Green Publishing Corporation
Distributed Denial-of-Service (DDoS) attacks remain major security problem, the mitigation of which is very hard especially when it comes to highly distributed botnet-based attacks. The early discovery of these attacks, although challenging, is necessary to protect end-users as well as the expensive network infrastructure resources. In this paper, the authors address the problem of DDoS attacks and present the theoretical foundation, architecture and algorithms of DDoS Wall. The core of DDOS wall is composed of Intrusion Prevention Systems (IPSs) located at the Internet Service Providers (ISPs) level.