Advertisement

Mathematical Models of IP Traceback Methods and Their Verification

  • Keisuke Ohmori
  • Ayako Suzuki
  • Manabu Ohmuro
  • Toshifumi Kai
  • Mariko Kawabata
  • Ryu Matushima
  • Shigeru Nishiyama
Part of the IFIP Advances in Information and Communication Technology book series (IFIPAICT, volume 181)

Abstract

IP traceback is a technology for finding distributed-denial-of-service (DDoS) attackers. Various IP traceback methods have been proposed. When a new method is proposed, a performance comparison with the conventional methods is required. In this paper, mathematical models of ICMP, probabilistic packet marking, hash-based, and Kai’s improved ICMP method are proposed. The mathematical models proposed can be applied to arbitrary network topologies, and are applicable for evaluating the performance of a new traceback. The mathematical models are verified by comparing the theoretical values with actual measurements of a network of about 600 nodes.

Key words

ICMP traceback Probabilistic packet marking traceback Hash-based IP traceback Mathematical model 

References

  1. 1.
    Steven M. Bellovin, “ICMP Traceback Message”, Internet Draft, Oct. 2001, http://mark.doll.name/i-d/itrace/obsoleteGoogle Scholar
  2. 2.
    Dawn Xiaodon Song, Adrian Perrig, “Advanced and Authenticated Marking Schemes for IP Traceback”, IEEE INFOCOM 2001, http://vip.poly.edu/kulesh/forensics/docs/advancedmarking.pdfGoogle Scholar
  3. 3.
    Alex C. Snoeren et al., “Hash-Based IP Traceback”, Proc. of the ACM SIGCOMM conference 2001, San Diego, CA, Computer Communication Review Vol. 31, No 4, October 2001. http://nms.lcs.mit.edu/~snoeren/papers/spie-sigcomm.pdfGoogle Scholar
  4. 4.
    Vadim Kuznetsov, Andrei Simkin, Helena Sandstrom, “An evaluation of different IP traceback approaches”, ICICS, 2002, 37–48Google Scholar
  5. 5.
    The User-mode Linux Kernel Home Page. http://user-mode-linux.sourceforge.netGoogle Scholar
  6. 6.
    Zebra Home Page, http://www.zebra.orgGoogle Scholar

Copyright information

© International Federation for Information Processing 2005

Authors and Affiliations

  • Keisuke Ohmori
    • 1
  • Ayako Suzuki
    • 1
  • Manabu Ohmuro
    • 1
  • Toshifumi Kai
    • 2
  • Mariko Kawabata
    • 1
  • Ryu Matushima
    • 1
  • Shigeru Nishiyama
    • 1
  1. 1.Systems Development UnitNTT Advanced Technology Corp.TokyoJapan
  2. 2.Systems Technology Reserch LaboratoryMatsushita Electric Works, Ltd.TokyoJapan

Personalised recommendations