Abstract
Provisioning data security and integrity in an IP network requires a detailed understanding of both the architecture and the performance of devices that are used within the network. A router interconnects two or more computer networks, and it becomes most common target for attackers to carry out Denial of Service Attacks. Thus it is necessary to study the effect of resource exhaustion attack on router with respect to its performance and security. In this paper, the proposed framework provides an effective method to evaluate router performance and its resilience against denial of service attacks. The feasibility of the framework has been demonstrated by carrying out different resource exhaustion attacks on device under test (DUT) i.e. router, and the resilience against the attacks is measured using a defined set of performance metrics.
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsPreview
Unable to display preview. Download preview PDF.
References
Antonios, I., Lipsky, L.: On the Relationship between Packet Size and Router Performance for Heavy-Tailed Traffic. In: Southern Connecticut State University, NCA 2004 Proceedings of the Network Computing and Applications, IEEE Press, Los Alamitos (2004)
Adami, D., Carlotti, N., Giordano, S., Pagano, M., Repeti, M.: Performance Analysis of the Control and Forwarding Plane in an MPLS Router. In: IFIP International Federation for Information Processing, pp. 254–262 (2005)
Zeng, H., Zhou, X., Song, B.: On testing of IP routers. In: Parallel and Distributed Computing, Applications and Technologies, p. 61 (2003)
Mirkovic, J., Reiher, P.: A taxonomy of DDoS attack and DDoS defense mechanisms. ACM SIGCOMM Comp. Comm. Review 34(2), 39–53 (2004)
Xu, Y., Gurin, R.: On the robustness of router-based denial-of-service (DoS) defense systems. ACM SIGCOMM Comp. Comm. Review 35(3) (2005)
Elmiligi, M., El-Kharash, G.: Performance Analysis of Networks-on-Chip Routers. In: 2nd Int’l Design and Test Workshop, IDT 2007, p. 232 (2007)
Hu, Y.-H., Choi, H., Choi, H.-A.: Packet Filtering for Congestion Control under DoS Attacks. IEEE Press, Charlotte (2004)
Vladimirov, A.A., Vizulis, J.N., Mikhailovsky, A.A.: Hacking Exposed Cisco Networks: Cisco Security Secrets and Solutions (2006)
Schudel, G., Smith, D.J.: Router Security Strategies - Securing IP Network Traffic Planes. Cisco Press (2008)
Portable product sheet- Router Performance, http://www.cisco.com/
Bandwidth, Packets per Second, and Other Network Performance Metrics, http://www.cisco.com/
Weidong, W.U.: Packet Forwarding Technologies (2008)
IxExplore, IxLoad, http://www.ixiacom.com/
Active Network Security Tool-hping, http://www.hping.org/
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2011 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Karande, V.M., Narayanan, S.N., Pais, A.R., Balakrishnan, N. (2011). Testing Resilience of Router against Denial of Service Attacks. In: Wyld, D.C., Wozniak, M., Chaki, N., Meghanathan, N., Nagamalai, D. (eds) Trends in Network and Communications. WeST NeCoM WiMoN 2011 2011 2011. Communications in Computer and Information Science, vol 197. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-22543-7_11
Download citation
DOI: https://doi.org/10.1007/978-3-642-22543-7_11
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-22542-0
Online ISBN: 978-3-642-22543-7
eBook Packages: Computer ScienceComputer Science (R0)