|
Published Articles >> Table of Contents >> Abstract
Second IEEE International Information Assurance Workshop (IWIA'04)
p. 3
Packet Filtering for Congestion Control under DoS Attacks
Yen-Hung Hu, George Washingtin University, Washington, DC
Hongsik Choi, Virginia Commonwealth University, Richmond, VA
Hyeong-Ah Choi, George Washingtin University, Washington, DC
Full Article Text:
  
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/IWIA.2004.1288034
Send link to a friend
| Abstract |
|
Congestion control in IP networks is typically done at each router through queue management, and the network is entirely dependent on the end hosts to react congestion. However, when misbehaving flows exist and continue to send their packets in very high rates, the queue management schemes implemented in current IP routers reveal a significant shortcoming in protecting legitimate flows. In this paper, we propose a novel scheme for congestion control in IP networks. Our approach is a time-window based filtering mechanism implemented in a router and processed before a queue management policy is applied. Setting the window size properly and dropping packets reaching in the next window can catch the non-responsive nature of misbehaving flows. The performance of our proposed scheme is demonstrated through extensive simulations using the NS2 simulator using a set of simulated traffic generated based on IP traces reported in http://www.nlnar.org.
|
 Additional Information
|
Citation:
Yen-Hung Hu, Hongsik Choi, Hyeong-Ah Choi,
"Packet Filtering for Congestion Control under DoS Attacks,"
iwia,
p. 3,
Second IEEE International Information Assurance Workshop (IWIA'04),
2004
|
|
