In this paper, we propose traceroute-based target link flooding attack (TLFA) detection scheme by analyzing hop count to the destination. Since the destinations of the attacker's traceroutes tend to be concentrated around a target link, classifying traceroutes by hop count can highlight attacker's traceroute. Thus, the proposed scheme can detect the attack even if an attacker slowly executes traceroutes and the ratio of legitimate user's traceroutes is high. By computer simulations, we show our scheme has more robustness compared with the conventional scheme.
scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.