Exit Control Based Cooperative Defense Mechanism to Minimize DDoS Attacks that Mimic Flash Crowds
Main Article Content
Abstract
The Internet is considered as main infrastructure of the global information society. Therefore, the availability of Internet is very
critical. Distributed Denial-of-Service (DDoS) attacks tend to degrade internet services severely. In order to effectively reduce the influence of
DDoS attacks and its severity on the entire internet, we need Cooperative defense technique that can block the attackers’ requests on the edge
routers of ISP boundary. In this paper, we have proposed a ISPs’ Cooperation based DDoS attack mitigation approach, which makes use of good
characteristics of existing defense scenarios such as D-WARD and co-operation among the ISP’s to make the defense distributed. The suggested
topology contains gateway on every edge router of the ISP and validate every client’s request by Exit Control Mechanism on every first request
made from a new IP address. The puzzles can only be passed by humans and not by the bots, and thus it blocks all the non-genuine packets
inside the ISP boundary & saves the entire internet’s bandwidth from the attack traffic.
Â
Â
Keywords: DDoS, Defense, Cooperative, Puzzle, Edge router.
Downloads
Article Details
COPYRIGHT
Submission of a manuscript implies: that the work described has not been published before, that it is not under consideration for publication elsewhere; that if and when the manuscript is accepted for publication, the authors agree to automatic transfer of the copyright to the publisher.
Authors who publish with this journal agree to the following terms:
- Authors retain copyright and grant the journal right of first publication with the work simultaneously licensed under a Creative Commons Attribution License that allows others to share the work with an acknowledgment of the work's authorship and initial publication in this journal.
- Authors are able to enter into separate, additional contractual arrangements for the non-exclusive distribution of the journal's published version of the work (e.g., post it to an institutional repository or publish it in a book), with an acknowledgment of its initial publication in this journal.
- Authors are permitted and encouraged to post their work online (e.g., in institutional repositories or on their website) prior to and during the submission process, as it can lead to productive exchanges, as well as earlier and greater citation of published work
- The journal allows the author(s) to retain publishing rights without restrictions.
- The journal allows the author(s) to hold the copyright without restrictions.