ETRI-Knowledge Sharing Plaform

KOREAN

BROWSE

Titles

Home Titles Articles
논문 검색
Type SCI
Year ~ Keyword

Detail

List
Journal Article Defending against DDoS Attacks under IP Spoofing Using Image Processing Approach
Cited 1 time in scopus Share share facebook twitter linkedin kakaostory
Authors
Tae Hwan Kim, Dong Seong Kim, Hee Young Jung
Issue Date
2016-07
Citation
IEICE Transactions on Communications, v.E99.B, no.7, pp.1511-1522
ISSN
0916-8516
Publisher
일본, 전자정보통신학회 (IEICE)
Language
English
Type
Journal Article
DOI
https://dx.doi.org/10.1587/transcom.2015EBP3457
Abstract
This paper presents a novel defense scheme for DDoS attacks that uses an image processing method. This scheme especially focused on the prevalence of adjacent neighbor spoofing, called subnet spoofing. It is rarely studied and there is few or no feasible approaches than other spoofing attacks. The key idea is that a "DDoS attack with IP spoofing" is represented as a specific pattern such as a "line" on the spatial image planes, which can be recognized through an image processing technique. Applying the clustering technique to the lines makes it possible to identify multiple attack source networks simultaneously. For the identified networks in which the zombie hosts reside, we then employ a signaturebased pattern extraction algorithm, called a pivoted movement, and the DDoS attacks are filtered by correlating the IP and media access control pairing signature. As a result, this proposed scheme filters attacks without disturbing legitimate traffic. Unlike previous IP traceback schemes such as packet marking and path fingerprinting, which try to diagnose the entire attack path, our proposed scheme focuses on identifying only the attack source. Our approach can achieve an adaptive response to DDoS attacks, thereby mitigating them at the source, while minimizing the disruption of legitimate traffic. The proposed scheme is analyzed and evaluated on the IPv4 and IPv6 network topology from CAIDA, the results of which show its effectiveness.
KSP Keywords
Adaptive response, Clustering Technique, DDoS attacks, Defense Scheme, IP spoofing, IP traceback, IPv4 and IPv6, IPv6 network, Image processing(IP), Image processing method, Image processing techniques
Copyright Policy Privacy Policy

218 Gajeong-ro, Yuseong-gu, Daejeon, 34129, KOREA, Contact: sh.kim@etri.re.kr

2016 Electronics and Telecommunications Research Institute. All rights reserved.

Please refrain from automatic collection of e-mail addresses posted on this homepage.

제1유형