MF (Minority First) Scheme for defeating Distributed Denial of Service Attacks

Kemer-Antalya, Turkey June 30-July 03

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/ISCC.2003.1214283

Eighth IEEE Symposium on Computers an ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Gaeil Ahn Articles by Kiyoung Kim Articles by Jongsoo Jang

	ASCII Text	x
	Gaeil Ahn, Kiyoung Kim, Jongsoo Jang, "MF (Minority First) Scheme for defeating Distributed Denial of Service Attacks," Computers and Communications, IEEE Symposium on, pp. 1233, Eighth IEEE Symposium on Computers and Communications, 2003.

	BibTex	x
	@article{ 10.1109/ISCC.2003.1214283, author = {Gaeil Ahn and Kiyoung Kim and Jongsoo Jang}, title = {MF (Minority First) Scheme for defeating Distributed Denial of Service Attacks}, journal ={Computers and Communications, IEEE Symposium on}, volume = {0}, year = {2003}, issn = {1530-1346}, pages = {1233}, doi = {http://doi.ieeecomputersociety.org/10.1109/ISCC.2003.1214283}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computers and Communications, IEEE Symposium on TI - MF (Minority First) Scheme for defeating Distributed Denial of Service Attacks SN - 1530-1346 SP EP A1 - Gaeil Ahn, A1 - Kiyoung Kim, A1 - Jongsoo Jang, PY - 2003 KW - null VL - 0 JA - Computers and Communications, IEEE Symposium on ER -

Gaeil Ahn, Electronics and Telecommunications Research Institute

Kiyoung Kim, Electronics and Telecommunications Research Institute

Jongsoo Jang, Electronics and Telecommunications Research Institute

The one of the biggest barrier that hinders Internet development is security problem caused by malicious user. In this paper, we deal with Distributed Denial of Service (DDoS) attacks that monopolize network resource, thus result in network or system congestion. Under DDoS attack, it's very difficult to provide legitimate users with their fair share of available network resource. This paper proposes MF (Minority First) as a traffic metering and control scheme that can provide quick weakness of DDoS attack, while protecting legitimate user's traffic. The key idea of MF scheme is to provide good quality of service (QoS) to sources that use the network resource properly and poor QoS to sources that use network resource so excessively as to result in network congestion. MF scheme is composed of both source-traffic-trunk based metering and queue mapping mechanism for controlling malicious DDoS traffic and legitimate traffic. To show our scheme's excellence, its performance is measured and compared with that of the existing queuing services and static rate-limit through simulation.

Citation:

Gaeil Ahn, Kiyoung Kim, Jongsoo Jang, "MF (Minority First) Scheme for defeating Distributed Denial of Service Attacks," iscc, pp.1233, Eighth IEEE Symposium on Computers and Communications, 2003

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.