Study of Low Rate Denial of Service (LDoS) Attacks on Random Early Detection (RED)
RED active queue management is designed to avoid congestion by controlling the average queue size. However a malicious flow cannot be identified. And it enables potential network-layer attacks, e.g. the flooding Denial-of-Service (DoS) attack and the Low-rate DoS (LDoS) attack. LDoS attack is very difficult to identify because the average rate of packet sending will be very low. This is achieved by sending large amount of packets for a very short duration and repeating this process in regular intervals. This paper analyzes the effect of LDoS attack on RED and compares the existing prevention methods.