Novel defense mechanism against SYN flooding attacks in IP networks

  title={Novel defense mechanism against SYN flooding attacks in IP networks},
  author={Mohamad Chouman and Haidar Safa and Hassan Ali Artail},
  journal={Canadian Conference on Electrical and Computer Engineering, 2005.},
SYN flooding exploits the TCP three-way handshake process by sending many connection requests with spoofed source IP addresses to the victim. This keeps the victim from handling legitimate requests by causing it to populate its backlog queue with forged TCP connections. In this paper we propose a novel defense mechanism that makes use of the edge routers of the spoofed IP addresses networks. These edge routers determine whether the incoming SYN-ACK segment is valid or not by maintaining a… CONTINUE READING


Publications citing this paper.
Showing 1-4 of 4 extracted citations


Publications referenced by this paper.