BROWSE
Detail
Conference Paper
Defense against TCP Flooding Attack
Cited 1 time in 
Share 
Share
- Authors
- Seungyong Yoon, Jintae Oh, Ikkyun Kim, Jongsoo Jang
- Issue Date
- 2012-07
- Citation
- International Conference on Security and Cryptography (SECRYPT) 2012, pp.416-420
- Language
- English
- Type
- Conference Paper
- Abstract
- This paper generally relates to a DDoS attack prevention method, more particularly, to a Transmission Control Protocol (TCP) flooding attack prevention method which defines several session states based on the type and direction of a packet, tracks the session state for each flow, and detects and responds to a flooding attack. An anti-DDoS system with a capacity of 20Gbps throughput, we call 'ALADDIN' system, was implemented in FPGA based reconfigurable hardware. The possibility of high-speed hardware implementation was shown in this paper. The system was tested using existing DDoS attack tools in 8Gbps of background traffic. According to the test results, TCP flooding attacks could be defended through our proposed method rapidly and accurately.
- KSP Keywords
- Attack prevention, Background Traffic, DDoS attack tools, Flooding attack, Hardware Implementation, High Speed, Prevention method, Reconfigurable Hardware, Transmission Control Protocol(TCP)