A Game-Theoretic Framework for Bandwidth Attacks and Statistical Defenses

Dublin, Ireland October 15-October 18

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/LCN.2007.11

32nd IEEE Conference on Local Compute ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Mark E. Snyder Articles by Ravi Sundaram Articles by Mayur Thakur

	ASCII Text	x
	Mark E. Snyder, Ravi Sundaram, Mayur Thakur, "A Game-Theoretic Framework for Bandwidth Attacks and Statistical Defenses," Local Computer Networks, Annual IEEE Conference on, pp. 556-566, 32nd IEEE Conference on Local Computer Networks (LCN 2007), 2007.

	BibTex	x
	@article{ 10.1109/LCN.2007.11, author = {Mark E. Snyder and Ravi Sundaram and Mayur Thakur}, title = {A Game-Theoretic Framework for Bandwidth Attacks and Statistical Defenses}, journal ={Local Computer Networks, Annual IEEE Conference on}, volume = {0}, year = {2007}, issn = {0742-1303}, pages = {556-566}, doi = {http://doi.ieeecomputersociety.org/10.1109/LCN.2007.11}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Local Computer Networks, Annual IEEE Conference on TI - A Game-Theoretic Framework for Bandwidth Attacks and Statistical Defenses SN - 0742-1303 SP556 EP566 A1 - Mark E. Snyder, A1 - Ravi Sundaram, A1 - Mayur Thakur, PY - 2007 KW - null VL - 0 JA - Local Computer Networks, Annual IEEE Conference on ER -

Mark E. Snyder, University of Missouri-Rolla, USA

Ravi Sundaram, Northeastern University, Boston, USA

Mayur Thakur, University of Missouri-Rolla, USA

We introduce a game-theoretic framework for reasoning about bandwidth attacks, a common form of distributed denial of service (DDoS) attacks. In particular, our traffic injection game models the attacker as a rational but limited-resource entity who uses limited knowledge of traffic patterns to launch IP spoofing based bandwidth attacks on a server. We model the defender as a coarse-grained, relative volume based statistical filter.

We analyze the effectiveness of the defender against the attacker by analyzing the payoffs of various strategies in the traffic injection game. Furthermore, we analyze how these payoffs change in the presence of random noise.

Our results show that there is potential for using statistical methods for creating defense mechanisms that can detect a DDoS attack and that even when an attacker has a priori knowledge of the expected traffic volume for the dimension and divisions employed in the attack, the attack traffic can still be exposed to the defender.

Citation:

Mark E. Snyder, Ravi Sundaram, Mayur Thakur, "A Game-Theoretic Framework for Bandwidth Attacks and Statistical Defenses," lcn, pp.556-566, 32nd IEEE Conference on Local Computer Networks (LCN 2007), 2007

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.