Skip to main content
SpringerLink
Log in
Book cover

International Conference on Computational Science and Its Applications

ICCSA 2004: Computational Science and Its Applications – ICCSA 2004 pp 302–309Cite as

PTrace: Pushback/SVM Based ICMP Traceback Mechanism against DDoS Attack

  • Conference paper

  • 618 Accesses

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 3043))

Abstract

DDoS attack prevent users from accessing services on the target network by spoofing its origin source address with a large volume of traffic. The objective of IP Traceback is to determine the real attack sources, as well as the full path taken by the attack packets. In this paper, we propose a ”advanced ICMP Traceback” mechanism, which is based on the modified Pushback/SVM system(pTrace). Proposed mechanism can detect and control DDoS traffic on router and can generate ICMP Traceback message for reconstructing origin attack source.

This is a preview of subscription content, log in via an institution.

Chapter
USD   29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD   74.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever

Tax calculation will be finalised at checkout

Purchases are for personal use only

Learn about institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Garber, L.: Denial-of-Service attacks trip the Internet. Computer, 12 (April 2000)

    Google Scholar 

  2. Computer Emergency Response Team, TCP SYN flooding and IP Spoofing attacks. CERT Advisory CA-1996-21 (September 1996)

    Google Scholar 

  3. Baba, T., Matsuda, S.: Tracing Network Attacks to Their Sources. IEEE Internet Computing, 20–26 ( March 2002)

    Google Scholar 

  4. Park, K., Lee, H.: On the effectiveness of probabilistic packet marking for IP traceback under denial of service attack. In: Proc. IEEE INFOCOM 2001, pp. 338–347 (2001)

    Google Scholar 

  5. Song, D.X., Perrig, A.: Advanced and Authenticated Marking Scheme for IP Traceback. Proc, Infocom 2, 878–886 (2001)

    Google Scholar 

  6. Bellovin, S., Taylor, T.: ICMP Traceback Messages. RFC 2026, Internet Engineering Task Force (February 2003)

    Google Scholar 

  7. Stone, R.: CenterTrack: an IP overlay network for tracking DoS floods. In: Proc, 9th Usenix Security Symp. (August 2000)

    Google Scholar 

  8. Snoeren, A.C., Partridge, C., Sanchez, L.A., Strayer, W.T., Jones, C.E., chakountio, F.T., Kent, S.T.: Hash-Based IP Traceback. BBN Technical Memorandum 1284, February 7 (2001)

    Google Scholar 

  9. Chang, H.Y., et al.: Deciduous: Decentralized Source Identification for Networkbased Intrusions. In: Proc, 6th IFIP/ IEEE Int’l Symp. Integrated Net., Mmgt. (1999)

    Google Scholar 

  10. Floyd, S., Bellovin, S., Ioannidis, J. Kompella, K., Mahajan, R., Paxson, V.: Pushback Message for Controlling Aggregates in the Network. Internet Draft (2001)

    Google Scholar 

  11. Ferguson, P., Senie, D.: Network ingress Filtering: Defeating denial of service attacks which employ IP source address spoofing. RFC 2827 (May 2000)

    Google Scholar 

  12. Savage, S., Wetherall, D., Karlin, A., Anderson, T.: Practical Network Support for IP Traceback. Technical Report UW-CSE-2000-02-01, Departmentof Computer Science and Engineering, University of Washington

    Google Scholar 

  13. Burges, C.J.C.: A Tutorial on Support Vector Machines for Pattern Recognition. Data Mining and Knowledge Discovery 2, 121–167 (1998)

    Article  Google Scholar 

  14. Belenky, A., Ansari, N.: On IP Traceback. IEEE Communication Magazine, 142–153 (July 2003)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Dept. of Software, Hanshin University, Yangsan-dong, Osan, Gyunggi, Korea

    Hyung-Woo Lee

  2. Hanshin University, Yangsan-dong, Osan, Gyunggi, Korea, 447-791

    Min-Goo Kang & Chang-Won Choi

Authors
  1. Hyung-Woo Lee
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Min-Goo Kang
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Chang-Won Choi
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Department of Chemistry, University of Perugia, Via Elce di Sotto, 8, I-06123, Perugia, Italy

    Antonio Laganá

  2. Department of Computer Science, University of Calgary, 2500 University Drive N.W., T2N 1N4, Calgary, AB, Canada

    Marina L. Gavrilova

  3. William Norris Professor, Head of the Computer Science and Engineering Department, University of Minnesota, USA

    Vipin Kumar

  4. School of Computing, Soongsil University, Seoul, Korea

    Youngsong Mun

  5. OptimaNumerics Ltd., Cathedral House, 23-31 Waring Street, BT1 2DX, Belfast, UK

    C. J. Kenneth Tan

  6. Department of Mathematics and Computer Science, University of Perugia, via Vanvitelli, 1, I-06123, Perugia, Italy

    Osvaldo Gervasi

Rights and permissions

Reprints and permissions

Copyright information

© 2004 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Lee, HW., Kang, MG., Choi, CW. (2004). PTrace: Pushback/SVM Based ICMP Traceback Mechanism against DDoS Attack. In: Laganá, A., Gavrilova, M.L., Kumar, V., Mun, Y., Tan, C.J.K., Gervasi, O. (eds) Computational Science and Its Applications – ICCSA 2004. ICCSA 2004. Lecture Notes in Computer Science, vol 3043. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-24707-4_38

Download citation

  • DOI: https://doi.org/10.1007/978-3-540-24707-4_38

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-22054-1

  • Online ISBN: 978-3-540-24707-4

  • eBook Packages: Springer Book Archive

Publish with us

Policies and ethics

Search

Navigation