2005 | OriginalPaper | Buchkapitel
Tracing Attackers with Deterministic Edge Router Marking (DERM)
verfasst von : Shravan K Rayanchu, Gautam Barua
Erschienen in: Distributed Computing and Internet Technology
Verlag: Springer Berlin Heidelberg
Aktivieren Sie unsere intelligente Suche, um passende Fachinhalte oder Patente zu finden.
Wählen Sie Textabschnitte aus um mit Künstlicher Intelligenz passenden Patente zu finden. powered by
Markieren Sie Textabschnitte, um KI-gestützt weitere passende Inhalte zu finden. powered by
Tracing the attackers in a distributed denial-of-service(DDoS) attack is particularly difficult since attackers spoof the source addresses. We present a novel approach to IP Traceback – Deterministic Edge Router Marking (DERM). The proposed scheme is scalable to thousands of attackers, is very simple to implement at the routers, has no bandwidth overhead and needs minimal processing and storage requirements at the victim. As each complete mark fits into a single packet, our scheme can also be used for per-packet filtering and as a congestion signature in a pushback protocol. The traceback procedure requires a small number of packets and can be performed during the post-mortem analysis of an attack. Only limited co-operation is required from Internet Service Providers (ISP). They do not have to reveal the topology of their internal networks.