Internet Archive Scholar

Practical Approaches to the DRDoS Attack Detection based on Netflow Analysis

Jungtae Kim, Ik-Kyun Kim, Koohong Kang
unpublished

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (482.8 kB)
https://web.archive.org/web/20180420033842/http://www.thinkmind.org/download.php?articleid=internet_2016_2_10_40041

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2018; you can also visit the original URL. The file type is application/pdf.

The paper proposes a practical method of detecting the Distributed Reflection Denial-of-Service Attack (DRDoS) in the Internet with the policy based routing and load balancing applied. To do so, the detection algorithm is provided separately accordingly to the underlying network infrastructure such as routing symmetry or asymmetry. Finally, it provides a practical way of detecting the reflection attacker, which connects the reflectors to command or trigger the IP Spoofed DNS (Domain Name
more » ... )/NTP (Network Time Protocol) requests, by analyzing the connection information available on the Netflow enabled Routers.
fatcat:vwv7fdfxlrhrfnn3so3ivlqylu
Citation

Jungtae Kim, Ik-Kyun Kim, Koohong Kang. "Practical Approaches to the DRDoS Attack Detection based on Netflow Analysis."