To search, Click below search items.


All Published Papers Search Service


A Comprehensive Mechanism to reduce the detection time of SYN Flooding Attack


S.Meenakshi, S.K.Srivatsa


Vol. 9  No. 1  pp. 286-289


We are currently in the bronze age of information security. The explosive growth in computer systems and their interconnections via networks has increased the dependence of both organizations and individuals on the information stored and communicated using these systems. This has increased the need to protect the data and the resources from disclosure and to protect the entire network from network based attacks. There are many attacks intended to deprive legitimate users from accessing network resources and functions. Denial of service (DoS) attack is an attack on the availability of Internet services and resources. A Denial of Service (DoS) attack is an attack which prevents legitimate users from using a victim computing system or network resource. Flooding based Distributed Denial of service (DDoS) attack presents a very serious threat to the stability of the Internet. We want to design a comprehensive mitigation mechanism against the DDoS attack. In the proposed system the entire attack detection process is divided into two levels due to the distributed nature of DDoS attack.In the first level the individual detection systems are installed in all autonomous systems to perform local detection. In the second level the all the detection systems exchange their messages using consensus method to take global decision. Prevention and early detection of DDoS attack is very important. The objective is to minimize the expected delay of detecting DDoS attack after its occurrence. For this reason, good lower bound is to be fit on the expected time between false alarms before the DDoS attack. So the overall detection time would be reduced for global decision making. Defense in depth is an essential feature of the proposed work.


Denial of service, Consensus method, early alert, Majority selection