Skip to main content
Springer Nature Link
Log in

A Study on Marking Bit Size for Path Identification Method: Deploying the Pi Filter at the End Host

  • Conference paper
Computational Science and Its Applications – ICCSA 2004 (ICCSA 2004)

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 3046))

Included in the following conference series:

Abstract

Recently, DDoS attacks are more and more serious to the Internet. Many specialists research the defending methods against DDoS. Pi had been proposed as one of the defense methods against complicated DDoS attack by spoofed IP address. Pi is a new packet marking approach, and Pi enables a victim to identify packets traversing the same paths through the Internet on a per packet basis, regardless of source IP address spoofing. Marking size of Pi is the most important parameter of Pi marking scheme to decide the performance of Pi. At the end hosts’ view, the most proper marking size of Pi is affected by the Internet environment and its topology. In existing Pi scheme, Pi filter deployed on the ISP’s side of the last hop link, but this paper consider the Pi filter deployed at end host in the ISP and tried to find the most proper marking size.

This study was supported by the Brain Korea 21 Project in 2004.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Subscribe and save

Springer+ Basic
$34.99 /Month
  • Get 10 units per month
  • Download Article/Chapter or eBook
  • 1 Unit = 1 Article or 1 Chapter
  • Cancel anytime
Subscribe now

Buy Now

Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Similar content being viewed by others

References

  1. Yaar, A., Perrig, A., Song, D.: Pi: A Path Identification Mechanism to Defend against DDoS Attacks. In: Proceeding of Symposium on Security and Privacy 2003, pp. 93–107 (2003)

    Google Scholar 

  2. CAIDA. Skitter (2000), http://www.caida.org/tools/measurement/skitter/

  3. Chen, Z., Lee, M.: An IP traceback technique against denial-of-service attacks. In: Proceeding of 19th Annual Computer Security Applications Conference, pp. 96–104 (2003)

    Google Scholar 

  4. Berkeley University. The Spread of the Sapphire/Slammer Worm (2002), http://www.cs.berkeley.edu/~nweaver/sapphire/

  5. Computer Emergency Response Team(CERT). TCP_SYN flooding and IP spoofing attacks. Technical Report CA-96:21. Carnegie Mellon University. Pittsburgh, PA (1996)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Graduate School of Information Communication, Ajou University, Suwon, Korea

    Soon-Dong Kim & Man-Pyo Hong

  2. College of Information Technology, Ajou University, Suwon, Korea

    Dong-Kyoo Kim

Authors
  1. Soon-Dong Kim
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Man-Pyo Hong
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Dong-Kyoo Kim
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Department of Chemistry, University of Perugia, Via Elce di Sotto, 8, I-06123, Perugia, Italy

    Antonio Laganá

  2. Department of Computer Science, University of Calgary, 2500 University Drive N.W., T2N 1N4, Calgary, AB, Canada

    Marina L. Gavrilova

  3. William Norris Professor, Head of the Computer Science and Engineering Department, University of Minnesota, USA

    Vipin Kumar

  4. School of Computing, Soongsil University, Seoul, Korea

    Youngsong Mun

  5. OptimaNumerics Ltd., Cathedral House, 23-31 Waring Street, BT1 2DX, Belfast, UK

    C. J. Kenneth Tan

  6. Department of Mathematics and Computer Science, University of Perugia, via Vanvitelli, 1, I-06123, Perugia, Italy

    Osvaldo Gervasi

Rights and permissions

Reprints and permissions

Copyright information

© 2004 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Kim, SD., Hong, MP., Kim, DK. (2004). A Study on Marking Bit Size for Path Identification Method: Deploying the Pi Filter at the End Host. In: Laganá, A., Gavrilova, M.L., Kumar, V., Mun, Y., Tan, C.J.K., Gervasi, O. (eds) Computational Science and Its Applications – ICCSA 2004. ICCSA 2004. Lecture Notes in Computer Science, vol 3046. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-24768-5_65

Download citation

  • DOI: https://doi.org/10.1007/978-3-540-24768-5_65

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-22060-2

  • Online ISBN: 978-3-540-24768-5

  • eBook Packages: Springer Book Archive

Publish with us

Policies and ethics