The case for TCP/IP puzzles

Wu-chang Feng
2003 Proceedings of the ACM SIGCOMM workshop on Future directions in network architecture - FDNA '03  
Since the Morris worm was unleashed in 1988, distributed denial-of-service (DDoS) attacks via worms and viruses have continued to periodically disrupt the Internet. Client puzzles have been proposed as one mechanism for protecting protocols against denial of service attacks. In this paper, we argue that such puzzles must be placed within the slim waistline of the TCP/IP protocol stack in order to truly provide protection. We then describe several scenarios in which TCP/IP puzzles could be used
more » ... o thwart port scans and coordinated DDoS attacks. Finally, while puzzles hold the promise of being able to change the Internet landscape, we describe a large number of open research issues that must be resolved before such a vision can be achieved.
doi:10.1145/944769.944771 fatcat:lmyrqf3dcraddeb3mmie7mtiu4