Differentiating malicious DDoS attack traffic from normal TCP flows by proactive tests

Authors

Zhiqiang Gao, Newark College of Engineering
Nirwan Ansari, Newark College of Engineering

Document Type

Article

Publication Date

11-1-2006

Abstract

To defend against distributed denial of service (DDoS) attacks, one critical issue is to effectively isolate the attack traffic from the normal ones. A novel DDoS defense scheme based on TCP is hereby contrived because TCP is the dominant traffic for both the normal and lethal flows in the Internet. Unlike most of the previous DDoS defense schemes that are passive in nature, the proposal uses proactive tests to identify and isolate the malicious traffic. Simulation results validate the effectiveness of our proposed scheme. © 2006 IEEE.

Identifier

40949163757 (Scopus)

Publication Title

IEEE Communications Letters

External Full Text Location

https://doi.org/10.1109/LCOMM.2006.060669

ISSN

10897798

First Page

793

Last Page

795

Issue

11

Volume

10

Fund Ref

State of New Jersey Commission on Science and Technology

Recommended Citation

Gao, Zhiqiang and Ansari, Nirwan, "Differentiating malicious DDoS attack traffic from normal TCP flows by proactive tests" (2006). Faculty Publications. 18742.
https://digitalcommons.njit.edu/fac_pubs/18742