Controlling high bandwidth aggregates in the network-Reference-Cited by-同舟云学术

Controlling high bandwidth aggregates in the network

Published:2002-07 Issue:3 Volume:32 Page:62-73
ISSN:0146-4833
Container-title:ACM SIGCOMM Computer Communication Review
language:en
Short-container-title:SIGCOMM Comput. Commun. Rev.

Author:

Mahajan Ratul¹,Bellovin Steven M.¹,Floyd Sally¹,Ioannidis John¹,Paxson Vern¹,Shenker Scott¹

Affiliation:

1. ICSI Center for Internet Research (ICIR) AT&T Labs research

Abstract

The current Internet infrastructure has very few built-in protection mechanisms, and is therefore vulnerable to attacks and failures. In particular, recent events have illustrated the Internet's vulnerability to both denial of service (DoS) attacks and flash crowds in which one or more links in the network (or servers at the edge of the network) become severely congested. In both DoS attacks and flash crowds the congestion is due neither to a single flow, nor to a general increase in traffic, but to a well-defined subset of the traffic --- an aggregate . This paper proposes mechanisms for detecting and controlling such high bandwidth aggregates. Our design involves both a local mechanism for detecting and controlling an aggregate at a single router, and a cooperative pushback mechanism in which a router can ask upstream routers to control an aggregate. While certainly not a panacea, these mechanisms could provide some needed relief from flash crowds and flooding-style DoS attacks. The presentation in this paper is a first step towards a more rigorous evaluation of these mechanisms.

Publisher

Association for Computing Machinery (ACM)

Subject

Computer Networks and Communications,Software

Link

https://dl.acm.org/doi/pdf/10.1145/571697.571724

Reference28 articles.

1. S. M. Bellovin M. Leech and T. Taylor. ICMP Traceback Messages. Internet-draft: draft-ietf-itrace-01.txt work in progress October 2001. S. M. Bellovin M. Leech and T. Taylor. ICMP Traceback Messages. Internet-draft: draft-ietf-itrace-01.txt work in progress October 2001.

2. J. Borland. Net Video Not Yet Ready for Prime Time. CNET news February 1999. http://news.cnet.com/news/0-1004-200-338361.html. J. Borland. Net Video Not Yet Ready for Prime Time. CNET news February 1999. http://news.cnet.com/news/0-1004-200-338361.html.

3. CERT Web Pages: CERT Advisory CA-1996-21 TCP SYN Flooding and IP Spoofing Attacks. http://www.cert.org/advisories/CA-1996-21.html September 1996. CERT Web Pages: CERT Advisory CA-1996-21 TCP SYN Flooding and IP Spoofing Attacks. http://www.cert.org/advisories/CA-1996-21.html September 1996.

4. CERT Web Pages: CERT Advisory CA-98.01 "smurf" IP Denial-of-Service Attacks. http://www.cert.org/advisories/CA-98.01.smurf.html January 1998. CERT Web Pages: CERT Advisory CA-98.01 "smurf" IP Denial-of-Service Attacks. http://www.cert.org/advisories/CA-98.01.smurf.html January 1998.

5. CERT. CERT Incident Note IN-2000-04 2000. http://www.cert.org/incident_notes/IN-2000-04.html. CERT. CERT Incident Note IN-2000-04 2000. http://www.cert.org/incident_notes/IN-2000-04.html.

Cited by 248 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Leveraging Prefix Structure to Detect Volumetric DDoS Attack Signatures with Programmable Switches;2024 IEEE Symposium on Security and Privacy (SP);2024-05-19

2. The COVID-19 Pandemic, the Digital Transformation, and the Banking System: Empirical Evidence in Greece;Economic Recessions - Navigating Economies in a Volatile World and the Path for Economic Resilience and Development [Working Title];2024-04-02

3. DDoS family: A novel perspective for massive types of DDoS attacks;Computers & Security;2024-03

4. Differentially Private Resource Allocation;Annual Computer Security Applications Conference;2023-12-04

5. AccFlow: Defending against the Low-Rate TCP DoS Attack in Drones;Applied Sciences;2023-10-27