Detecting DDoS Attacks on ISP Networks
Source: Carnegie Mellon University
Most past solutions for detecting denial of service attacks (and identifying the perpetrators) have targeted end-node victims. However, little attention has been given to this problem from an ISP perspective. This paper explores the key challenges involved in helping an ISP network detect attacks on itself or attacks on external sites which use the ISP network. This paper proposes a detection mechanism where each router detects traffic anamolies using profiles of normal traffic constructed using stream sampling algorithms. In addition, an ISP's routers exchange information with each other to increase confidence in their detection decisions.
| Format: | Size: | 47.00 | |
| Date: | Jan 2007 |
People who downloaded this item also downloaded
- A Hybrid Approach to Efficient Detection of Distributed Denial-of-Service Attacks
- Securing Layer 2
- Cyberwar Threats: New Security Strategies for Governments
- How to Defend Against DDoS Attacks and Strengthen Security Controls
- Botnets: The New Threat Landscape
