Proposaland Efficient Implementation of Detecting and Filtering Method for IP Spoofed Packets

2007 International Conference on Information and Communication Technology Pub Date : 2007-03-07 DOI:10.1109/ICICT.2007.375404

T. Ohtsuka, F. Nakamura, Y. Sekiya, Y. Wakahara

{"title":"Proposaland Efficient Implementation of Detecting and Filtering Method for IP Spoofed Packets","authors":"T. Ohtsuka, F. Nakamura, Y. Sekiya, Y. Wakahara","doi":"10.1109/ICICT.2007.375404","DOIUrl":null,"url":null,"abstract":"In the Internet there are a lot of distributed denial of service (DDoS) attacks. A lot of attacks aim to cause damage to services such as web, ire and DNS. However, there is no efficient method to protect regular traffic from the attacks. In this paper we propose FSN method to detect and filter out the attacks efficiently as much as possible, near the attackers. FSN method is effective and practical and applicable to the real Internet environment. FSN method uses topology information to detect the attacks and collects topology information using IGP routing protocol, so it is applicable to the environments including asymmetric paths and it doesn't require collected packets to construct neighbor information. To evaluate FSN method we perform some simulations compared to reverse path forwarding (RPF). The simulation results show FSN method can prevent the attacks more efficiently than RPF and filter out the attacks in the environments including asymmetric paths. According to the results, we conclude FSN method is very effective and practical.","PeriodicalId":206443,"journal":{"name":"2007 International Conference on Information and Communication Technology","volume":"46 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2007-03-07","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"6","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2007 International Conference on Information and Communication Technology","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICICT.2007.375404","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 6

Abstract

In the Internet there are a lot of distributed denial of service (DDoS) attacks. A lot of attacks aim to cause damage to services such as web, ire and DNS. However, there is no efficient method to protect regular traffic from the attacks. In this paper we propose FSN method to detect and filter out the attacks efficiently as much as possible, near the attackers. FSN method is effective and practical and applicable to the real Internet environment. FSN method uses topology information to detect the attacks and collects topology information using IGP routing protocol, so it is applicable to the environments including asymmetric paths and it doesn't require collected packets to construct neighbor information. To evaluate FSN method we perform some simulations compared to reverse path forwarding (RPF). The simulation results show FSN method can prevent the attacks more efficiently than RPF and filter out the attacks in the environments including asymmetric paths. According to the results, we conclude FSN method is very effective and practical.

查看原文本刊更多论文

一种有效的IP欺骗报文检测与过滤方法

在互联网上，分布式拒绝服务(DDoS)攻击层出不穷。许多攻击的目的是对web、ire和DNS等服务造成破坏。但是，目前还没有有效的方法来保护正常流量免受攻击。在本文中，我们提出了FSN方法，在攻击者附近尽可能有效地检测和过滤攻击。FSN方法有效、实用，适用于真实的互联网环境。FSN方法利用拓扑信息检测攻击，通过IGP路由协议收集拓扑信息，适用于非对称路径等环境，不需要收集报文构建邻居信息。为了评估FSN方法，我们进行了一些模拟，比较了反向路径转发(RPF)。仿真结果表明，FSN方法比RPF方法更有效地阻止了包括非对称路径在内的环境中的攻击。结果表明，FSN方法是一种非常有效和实用的方法。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2007 International Conference on Information and Communication Technology

自引率

0.00%

发文量