Mitigating the Distributed Denial of Service (DDoS) Attacks in Campus Local Area Network(CLAN)
Journal Title: INTERNATIONAL JOURNAL OF COMPUTERS & TECHNOLOGY - Year 2013, Vol 10, Issue 6
Abstract
The Campus Local Area Network (CLAN) of academic institutions interconnect computers ranging from one hundred to about twenty five hundred and these computers are located in academic building(s), hostel building(s), faculty quarter(s), students amenities centre, etc all around the campus. The students, faculty and the supporting staff members use the network primarily for internet usage at both personal and professional levels and secondarily for usage of the available services and resources. Various web based services viz: Web Services, Mail Services, DNS, and FTP services are generally made available in the campus LAN. Apart from these services various intranet based services are also made available for the users of the LAN. Campus LAN users from the hostels change very frequently and also sometime become targets (we call as soft targets) to the attackers or zombie because of either inadequate knowledge to protect their own computer/ laptop, which is also a legitimate node of the campus LAN; or their enthusiastic nature of experimentation. The interconnectivity of these legitimates nodes of the campus LAN and that of the attackers in the World Wide Web, make the computers connected in the LAN (nodes) an easy target for malicious users who attempt to exhaust the resources by launching Distributed Denial-of-Service (DDoS) attacks. In this paper we present a technique to mitigate the distributed denial of service attacks in campus wide LAN by limiting the bandwidth of the affected computers (soft targets) of the virtual LAN from a unified threat management (UTM) firewall. The technique is supported with help of bandwidth utilization report of the campus LAN with and without implementation of bandwidth limiting rule; obtained from the UTM network traffic analyzer. The graphical analyzer report on the utilization of the bandwidth with transmitting and receiving bits of the campus LAN after implementation of our bandwidth limiting rule is also given.
Authors and Affiliations
Angshu Maan Sen, K. Anand Kumar Singha
Keywords
Related Articles
- EP ID EP650212
- DOI 10.24297/ijct.v10i6.7010
- Views 81
- Downloads 0
Design and implementation of a health document
Exchanging and integrating medical information in the healthcare domain is a challenge. Indeed, the diversity of databases and the different representations of information sources make this exchange a very difficult task...
An Efficient Method for Similarity Measure in Independent PCA based Classification
The paper presents a new approach of finding nearest neighbor in image classification algorithm by proposing efficient method for similarity measure. Generally in supervised classification, after finding the feature vect...
Using SOAP and REST web services as communication protocol for distributed evolutionary computation
Designing heterogeneous distributed systems requires of the use of tools that facilitate the deployment and the interaction between platforms. In this paper we propose using Simple Object Access Protocol (SOAP) and REpre...
Integration of Human Resource Information System to DSS, CMS and other applications to increase productivity
Human Resources Management also deal with the facilities and requirements the Human Workforce are availing and need for their working process and carrier growth. It used to act as a bidirectional process flow which inc...
Object-Oriented Petri Nets Virtual Organization Structure
Managing a mega organization has become an extremely complex task, especially if the organization is virtual. The operating structure of such a multi-faceted organization is very difficult to construct, and traditional o...