High-speed router filter for blocking TCP flooding under DDoS attack

Yoohwan Kim, Ju Yeon Jo, H. Jonathan Chao, Frank Merat

Research output: Contribution to conferencePaper

Abstract

We present a hardware solution that can reliably block most of the malicious TCP traffic at the edge routers while passing the legitimate TCP traffic during the Distributed Denial-of-Service (DDoS) attack. By allocating bandwidths separately for TCP, and TCP portion of the bandwidth can be protected. In simulation study, the filter successfully blocked 99.9% of the attack traffic while legitimate traffic showed nearly identical performance as in the non-attacked condition. This filtering is transparent to the hosts or routers and a filtering device can be easily attached to router ports.

Original languageEnglish (US)
Pages183-190
Number of pages8
StatePublished - Jun 12 2003
Event22nd IEEE International Performance, Computing, and Communications Conference - Phoenix, AZ, United States
Duration: Apr 9 2003Apr 11 2003

Other

Other22nd IEEE International Performance, Computing, and Communications Conference
CountryUnited States
CityPhoenix, AZ
Period4/9/034/11/03

    Fingerprint

ASJC Scopus subject areas

  • Media Technology

Cite this

Kim, Y., Jo, J. Y., Chao, H. J., & Merat, F. (2003). High-speed router filter for blocking TCP flooding under DDoS attack. 183-190. Paper presented at 22nd IEEE International Performance, Computing, and Communications Conference, Phoenix, AZ, United States.