Annulling SYN Flooding Attacks with Whitelist

March 25-March 28

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/WAINA.2008.218

22nd International Conference on Adva ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Tae Hyung Kim Articles by Young-Sik Choi Articles by Jong Kim Articles by Sung Je Hong

	ASCII Text	x
	Tae Hyung Kim, Young-Sik Choi, Jong Kim, Sung Je Hong, "Annulling SYN Flooding Attacks with Whitelist," Advanced Information Networking and Applications Workshops, International Conference on, pp. 371-376, 22nd International Conference on Advanced Information Networking and Applications - Workshops (aina workshops 2008), 2008.

	BibTex	x
	@article{ 10.1109/WAINA.2008.218, author = {Tae Hyung Kim and Young-Sik Choi and Jong Kim and Sung Je Hong}, title = {Annulling SYN Flooding Attacks with Whitelist}, journal ={Advanced Information Networking and Applications Workshops, International Conference on}, volume = {0}, year = {2008}, isbn = {978-0-7695-3096-3}, pages = {371-376}, doi = {http://doi.ieeecomputersociety.org/10.1109/WAINA.2008.218}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Advanced Information Networking and Applications Workshops, International Conference on TI - Annulling SYN Flooding Attacks with Whitelist SN - 978-0-7695-3096-3 SP371 EP376 A1 - Tae Hyung Kim, A1 - Young-Sik Choi, A1 - Jong Kim, A1 - Sung Je Hong, PY - 2008 KW - null VL - 0 JA - Advanced Information Networking and Applications Workshops, International Conference on ER -

SYN flooding is one of classical Denial of Service (DoS) attacks abusing the TCP 3-way handshake process. This attack causes a server not to accept additional connection requests by filling the server's backlog queue with malicious connection requests (SYN packets). Although several methods have been proposed to solve the SYN Flooding attack, they cannot guarantee reliable connection establishments to clients under extremely aggressive SYN flooding attacks. In this paper, we propose a WhiteList-based defense scheme that increases connection success ratio of legitimate connection requests under SYN flooding attacks. We implemented this scheme as a linux kernel module. Experimental results show that the proposed method ensures high connection success ratio for legitimate clients and effectively annuls bogus SYN flooding.

Citation:

Tae Hyung Kim, Young-Sik Choi, Jong Kim, Sung Je Hong, "Annulling SYN Flooding Attacks with Whitelist," ainaw, pp.371-376, 22nd International Conference on Advanced Information Networking and Applications - Workshops (aina workshops 2008), 2008

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.