A dynamic probabilistic marking approach with multi-tag for tracing ICMP-based DoS attacks

Abstract

This paper presents a dynamic probabilistic marking algorithm with multiple routing address tags, which allows the victim to traceback the origin of ICMP (Internet Control Message Protocol)-based direct and reflective DoS attacks. The proposed approach makes full use of scalable data space of ICMP packet to achieve multiple information tags. The difference between this proposal and previous proposals lies in two points. First, the number of packets needed by the victim to reconstruct the attack path is greatly reduced because of three key mechanisms: multi-tag, uniform leftover probability, and tag location choice based on the module of accommodated tag numbers within a packet. Second, the true origin of both direct and reflective ICMP-based DoS attacks can be traced.

DOI: 10.1007/s11859-013-0961-5

Extracted Key Phrases

3 Figures and Tables

Cite this paper

@article{Chen2013ADP, title={A dynamic probabilistic marking approach with multi-tag for tracing ICMP-based DoS attacks}, author={Xiuzhen Chen and Jin Ma and Shenghong Li and Ken Chen and Ahmed Serhrouchni}, journal={Wuhan University Journal of Natural Sciences}, year={2013}, volume={18}, pages={484-488} }