Tabu marking scheme to speedup IP traceback |
| |
Authors: | Miao |
| |
Affiliation: | aInstitute for Infocomm Research (I2R), Infocomm Security Department, 21 Heng Mui Keng Terrace, Singapore 119613, Singapore |
| |
Abstract: | The IP traceback is an important mechanism in defending against distributed denial-of-service (DDoS) attacks. In this paper, we propose a probabilistic packet marking (PPM) scheme, Tabu Marking Scheme (TMS), to speedup IP traceback. The key idea of “tabu mark” is that, a router still marks packets probabilistically, but regards a packet marked by an upstream router as a tabu and does not mark it again. We study the impact of the traffic aggregation on the convergence behavior of PPM schemes. Furthermore we derive a new analytical result on the partial coupon collection problem, which is a powerful tool applicable for computing the mean convergence time of any PPM scheme. Our study shows that the idea of “tabu mark” not only helps a PPM scheme that allows overwriting to reduce the convergence time under a DDoS attack, but also ensures the authentication of the routers’ markings. |
| |
Keywords: | Network security IP traceback Distributed denial-of-service attacks Probabilistic packet marking Coupon collection problem |
本文献已被 ScienceDirect 等数据库收录! |
|