USING IP PROFILING AND INTERFACE OF ROUTER TO DEFEND AGAINST DDOS ATTACKS

USING IP PROFILING AND INTERFACE OF ROUTER TO DEFEND AGAINST DDOS ATTACKS

Junghun Kim: Digital Vaccine and Internet Immune System Lab. Graduate School of Information and Communication, Ajou University, Suwon 443-749, Republic of Korea.
(TEL) +82-31-219-1800 (FAX) +82-31-219-1811 (E-Mail) kjh3684@ajou.ac.kr
(URL) http://iislab.ajou.ac.kr

Manpyo Hong: Digital Vaccine and Internet Immune System Lab. Graduate School of Information and Communication, Ajou University, Suwon 443-749, Republic of Korea.
(TEL) +82-31-219-2438 (FAX) +82-31-219-1614 (E-Mail) mphong@ajou.ac.kr
(URL) http://iislab.ajou.ac.kr

]

Abstract

Distributed Denial of Service (DDoS) attacks are the major hazard among many threats in the internet security. Detecting a DDoS attack is not a trivial job due to the complexity in classification of weather the incoming traffic is legitimate or not. Therefore, it is significantly required to deal with this attack as soon as the DDoS attacks occur. In this paper, we proposed the adaptive system that provide safeguard against DDoS attacks. The proposed system is harmonized with two existing schemes: history based IP filtering and the marking scheme using 4 color theorem. The former scheme can reduce time over head to distinguish legitimate or not, however that have drawbacks that distinguished traffics are ambiguous exactly legitimate traffics and memory size to stored information of legitimate host is high. To solve this problem, we supplement history based IP filtering using marking scheme using 4 color theorem. Therefore, we reduce the memory size to store the information of legitimate host and accelerated speed of defense against DDoS attacks.

Short Biography

Junghun Kim: Junghun Kim is an MS Student in the Graduate School of Information and Communication at Ajou University. His current research interests are in Ubiquitous security and information security (DDoS).

Before he joined the student of Ajou University in 2004, he was working at KT Human Resource Development Center (HRDC) from 2001 to 2002 and an exchange student at Illinois institute of technology for 6 months in 2003. He received a BS degree from the Department of Computer Science, Woosong University, in 2004

Manpyo Hong: Manpyo Hong is a professor in the Graduate School of Information and Communication at Ajou University. His current research interests are in Ubiquitous security, Information security (Worm, Virus and DDoS) and Parallel processing.

Before he joined the faculty of Ajou University in 1985, he was an instructor in the College of Engineering at Ulsan National University from 1983 to 1985 and an exchange professor at Minnesota State University from 1993 to 1994, a exchange professor at the George Washington University from 2000 to 2001. He received a BS degree from the Department of Statistics, Seoul National University, in 1981; an MS degree from the Department of Statistics, Seoul National University, in 1983; a Ph.D degree from the Department of Parallel processing, Seoul National University, in 1991.