Constructing Inter-Domain Packet Filters to Control IP Spoofing Based on BGP Updates

Journal Title: IOSR Journals (IOSR Journal of Computer Engineering) - Year 2015, Vol 17, Issue 5

Abstract

Abstract: The Distributed Denial-of-Service (DDoS) attack is a serious threat to the legitimate use of the Internet. Prevention mechanisms are thwarted by the ability of attackers to forge or spoof the source addresses in IP packets. By employing IP spoofing, attackers can evade detection and put a substantial burden on the destination network for policing attack packets. In this paper, we propose an inter-domain packet filter (IDPF) architecture that can mitigate the level of IP spoofing on the Internet. A key feature of our scheme is that it doesnot require global routing information. IDPFs are constructed from the information implicit in Border Gateway Protocol (BGP) route updates and are deployed in network border routers. We establish the conditions underwhich the IDPF framework correctly works in that it does not discard packets with valid source addresses. Based on extensive simulation studies, we show that, even with partial deployment on the Internet, IDPFs can proactively limit the spoofing capability of attackers. In addition, they can help localize the origin of an attack packet to a small number of candidate networks.

Authors and Affiliations

Shyam Chandran. P

Keywords

Related Articles

Analysis for Diagnosing Myocardial Ischemia by Detecting the Boundary of Left Ventricle in Echocardiography Sequences using GVF snake

Left ventricular performance, one of the hallmarks of coronary artery disease, can be detected by,echocardiography. Coronary artery disease (CAD) also known as myocardial ischemic heart disease (MIHD), is the most common...

Modified Contrast Enhancement using Laplacian and Gaussians Fusion Technique

Abstract: The aim of image fusion is to mix images of a scene captured below totally different illumination. One image contains most of information from the whole supply images automatically. Contrast enhancement is empl...

Numerical and Experimental Study the Effect of Impeller Design on the Performance of Submerged Turbine

Abstract: "This work presents the design and fabrication of Gorlov helical water turbine. The turbine was tested theoretically and experimentally. For the experimental part open channel was long=1600cm, high=45cmand widt...

Image Denoising with Wavelet Based Thresholding

Abstract: Image processing is a field that continues to grow, with new applications being developed at an ever increasing pace. Image Denoising is an important part of image processing and computer vision problems. The...

Smart Blood Bank as a Service on Cloud

Abstract: We all know the working of blood bank management system. A blood bank is a cache or bank of blood or blood components, gathered as a result of blood donation or collection, stored and preserved for later use in...

Download PDF file
  • EP ID EP106172
  • DOI -
  • Views 109
  • Downloads 0

How To Cite

Shyam Chandran. P (2015).  Constructing Inter-Domain Packet Filters to Control IP Spoofing Based on BGP Updates. IOSR Journals (IOSR Journal of Computer Engineering), 17(5), 1-2. https://europub.co.uk/articles/-A-106172