Intentional dropping: a novel scheme for SYN flooding mitigation

14 years 5 months ago

Download vulcan.ee.iastate.edu

— This paper presents a novel scheme to mitigate the eﬀect of SYN ﬂooding attacks. The scheme, called intentional dropping based ﬁltering, is based on the observation of client’s persistence (i.e., client’s reaction to packet loss by subsequent retransmissions) which is very widespread as it is built in TCP’s connection setup. The main idea is to intentionally drop the ﬁrst SYN packet of each connection request. Subsequent SYN packet from a request is passed only if it adheres to the TCP’s timeout mechanism. Our analysis shows that the proposed scheme reduces attacker’s eﬀective attack rate signiﬁcantly with an acceptable increase in connection establishment latency.

Basheer Al-Duwairi, G. Manimaran

Real-time Traffic

Communications | INFOCOM 2005 | Subsequent SYN Packet | SYN Packet | ﬁrst Syn Packet |

claim paper

Post Info
More Details (n/a)

Added	25 Jun 2010
Updated	25 Jun 2010
Type	Conference
Year	2005
Where	INFOCOM
Authors	Basheer Al-Duwairi, G. Manimaran

Comments (0)

Sciweavers

Intentional dropping: a novel scheme for SYN flooding mitigation

Communications | INFOCOM 2005 | Subsequent SYN Packet | SYN Packet | ﬁrst Syn Packet |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers