Abstract
|
This paper analyzes the DoS attack traffic on the WiBro network, generates logs and tracebacks the attacker. With attaining the integrity against the packets resulted from the malicious DoS attack, the paper provides the framework to generating forensic data. In the WiBro network environment, the attacker and the victim are the WiBro mobile terminal. The packet analyzers(Cain & Abel, Wireshark and e-Watch Lite) are used to analyze attacks. The DoS attacks are simulated by using hGod.exe and DoS 5.5. And the paper analyzes the protocols(DNS, TCP, HTTP, IP, ICMP). By showing that the time extracted from the DoS attack packets and the current time from a cellular phone are the same, the integrity is proved. The correspondence can be used the evidence for judging legal responsibility against the DoS attack. When security accidents occur, the forensic data and the traceback data are generated. It fortifies entire Wibro network security. Future researches require real-time forensic generation and real-time traceback on Wibro IPv6.
|