Proving Distributed Denial of Service Attacks in the Internet
Source: University of Utah
This paper presents the problem of proving a distributed denial of service attack in the Internet. They propose a solution using probabilistic packet marking by routers, combined with a new technique to track individual DDoS attack flows. Their solution incurs very less overhead in the router's critical path and operates in the presence of legacy routers. They provide evaluation results on their solution's accuracy in the presence of more than 2000 attackers and upto 90% legacy routers in the network.