Sciweavers

INFOCOM
2005
IEEE

Intentional dropping: a novel scheme for SYN flooding mitigation

14 years 6 months ago
Intentional dropping: a novel scheme for SYN flooding mitigation
— This paper presents a novel scheme to mitigate the effect of SYN flooding attacks. The scheme, called intentional dropping based filtering, is based on the observation of client’s persistence (i.e., client’s reaction to packet loss by subsequent retransmissions) which is very widespread as it is built in TCP’s connection setup. The main idea is to intentionally drop the first SYN packet of each connection request. Subsequent SYN packet from a request is passed only if it adheres to the TCP’s timeout mechanism. Our analysis shows that the proposed scheme reduces attacker’s effective attack rate significantly with an acceptable increase in connection establishment latency.
Basheer Al-Duwairi, G. Manimaran
Added 25 Jun 2010
Updated 25 Jun 2010
Type Conference
Year 2005
Where INFOCOM
Authors Basheer Al-Duwairi, G. Manimaran
Comments (0)