Presentation | 2016-12-15 Generation of Dropping Request Message by Identifying Source Addresses and Attributes of Attacking Packets Mamoru Yogosawa, Yuki Miyaguchi, Ken Eguchi, Yuya Kishi, Tsuyoshi Ishikawa, Teruaki Tsutsumi, Kaoru Sano, Hirofumi Yamaki, Yoichiro Ueno, Hiroyuki Kimiyama, Naoki Yonezaki, Ryoichi Sasaki, Hiroshi Kobayashi, |
---|---|
PDF Download Page | PDF download Page Link |
Abstract(in Japanese) | (See Japanese page) |
Abstract(in English) | Cyber-attacks have become increasingly radicalized and sophisticated in recent years. It naturally lead us to switching from the "individual security" to the "global security" that can prevent those attacks. From this point of view, the authors have already proposed an autonomous and distributed security infrastructure aiming at enhancing the security of the entire Internet. Even if an affected node receives multiple attacks, identifying the source addresses and packet header information of the attack packets, it sends dropping request messages toward those addresses. Being distributed on the Internet, it is possible for the MLB (Multi-Layer Binding) routers on the reverse path to prevent the attack packets. As a result, it is dropped at the MLB router closest to the attackers. In this report, we show that TCAM-oriented dropping request messages can be generated by tree analysis which identifies source address of attack packets and attribute information of them by bitwise exclusive OR operation on the header information of the packets. We conducted experiments to shut off DDoS attacks on our testbed, then it was confirmed that erroneous drop of normal packets can be avoided. |
Keyword(in Japanese) | (See Japanese page) |
Keyword(in English) | countermeasure against cyber-attacks / autonomous security infrastructure / MLBR / dropping request message |
Paper # | IA2016-69 |
Date of Issue | 2016-12-08 (IA) |
Conference Information | |
Committee | IA / IN |
---|---|
Conference Date | 2016/12/15(2days) |
Place (in Japanese) | (See Japanese page) |
Place (in English) | Hiroshima city university |
Topics (in Japanese) | (See Japanese page) |
Topics (in English) | Performance Analysis and Simulation, Robustness, Traffic and Throughput Measurement, Quality of Service (QoS) Control, Congestion Control, Overlay Network/P2P, IPv6, Multicast, Routing, DDoS, etc. |
Chair | Ken-ichi Yoshida(Univ. of Tsukuba) / Katsunori Yamaoka(Tokyo Inst. of Tech.) |
Vice Chair | Hiroyuki Osaki(Kwansei Gakuin Univ.) / Masahiro Jibiki(NICT) / Tomoki Yoshihisa(Osaka Univ.) / Takuji Kishida(NTT) |
Secretary | Hiroyuki Osaki(Tokyo Inst. of Tech.) / Masahiro Jibiki(Ritsumeikan Univ.) / Tomoki Yoshihisa(KDDI R&D Labs.) / Takuji Kishida(NTT) |
Assistant | Yusuke Sakumoto(Tokyo Metropolitan Univ.) / Yuichiro Hei(KDDI R&D Labs.) / Toshiki Watanabe(NEC) / Kunitake Kaneko(Keio Univ.) / Takashi Natsume(NTT) |
Paper Information | |
Registration To | Technical Committee on Internet Architecture / Technical Committee on Information Networks |
---|---|
Language | JPN |
Title (in Japanese) | (See Japanese page) |
Sub Title (in Japanese) | (See Japanese page) |
Title (in English) | Generation of Dropping Request Message by Identifying Source Addresses and Attributes of Attacking Packets |
Sub Title (in English) | |
Keyword(1) | countermeasure against cyber-attacks |
Keyword(2) | autonomous security infrastructure |
Keyword(3) | MLBR |
Keyword(4) | dropping request message |
1st Author's Name | Mamoru Yogosawa |
1st Author's Affiliation | Tokyo Denki University(Tokyo Denki Univ.) |
2nd Author's Name | Yuki Miyaguchi |
2nd Author's Affiliation | Tokyo Denki University(Tokyo Denki Univ.) |
3rd Author's Name | Ken Eguchi |
3rd Author's Affiliation | Tokyo Denki University(Tokyo Denki Univ.) |
4th Author's Name | Yuya Kishi |
4th Author's Affiliation | Tokyo Denki University(Tokyo Denki Univ.) |
5th Author's Name | Tsuyoshi Ishikawa |
5th Author's Affiliation | Tokyo Denki University(Tokyo Denki Univ.) |
6th Author's Name | Teruaki Tsutsumi |
6th Author's Affiliation | Tokyo Denki University(Tokyo Denki Univ.) |
7th Author's Name | Kaoru Sano |
7th Author's Affiliation | Tokyo Denki University(Tokyo Denki Univ.) |
8th Author's Name | Hirofumi Yamaki |
8th Author's Affiliation | Tokyo Denki University(Tokyo Denki Univ.) |
9th Author's Name | Yoichiro Ueno |
9th Author's Affiliation | Tokyo Denki University(Tokyo Denki Univ.) |
10th Author's Name | Hiroyuki Kimiyama |
10th Author's Affiliation | Tokyo Denki University(Tokyo Denki Univ.) |
11th Author's Name | Naoki Yonezaki |
11th Author's Affiliation | Tokyo Denki University(Tokyo Denki Univ.) |
12th Author's Name | Ryoichi Sasaki |
12th Author's Affiliation | Tokyo Denki University(Tokyo Denki Univ.) |
13th Author's Name | Hiroshi Kobayashi |
13th Author's Affiliation | Tokyo Denki University(Tokyo Denki Univ.) |
Date | 2016-12-15 |
Paper # | IA2016-69 |
Volume (vol) | vol.116 |
Number (no) | IA-362 |
Page | pp.pp.35-40(IA), |
#Pages | 6 |
Date of Issue | 2016-12-08 (IA) |