Study on the prevention of SYN flooding by using traffic policing

Research output: Contribution to conferencePaperpeer-review

13 Scopus citations

Abstract

In this paper, the usage parameter control (UPC) mechanisms, adopted in Asynchronous Transfer Mode (ATM) networks, are applied to prevent the network server from SYN flooding attack. The basic idea of the proposed scheme is to consider the server being congested during SYN flooding attack, and the UPC is used as a traffic control mechanism to regulate a great number of arrival SYN packets so that the server can be prevented from denial of services (DoS). Both the sliding window and leaky bucket mechanisms are studied to examine the defense effectiveness. Parameters of the sliding window and leaky bucket are determined according to the abort time, buffer status of the server, and the predicted packet arrival rate. This method provides an alternative concept on security management of network servers. The experimental results also show that the proposed method can effectively prevent the server from SYN flooding attack.

Original languageEnglish
Pages593-604
Number of pages12
StatePublished - 2000
EventNOMS 2000: IEEE/IFIP Network Operations and Management Symposium 'The Networked Planet: Management Beyond 2000' - Honolulu, HI, USA
Duration: 10 Apr 200014 Apr 2000

Conference

ConferenceNOMS 2000: IEEE/IFIP Network Operations and Management Symposium 'The Networked Planet: Management Beyond 2000'
CityHonolulu, HI, USA
Period10/04/0014/04/00

Fingerprint

Dive into the research topics of 'Study on the prevention of SYN flooding by using traffic policing'. Together they form a unique fingerprint.

Cite this