Presentation | 2009-07-17 Queue Management Scheme to Restrict Pulsing Denial-of-Service Attacks Based on the Information of Dropped Packets Yuki IWANARI, Kenji YOKOTA, Takuya ASAKA, Tatsuro TAKAHASHI, |
---|---|
PDF Download Page | PDF download Page Link |
Abstract(in Japanese) | (See Japanese page) |
Abstract(in English) | In the future, pulsing denial-of-service (PDoS) attacks will pose a serious problem on the Internet. The attacker sends high-rate traffic in short time periodically. As a result, because of the packet drops of legitimate TCP flows, they degrade their throughput. Conventional methods have a problem that bursty short-lived TCP flows may be mistaken for PDoS attacks and their throughput will be decreased. This paper proposes queuing management scheme to restrict PDoS attacks to overcome the problem above. In proposed method, malicious flows are identified by the information of dropped packets and the number of their packets in buffer is limited. This leads legitimate TCP flows secure their throughput and bursty TCP flows can get some throughput. |
Keyword(in Japanese) | (See Japanese page) |
Keyword(in English) | DoS Attacks / PDoS Attacks / Queuing Management |
Paper # | NS2009-57 |
Date of Issue |
Conference Information | |
Committee | NS |
---|---|
Conference Date | 2009/7/9(1days) |
Place (in Japanese) | (See Japanese page) |
Place (in English) | |
Topics (in Japanese) | (See Japanese page) |
Topics (in English) | |
Chair | |
Vice Chair | |
Secretary | |
Assistant |
Paper Information | |
Registration To | Network Systems(NS) |
---|---|
Language | JPN |
Title (in Japanese) | (See Japanese page) |
Sub Title (in Japanese) | (See Japanese page) |
Title (in English) | Queue Management Scheme to Restrict Pulsing Denial-of-Service Attacks Based on the Information of Dropped Packets |
Sub Title (in English) | |
Keyword(1) | DoS Attacks |
Keyword(2) | PDoS Attacks |
Keyword(3) | Queuing Management |
1st Author's Name | Yuki IWANARI |
1st Author's Affiliation | Graduate School of Informatics, Kyoto University() |
2nd Author's Name | Kenji YOKOTA |
2nd Author's Affiliation | Graduate School of Informatics, Kyoto University |
3rd Author's Name | Takuya ASAKA |
3rd Author's Affiliation | Graduate School of Informatics, Kyoto University |
4th Author's Name | Tatsuro TAKAHASHI |
4th Author's Affiliation | Graduate School of Informatics, Kyoto University |
Date | 2009-07-17 |
Paper # | NS2009-57 |
Volume (vol) | vol.109 |
Number (no) | 129 |
Page | pp.pp.- |
#Pages | 6 |
Date of Issue |