Reflective Probabilistic Packet Marking Scheme for IP Traceback (特集:新たな脅威に立ち向かうコンピュータセキュリティ技術)
スポンサーリンク
概要
- 論文の詳細を見る
This paper describes the design and implementation of Reflective Probabilistic Packet Marking (RPPM) scheme, which is a traceback scheme against distributed denial-of-service (DDoS) attacks. Attacks include traffic laundered by reflectors which are sent false requests by attackers posing as a victim. Reflectors are among the hardest security problems on today's Internet. One promising solution to tracing the origin of attacks, the probabilistic packet marking (PPM) scheme, has proposed. However, conventional PPM cannot work against reflector attacks-reflector problem. Also, it encodes a mark into IP Identification field, this disables the use of ICMP-encoding problem. RPPM is a solution to both the reflector and encoding problem. We have extended PPM to render reflectors ineffectual by reflecting marking statistics of incoming packets at reflectors in order to trace the origin of the attacks. Furthermore, we have encoded a mark into the IP option field without reducing necessary information. Thus, RPPM can traceback beyond reflectors, ensures ICMP-compatibility, and eliminates possibility of failure in attack path reconstruction. Simulation results and our implementation based on Linux demonstrated that RPPM retains the semantics of conventional PPM on a path between an attacker and a reflector, and its performance is feasible for practice.
- 2003-08-15
著者
-
TOKUDA HIDEYUKI
Faculty of Environmental Information, Keio University
-
Tokuda Hideyuki
Faculty Of Environmental Information Keio University
-
Tokuda Hideyuki
Graduate School Of Media And Governance Keio University
-
NISHIO NOBUHIKO
Graduate School of Media and Governance, Keio University
-
HARASHIMA NORIYUKI
ACCESS Co., LTD.
-
Tokuda H
Graduate School Of Media And Governance Keio University:faculty Of Environmental Information Keio Un
-
Nishio Nobuhiko
Graduate School Of Media And Governance Keio University:"intelligent Cooperation And Control&qu
-
Tokuda Hideyuki
Faculty Of Environment And Information Studies Keio University
-
Harashima Noriyuki
Access Co. Ltd.
-
Tokuda Hideyuki
Fac. Of Environment And Information Studies Keio Univ.
関連論文
- MobileSocket:Session Layer Continuous Operation Support for Java Applications (特集 マルチメディア通信プロトコル)
- The Enhancement on Communication Stability in MANETs with Unit Disk Graph Model(Challenges in Ad-hoc and Multi-hop Wireless Communications)
- Efficient Route Discovery Scheme in Ad Hoc Networks Using Routing History(Network, Ubiquitous Networks)
- Lightweight Forwarding for Geometric Routing Protocols in Mobile Ad Hoc Networks
- Lightweight Forwarding for Geometric Routing Protocols in Mobile Ad Hoc Networks
- Lightweight Forwarding for Geometric Routing Protocols in Mobile Ad Hoc Networks
- Lightweight Forwarding for Geometric Routing Protocols in Mobile Ad Hoc Networks
- A Proximity-Based Path Compression Protocol for Mobile Ad Hoc Networks(Ad Hoc Network)(Networking Technologies for Mobile Internet Systems)
- A Flexible Modeling Engine Enabling Inter-service Management
- A Flexible Modeling Engine Enabling Inter-service Management
- グループウェアツールキット Possession System:Middleware for Adaptive Collaborative Applications (特集 コラボレーション支援)
- Detection of Congestion Signals from Relative One-Way Delay
- TCP-Rate-Probing-Based Adaptation for Continuous Media Communications (特集 マルチメディア通信プロトコル)
- A Neighbor-state Based Congestion Control Scheme for Adaptive Bandwidth Sharing (特集 マルチメディア通信プロトコル)
- Software Traffic Management Architecture for Multimedia Flows over a Real-Time Microkernel
- MobileSocket : Enhanced Socket Library for Application Layer Continuous Operations
- MobileSocket:Enhanced Socket Library for Application Layer Continuous Operations (モバイルシステム)
- EFR:Efficient Fast Retransmit Scheme for TCP in a Wireless Multiple Access (特集:マルチメディア通信と分散処理)
- On Dynamic Service Integration in VNA Architecture (Special Section on Multi-dimensional Mobile Information Networks)
- Network Subsystem Architecture Alternatives for Distributed Real-time System (特集:マルチメディア通信と分散処理)
- Reflective Probabilistic Packet Marking Scheme for IP Traceback (特集:新たな脅威に立ち向かうコンピュータセキュリティ技術)
- Activity Recorder : A Device to Record User's Activities Using RFIDs and Sensors(Ubiquitous Sensor Networks)
- Design and Implementation of Socket-level Bandwidth Aggregation Mechanism for Mobile Networking Environments (特集:シームレスコンピューティングとその応用技術)
- RTC-Threads: A User-Level Real-Time Threads Package for Multimedia Systems
- TCP Redirection for Adaptive Mobility Support in Stateful Applications (Special Issue on Internet Technology and Its Applications)
- u-Snap: A Framework for Describing Snapshot-Based Ubiquitous Applications(Software Platform Technologies, Ubiquitous Networks)
- u-Con: A Smart Space Remote Control System(Poster Session 5 (Community Computing Networks 2))
- UIGI: A Unified Interaction Gesture Interface for Home Computing Environment (日韓合同ワークショップ 1st Korea-Japan Joint Workshop on Ubiquitous Computing and Networking Systems (ubiCNS 2005))
- Design and implementation of a user-level real-time network engine
- Catch Me: Multi-Camera Person Tracking System for Indoor Public Space (日韓合同ワークショップ 1st Korea-Japan Joint Workshop on Ubiquitous Computing and Networking Systems (ubiCNS 2005))
- People Identification Based on Sitting Patterns
- Ubiquitous Services : Enhancing Cyber-Physical Coupling with Smart Enablers
- People Identification Based on Sitting Patterns
- SenseCampus: Sensor enabled Cyber-Physical Coupling for Ubiquitous Services
- Design and Implementation of Socket-level Bandwidth Aggregation Mechanism for Mobile Networking Environments
- Pattern-based Matrix-size Optimization Algorithm for Compressive Sensing in Real-world Body Sensor Networks
- Pattern-based Matrix-size Optimization Algorithm for Compressive Sensing in Real-world Body Sensor Networks
- Pattern-based Matrix-size Optimization Algorithm for Compressive Sensing in Real-world Body Sensor Networks
- Pattern-based Matrix-size Optimization Algorithm for Compressive Sensing in Real-world Body Sensor Networks
- F-CODE : A data abstraction approach for Compressive Sensing in Mobile Sensing Application