TCP Attack Detection Using Dynamic Threshold

Abstract

In Communication networks, the information obtained by critical vulnerabilities lead to dangerous attacks called TCP (Transmission Control Protocol) Side Channel attacks. If the guess of these tuples of TCP is correct, an attacker can spoof the packet which changes the server’s state. Due to these attacks, it is possible to obtain the details of four tuples of TCP such as Sequence number, Acknowledgement number, Global IPID (Internet Protocol Identification) Counter and port numbers. After obtaining these tuples, this may further help for an attacker to target the required client. These attacks help an off-path attacker to port scans to get round trip time and also to detect how many packets are exchanged. Hence obtaining these tuples plays an important role in network security. This paper provides the detail discussion about various TCP attacks. This paper also provides various approaches for detection of TCP Attacks using Dynamic Threshold.