Vulnerabilities in distance-indexed IP traceback schemes

13 years 4 months ago

Download bbcr.uwaterloo.ca

: In order to counter Denial-of-Service (DoS) attacks using spoofed source addresses, many IP traceback schemes have been proposed in the last few years. Among them, distanceindexed probabilistic packet marking schemes appear to be very attractive. In this paper, we ﬁrst discover two intrinsic vulnerabilities in these schemes. Substantiated by efﬁcacy analysis and numerical results, several exploits are designed to take advantage of these vulnerabilities in an efﬁcient manner when compared with the traceback effort attempted by victims. Consequently, we show that the design goal of these schemes can be compromised in practice. Further, we discuss these vulnerabilities in a general context relevant to network protocols and examine a few possible alternatives.

Jianping Pan, Lin Cai, Xuemin Shen

Real-time Traffic

IJSN 2007 | Intrinsic Vulnerabilities | Source Addresses | Vulnerabilities |

claim paper

Post Info
More Details (n/a)

Added	15 Dec 2010
Updated	15 Dec 2010
Type	Journal
Year	2007
Where	IJSN
Authors	Jianping Pan, Lin Cai, Xuemin Shen

Comments (0)

Sciweavers

Vulnerabilities in distance-indexed IP traceback schemes

IJSN 2007 | Intrinsic Vulnerabilities | Source Addresses | Vulnerabilities |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers