Kieu, Minh Viet and Nguyen, Dai Tho and Nguyen, Thanh Thuy (2017) Using CPR Metric to Detect and Filter Low-Rate DDoS Flows. In: The Eighth International Symposium on Information and Communication Technology (SoICT 2017), December 7-8, 2017, Nha Trang, Vietnam.
![[img]](https://eprints.uet.vnu.edu.vn/eprints/style/images/fileicons/application_pdf.png) |
PDF
Download (302kB) |
Abstract
TCP-targeted low-rate distributed denial-of-service (LDDoS) attacks pose a serious challenge to the reliability and security of the Internet. Among various proposed solutions, we are particularly interested in the Congestion Participation Rate (CPR) metric and the CPR-based approach. Through a simulation study, we show that the existing algorithm cannot simultaneously achieve high TCP throughput while under attack and good fairness performance for new legitimate TCP flows in normal times. We then propose a new version of the CPR-based approach to overcome the tradeoff. Simulation results show that it preserves TCP throughput while under attack fairly well, yet maintains fairness for new TCP flows in normal times.
| Item Type: | Conference or Workshop Item (Paper) |
|---|---|
| Subjects: | Information Technology (IT) |
| Divisions: | Faculty of Information Technology (FIT) |
| Depositing User: | Dr. Dai Tho Nguyen |
| Date Deposited: | 11 Dec 2017 09:41 |
| Last Modified: | 11 Dec 2017 09:41 |
| URI: | http://eprints.uet.vnu.edu.vn/eprints/id/eprint/2752 |
Actions (login required)
 |
View Item |
