Abstract
In this paper, we propose a new mechanism to defend against Distributed Denial of Service (DDoS) attacks with path information rather than IP address information. Instead of the complete binary tree model, our proposal is based on the Four Color Theorem. The salient feature of the Theorem is that it allows color reuse so that even some portions of the map have more than 4 neighbors, 4 colors are still sufficient to mark all their borders. This idea of reuse is very important because some routers have many interfaces and the length of the ID field in the header of an IP packet, where the marking information is embedded, is very limited. Furthermore, our marking scheme takes the Internet hierarchy into account, and greatly relaxes the limitation on the number of interfaces of routers, thus making the scheme more practical. Simulation results have validated our design.
Original language | English (US) |
---|---|
Pages | 2256-2260 |
Number of pages | 5 |
State | Published - 2004 |
Event | GLOBECOM'04 - IEEE Global Telecommunications Conference - Dallas, TX, United States Duration: Nov 29 2004 → Dec 3 2004 |
Other
Other | GLOBECOM'04 - IEEE Global Telecommunications Conference |
---|---|
Country/Territory | United States |
City | Dallas, TX |
Period | 11/29/04 → 12/3/04 |
All Science Journal Classification (ASJC) codes
- General Engineering
Keywords
- DoS/DDoS attack
- Four color theorem
- Marking
- Network security