DOI: 10.1109/itcs.2009.248
View full text
Zhen Ye, Weiwei Shi, Dayong Ye

Abstract: AbstractTo defend against distributed denial of service (DDoS) attacks, one critical issue is to effectively isolate the attack traffic from the normal ones. A novel DDoS defense scheme based on TCP_IP Header Analysis and Proactive Tests (THAPT) is hereby proposed. Unlike most of the previous DDoS defense schemes that are passive in nature, the proposal uses proactive tests to identify and isolate the malicious traffic. Simulation results validate the effectiveness of our proposed scheme. Disciplines Physica…

expand abstract