Against Distributed Denial-of-Service Attacks: Difference between revisions

From Simple Sci Wiki
Jump to navigation Jump to search
VisualWikitext
Created page with "Title: Against Distributed Denial-of-Service Attacks Research Question: How can we protect public-access sites like web servers and FTP servers from distributed denial-of-service (DDoS) attacks while minimizing the impact on network resources? Methodology: The researchers proposed Active Internet Traffic Filtering (AITF), an automated mechanism for filtering malicious traffic during DDoS attacks. AITF aims to protect victims' resources by efficiently managing the "filt..."
 
No edit summary
 
Line 1: Line 1:
Title: Against Distributed Denial-of-Service Attacks
Title: Against Distributed Denial-of-Service Attacks


Research Question: How can we protect public-access sites like web servers and FTP servers from distributed denial-of-service (DDoS) attacks while minimizing the impact on network resources?
Research Question: How can we protect public-access sites from highly distributed denial-of-service (DDoS) attacks while efficiently managing the available filtering resources?


Methodology: The researchers proposed Active Internet Traffic Filtering (AITF), an automated mechanism for filtering malicious traffic during DDoS attacks. AITF aims to protect victims' resources by efficiently managing the "filtering capacity" of the internet. It requires a reasonable amount of resources from each participating router, such as a few thousand entries of TCAM memory and a few gigabytes of DRAM memory. AITF also requires an efficient traceback mechanism to identify the source of the attack.
Methodology: The researchers proposed Active Internet Traffic Filtering (AITF), a mechanism that protects public-access sites from DDoS attacks by causing undesired traffic to be blocked as close as possible to its sources. They identified filters as a scarce resource and showed that AITF protects a significant amount of the victim's bandwidth, while requiring from each participating router a number of filters that can be accommodated by today's routers.


Results: AITF successfully protects a significant amount of the victim's bandwidth while requiring a reasonable number of filters that can be accommodated by today's routers. The researchers identified two main challenges in using automatic filter propagation to protect the internet from DDoS attacks: managing the "filtering capacity" of the internet and preventing malicious nodes from abusing the mechanism. AITF addresses these challenges effectively.
Results: The study found that AITF is incrementally deployable, offering substantial benefits to the first sites that deploy it. The researchers demonstrated that AITF can effectively block attack traffic from a large number of sources, while minimizing the impact on legitimate traffic.


Implications: AITF is a promising solution for protecting public-access sites from DDoS attacks. It requires minimal resources from participating routers and can efficiently manage the "filtering capacity" of the internet. However, it relies on an efficient traceback mechanism, which may have its own limitations and challenges. Further research and development are needed to improve the effectiveness and efficiency of AITF and similar mechanisms.
Implications: The implementation of AITF can significantly enhance the security of public-access sites against DDoS attacks. By causing undesired traffic to be blocked as close as possible to its sources, AITF efficiently utilizes the available filtering resources and minimizes the impact on legitimate traffic. This makes it an attractive solution for protecting critical online services from highly distributed and sophisticated attacks.


Link to Article: https://arxiv.org/abs/0403042v1
Link to Article: https://arxiv.org/abs/0403042v2
Authors:  
Authors:  
arXiv ID: 0403042v1
arXiv ID: 0403042v2


[[Category:Computer Science]]
[[Category:Computer Science]]
[[Category:Traffic]]
[[Category:Aitf]]
[[Category:Aitf]]
[[Category:Attacks]]
[[Category:From]]
[[Category:From]]
[[Category:Attacks]]
[[Category:As]]
[[Category:Internet]]
[[Category:Filtering]]

Latest revision as of 15:39, 24 December 2023

Title: Against Distributed Denial-of-Service Attacks

Research Question: How can we protect public-access sites from highly distributed denial-of-service (DDoS) attacks while efficiently managing the available filtering resources?

Methodology: The researchers proposed Active Internet Traffic Filtering (AITF), a mechanism that protects public-access sites from DDoS attacks by causing undesired traffic to be blocked as close as possible to its sources. They identified filters as a scarce resource and showed that AITF protects a significant amount of the victim's bandwidth, while requiring from each participating router a number of filters that can be accommodated by today's routers.

Results: The study found that AITF is incrementally deployable, offering substantial benefits to the first sites that deploy it. The researchers demonstrated that AITF can effectively block attack traffic from a large number of sources, while minimizing the impact on legitimate traffic.

Implications: The implementation of AITF can significantly enhance the security of public-access sites against DDoS attacks. By causing undesired traffic to be blocked as close as possible to its sources, AITF efficiently utilizes the available filtering resources and minimizes the impact on legitimate traffic. This makes it an attractive solution for protecting critical online services from highly distributed and sophisticated attacks.

Link to Article: https://arxiv.org/abs/0403042v2 Authors: arXiv ID: 0403042v2

Retrieved from "https://simplesci.org/index.php?title=Against_Distributed_Denial-of-Service_Attacks&oldid=3155"