DDoS attack defense architecture using active network technology

Choong Seon Hong, Yoshiaki Kasahara, Dea Hwan Lee

    Research output: Contribution to journalArticlepeer-review

    Abstract

    To solve the congestion problem, network nodes at near the zombies need to filter the attack traffic. But the amounts of attack packets are small at upstream node and it is hard to detect an occurrence of an attack. In this case, the network node near the protected site should perform attack detection. Our proposed system uses active network technology and allowing detecting attack at active router near protected server. This detecting process uses dynamic, adaptive detecting algorithm. Elementary classification will reduce network congestion and adaptive classification will reduce error detecting rate. Signatures which are created by these two classifications are transferred to other active routers. And then they perform filtering process based on signatures.

    Original languageEnglish
    Pages (from-to)915-923
    Number of pages9
    JournalLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
    Volume3043
    DOIs
    Publication statusPublished - 2004

    All Science Journal Classification (ASJC) codes

    • Theoretical Computer Science
    • Computer Science(all)

    Fingerprint

    Dive into the research topics of 'DDoS attack defense architecture using active network technology'. Together they form a unique fingerprint.

    Cite this