Deployable Overlay Network for Defense Against Distributed SYN Flood Attacks

Distributed Denial-of-Service attacks on public servers have recently become more serious. Most of them are SYN flood attacks, since the malicious attackers can easily exploit the TCP specification to generate traffic making public servers unavailable. The authors need a defense method which can protect legitimate traffic so that end users can connect the target servers during such attacks. In this paper, they propose a new framework, in which all of the TCP connections to the victim servers from a domain are maintained at the gateways of the domain (i.e., near the clients).