer attacks, e.g. the flooding Denial-of-Service (DoS) attack and the low-rate DoS attack. In this letter, we propose a new scheme using the flows trust values to defend against DoS attacks. Different from previous schemes, it employs the flow trust to safeguard legitimate flows. A router monitors network flows and calculates flows trust values, which are used for the relevant queue management. Malicious flows would be with lower trust values while legitimate flows would be with higher ones. Simulation results show that the scheme improves the throughput and delay in DoS attacking scenarios comparing with existing queue management algorithms. We consider the scheme is practical and effective to secure networks.

Keywords

computer network management; computer network security; queueing theory; Denial-of-Service attack; DoS attacks; IP address; RED-FT; active queue management algorithms; bottleneck queues; flow trust; malicious flows; network flows; network layer attacks; queue management; scalable random early detection scheme; trust values; Algorithm design and analysis; Computer crime; Delay; Monitoring; Robustness; Stability analysis; Throughput; DoS attacks; Internet security; RED; flow; trust;

fLanguage

English

Journal_Title

Communications Letters, IEEE

Publisher

ieee

ISSN

1089-7798

Type

jour

DOI

10.1109/LCOMM.2013.022713.122652

Filename

6476939