Please use this identifier to cite or link to this item:
https://dspace.iiti.ac.in/handle/123456789/4976
Full metadata record
| DC Field | Value | Language |
|---|---|---|
| dc.contributor.author | Hubballi, Neminath | en_US |
| dc.date.accessioned | 2022-03-17T01:00:00Z | - |
| dc.date.accessioned | 2022-03-17T15:36:18Z | - |
| dc.date.available | 2022-03-17T01:00:00Z | - |
| dc.date.available | 2022-03-17T15:36:18Z | - |
| dc.date.issued | 2017 | - |
| dc.identifier.citation | Hubballi, N., & Tripathi, N. (2017). An event based technique for detecting spoofed IP packets. Journal of Information Security and Applications, 35, 32-43. doi:10.1016/j.jisa.2017.04.001 | en_US |
| dc.identifier.issn | 2214-2134 | - |
| dc.identifier.other | EID(2-s2.0-85019244469) | - |
| dc.identifier.uri | https://doi.org/10.1016/j.jisa.2017.04.001 | - |
| dc.identifier.uri | https://dspace.iiti.ac.in/handle/123456789/4976 | - |
| dc.description.abstract | Distributed Denial of Service (DDoS) attacks are one of the prominent network security attacks. In DDoS attack several machines send large amount of network traffic to the victim using spoofed IP address. Unfortunately there is no reliable technique to detect spoofed IP packets. In this paper we argue that, a proactive detection of spoofed IP packets will help in predicting DDoS attacks. In this paper we describe an event based detection method to identify spoofed IP packets. Our method works by proactively probing received packets for genuineness. Active probing technique uses inconsistencies in TTL values of received packets to decide whether the first packet was spoofed or genuine. We enumerate several possible spoofing scenarios with our detection method in place and identify its type based on the response to probing. Further, we study limitations of event based method and discuss ways to overcome those. We design and experiment with all spoofing scenarios in a real network setup and report the results. With few optimizations done to the probing strategy, the overhead incurred can be minimized considerably, which makes the proposed technique useful for detecting DDoS attacks. © 2017 | en_US |
| dc.language.iso | en | en_US |
| dc.publisher | Elsevier Ltd | en_US |
| dc.source | Journal of Information Security and Applications | en_US |
| dc.subject | Discrete event simulation | en_US |
| dc.subject | Internet protocols | en_US |
| dc.subject | Network security | en_US |
| dc.subject | Active probing techniques | en_US |
| dc.subject | Detection methods | en_US |
| dc.subject | Distributed denial of service attack | en_US |
| dc.subject | Event-based | en_US |
| dc.subject | Event-based method | en_US |
| dc.subject | IP addresss | en_US |
| dc.subject | Network traffic | en_US |
| dc.subject | Probing strategies | en_US |
| dc.subject | Denial-of-service attack | en_US |
| dc.title | An event based technique for detecting spoofed IP packets | en_US |
| dc.type | Journal Article | en_US |
| Appears in Collections: | Department of Computer Science and Engineering | |
Files in This Item:
There are no files associated with this item.
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.
Altmetric Badge: