MAFIC: Adaptive Packet Dropping for Cutting Malicious Flows to Push Back DDoS Attacks

14 years 5 months ago

Download www.itsec.gov.cn

— In this paper, we propose a new approach called MAFIC (MAlicious Flow Identiﬁcation and Cutoff) to support adaptive packet dropping to fend off DDoS attacks. MAFIC works by judiciously issuing lightweight probes to ﬂow sources to check if they are legitimate. Through such probing, MAFIC would drop malicious attack packets with high accuracy while minimizes the loss on legitimate trafﬁc ﬂows. Our NS-2 based simulation indicates that MAFIC algorithm drops packets from unresponsive potental attack ﬂows with an accuracy as high as 99% and reduces the loss of legitimate ﬂows to less than 3%. Furthermore, the false positive and negative rates are low–only around 1% for a majority of the cases.

Yu Chen, Yu-Kwong Kwok, Kai Hwang

Real-time Traffic

Distributed And Parallel Computing | ICDCSW 2005 | Legitimate Trafﬁc ﬂows | Malicious Attack Packets | MAlicious Flow Identiﬁcation |

claim paper

Post Info
More Details (n/a)

Added	24 Jun 2010
Updated	24 Jun 2010
Type	Conference
Year	2005
Where	ICDCSW
Authors	Yu Chen, Yu-Kwong Kwok, Kai Hwang

Comments (0)

Sciweavers

MAFIC: Adaptive Packet Dropping for Cutting Malicious Flows to Push Back DDoS Attacks

Distributed And Parallel Computing | ICDCSW 2005 | Legitimate Trafﬁc ﬂows | Malicious Attack Packets | MAlicious Flow Identiﬁcation |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers