Tabu marking scheme for IP traceback

Proceedings - 19th IEEE International Parallel and Distributed Processing Symposium, IPDPS 2005

Volumn 2005, Issue , 2005, Pages

  Ma, Miao ^a  

^a INSTITUTE FOR INFOCOMM RESEARCH   (Singapore)

Author keywords

[No Author keywords available]

Indexed keywords

DISTRIBUTED DENIAL-OF-SERVICE (DDOS) ATTACKS; PROBABILISTIC PACKET MARKING (PPM) SCHEME; TABU MARKING SCHEME;

CONVERGENCE OF NUMERICAL METHODS; DISTRIBUTED COMPUTER SYSTEMS; NUMERICAL ANALYSIS; PROBABILISTIC LOGICS; PROBLEM SOLVING; ROUTERS;

NETWORK PROTOCOLS;

EID: 33746280838     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/IPDPS.2005.421     Document Type: Conference Paper

References (25)

1. S. Savage, D. Wetherall, A. Karlin and T. Anderson, "Practical network support for IP traceback," Proceedings of ACM SIGCOMM 2000, Stockholm, Sweden, pp. 295-306.
2. D. Song and A. Perrig, "Advanced and authenticated marking schemes for IP traceback," Proceedings of IEEE INFOCOM 2001, pp. 878-886.
3. D. Dean, M. Franklin and A. Stubblefield, "An algebraic approach to IP traceback," Networks and Distributed System Security Symposium (NDSS) 2001, pp. 3-12.
4. M. T. Goodrich, "Efficient packet marking for large-scale IP traceback," 9th ACM conference on computer and communications security (CCS) 2002, pp. 117-126.
5. K. Park and H. Lee, "On the effectiveness of probabilistic packet marking for IP traceback under denial of service attack," Proceedings of IEEE INFOCOM 2001, pp. 338-347.
6. M. Adler, "Tradeoffs in probabilistic packet marking for IP traceback," 34th ACM Symposium Theory of Computing (STOC), May 19-21, 2002, pp. 407-418.
7. Hal Burch and Bill Cheswick, "Tracing anonymous packets to their approximate source," 14th Systems Administration Conference, New Orleans, USA, Dec. 2000, pp. 313-322.
8. Robert Stone, "CenterTrack: an IP overlay network for tracking DoS floods," 9th USENIX Security Symposium, August 2000.
9. Steven M. Bellovin, "ICMP Traceback messages," Internet Draft, March 2001.
10. Allison Mankin, Dan Massey, Chien-Lung Wu, S. Felix Wu and Lixia Zhang, "On design and evaluation of 'intention-driven' ICMP traceback," 10th International Conference on Computer Communications and Networks (ICCCN) 2001, pp. 159-165.
11. A. C. Snoeren, C. Partridge, L. A. Sanchez, C. E. Jones, F. Tchakountio, B. Schwartz, S. T. Kent and W. T. Strayer, "Hash-based IP traceback," Proceedings of ACM SIGCOMM, San Diego, California, USA, Aug. 27-31, 2001, pp. 3-14.
12. J. Li, M. Sung, J. Xu and L. Li, "Large-scale IP trace-back in high-speed Internet: practical techniques and theoretical foundation," IEEE symposium on security and privacy (S&P) 2004, Berkeley, California, USA, pp. 115-129.
13. D. Senie, "Network ingress filtering: defeating Denial of Service attacks which employ IP source address spoofing," RFC 2827, 5 2000.
14. J. Li, J. Mirkovic, M. Wang, P. Reiher and Lixia Zhang, "SAVE: source address validity enforcement protocol," Proceedings of IEEE INFOCOM 2002, pp. 1557-1566.
15. R. Mahajan, S Bellvin, S. Floyd, J. Ioannidis, V. Paxson and S. Sherker, "Controlling high bandwidth aggregates in the network," Computer Communications Review (CCR) 32:3, July 2002, pp. 62-73.
16. J. loannidis and Steven M. Bellovin, "Implementing pushback: router-based defense against DDoS attacks," Network and Distributed System Security Symposium (NDSS), 2002.
17. A. Yaar, A. Perrig and D. Song, "Pi: a path identification mechanism to defend against DDoS attacks," IEEE symposium on security and privacy (S&P) 2003, Berkeley, California, USA, pp. 93-107.
18. A. Perrig, D. Song and A. Yaar, "StackPi: a new defensive mechnamism against IP spoofing and DDoS attacks," Technical Report CMU-CS-02-208, Carnegie Mellon University, February 2003.
19. C. Jin, H. Wang and K. G. Shin, "Hop-count filtering: an effective defense against spoofed DDoS traffic," 10th ACM Conference on Computer and Communications Security (CCS), October 27-31, 2003, Washington, DC, USA, pp. 30-41.
20. A. Yaar, A. Perrig and D. Song, "SIFF: a stateless Internet flow filter to mitigate DDoS flooding attacks," IEEE symposium on security and privacy (S&P) 2004, Berkeley, California, USA, pp. 130-143.
21. S. M. Ross, "Stochastic Processes," 2nd ed., John Wiley and Sons, 1996.
22. R. L. Burden and J. D. Faires, "Numercial analysis," 6th edition, Brooks/Cole, 1997.
23. H. Krawczyk, M. Bellare and R. Canetti, "RFC 2104 - HMAC: Key-ed hashing for message authentication," Internet RFC 2104, Feb. 1997
24. M. G. Gouda, E. N. Elnozahy, C. T. Huang and T. M. McGuire, "Hop integrity in computer networks," IEEE/ACM Transactions on Networking, Vol. 10, No. 3, June 2002, pp. 308-319.
25. C. Shannon, D. Moore and K. C. Claffy, "Beyond folklore: observations on fragmented traffic," IEEE/ACM Transactions on Networkings, Vol. 10, No. 6, December 2002, pp. 709-720.