Sciweavers

Share
ICC
2008
IEEE

Combining Speak-Up with DefCOM for Improved DDoS Defense

8 years 8 months ago
Combining Speak-Up with DefCOM for Improved DDoS Defense
—This work combines two existing defenses against distributed denial-of-service (DDoS) attacks DefCOM and Speak-up resulting in a synergistic improvement. DefCOM defense organizes existing source-end, victim-end and core defenses into a collaborative overlay to filter DDoS floods. Source networks that do not participate in DefCOM, often receive poor service and their traffic is severely rate-limited. This is because core nodes in DefCOM that perform filtering lack cheap algorithms to differentiate legitimate from attack traffic at line speed they must conservatively assume all high-rate traffic from legacy to be attack. Thus, in its attempt to mitigate DDoS, DefCOM ends up denying service during attacks to any legitimate hosts that reside in legacy networks. Speak-up is a recently proposed defense, which invites all clients of the DDoS victim to send additional payment traffic, with the assumption that attack machines are already sending close to their full capacity. Clients t...
Mohit Mehta, Kanika Thapar, George C. Oikonomou, J
Added 30 May 2010
Updated 30 May 2010
Type Conference
Year 2008
Where ICC
Authors Mohit Mehta, Kanika Thapar, George C. Oikonomou, Jelena Mirkovic
Comments (0)
books