PTrace: Pushback/SVM Based ICMP Traceback Mechanism against DDoS Attack

Lee, Hyungwoo; Kang, Min Ji; Choi, Chang-Won

doi:10.1007/978-3-540-24707-4_38

Cited by 1 publication

(1 citation statement)

References 8 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…3) ICMP Traceback: Bellovin et al proposed iTrace where routers send ICMP messages to the destination address of packets they forward so that the destination can see the path which the packet followed [109]. ICMP traceback can also be probabilistic in that the chance of a router generating an ICMP message is small, thus lowering overheads in a similar way to PPM [129], [158], [159]. Mankin et al improved iTrace with "intentiondriven" traceback after they noticed that the chance of a router picking an attack packet close to the attacker is much smaller than closer to the victim for certain DoS attacks [129].…”

Section: Savage Et Al Introduced Probabilistic Packet Markingmentioning

confidence: 99%

Amplification and DRDoS Attack Defense -- A Survey and New Perspectives

Ryba,

Orlinski,

Wählisch

et al. 2015

Preprint

View full text Add to dashboard Cite

The severity of amplification attacks has grown in recent years with recent attacks involving several hundreds of Gbps attack volume. In this paper, we survey the threat of amplification attacks and compare a wide selection of different proposals for preventing, detecting, and filtering amplification attack traffic. Since source IP spoofing plays an important part in almost all of the amplification attacks surveyed, we also survey state-ofthe-art of spoofing defenses as well as approaches to trace spoofing sources. This work acts as an introduction into many different types of amplification attacks and source IP address spoofing. By combining previous works into a single comprehensive discussion we hope to prevent redundant work and encourage others to find practical solutions for defending against future amplification attacks.

show abstract