skip to main content
10.1145/3287921.3287940acmotherconferencesArticle/Chapter ViewAbstractPublication PagessoictConference Proceedingsconference-collections
research-article

Techniques for Improving Performance of the CPR-Based Approach

Published: 06 December 2018 Publication History

Abstract

TCP-targeted low-rate distributed denial-of-service (LDDoS) attacks have created an opportunity for attackers to reduce their total attaking rate (and hence, the detection probability of the attacks) while inflicting the same damage to TCP flows as traditional flooding-based DDoS attacks. CPR-based approach has been proposed by Zhang et al. to detect and filter this kind of DDoS attacks, but its performance in terms of TCP throughput under attack is shown to be limited by the way it calculates CPR for each flow. In this paper, we will propose some modifications to the CPR-based approach in order to increase its performance. Simulation results show that the modifications can increase performance significantly.

References

[1]
2005. NS-2 simulator. http://www.isi.edu/nsnam/ns/. (2005).
[2]
2011. AQM&DoS simulation platform. https://sites.google.com/site/cwzhangres/home/posts/aqmdossimulationplatform/. (2011).
[3]
B. Braden, D. Clark, and many others. 1998. Recommendations on queue management and congestion avoidance in the Internet. RFC 2309.
[4]
S. Floyd and V. Jacobson. 1993. Random early detection gateways for congestion avoidance. IEEE/ACM Transactions on Networking 1, 4 (1993), 397--413.
[5]
V. Jacobson and M. Karels. 1988. Congestion avoidance and control. ACM Computer Communication Review 18, 4 (1988), 314--329.
[6]
M. Kieu, D. Nguyen, and T. Nguyen. 2017. Using CPR Metric to Detect and Filter Low-Rate DDoS Flows. In Proceedings of ACM SoICT. 325--332.
[7]
A. Kuzmanovic and E. Knightly. 2003. Low-Rate TCP-Targeted Denial of Service Attacks (The Shrew vs. the Mice and Elephants). In Proceedings of ACM SIGCOMM. 75--86.
[8]
C. Zhang, Z. Cai, W. Chen, X. Luo, and J. Yin. 2012. Flow level detection and filtering of low-rate DDoS. Elsevier Computer Networks 56, 15 (2012), 3417--3431.
[9]
C. Zhang, J. Yin, Z. Cai, and W. Chen. 2010. RRED: Robust RED Algorithm to Counter Low-Rate Denial-of-Service Attacks. IEEE Communications Letters 14, 5 (2010), 489--491.
[10]
Z. Zhou, L. Tan, B. Gu, Y. Zhang, and J. Wu. 2018. Bandwidth Slicing in Software-Defined 5G: A Stackelberg Game Approach. IEEE Vehicular Technology Magazine 12, 2 (2018), 102--109.

Cited By

View all
  • (2020)A Way to Estimate TCP Throughput under Low-Rate DDoS Attacks: One TCP Flow2020 RIVF International Conference on Computing and Communication Technologies (RIVF)10.1109/RIVF48685.2020.9140777(1-8)Online publication date: Oct-2020

Index Terms

  1. Techniques for Improving Performance of the CPR-Based Approach

    Recommendations

    Comments

    Information & Contributors

    Information

    Published In

    cover image ACM Other conferences
    SoICT '18: Proceedings of the 9th International Symposium on Information and Communication Technology
    December 2018
    496 pages
    ISBN:9781450365390
    DOI:10.1145/3287921
    Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

    In-Cooperation

    • SOICT: School of Information and Communication Technology - HUST
    • NAFOSTED: The National Foundation for Science and Technology Development

    Publisher

    Association for Computing Machinery

    New York, NY, United States

    Publication History

    Published: 06 December 2018

    Permissions

    Request permissions for this article.

    Check for updates

    Author Tags

    1. AQM
    2. Low-rate DDoS attack
    3. RED
    4. TCP

    Qualifiers

    • Research-article
    • Research
    • Refereed limited

    Conference

    SoICT 2018

    Acceptance Rates

    Overall Acceptance Rate 147 of 318 submissions, 46%

    Contributors

    Other Metrics

    Bibliometrics & Citations

    Bibliometrics

    Article Metrics

    • Downloads (Last 12 months)3
    • Downloads (Last 6 weeks)0
    Reflects downloads up to 13 Feb 2025

    Other Metrics

    Citations

    Cited By

    View all
    • (2020)A Way to Estimate TCP Throughput under Low-Rate DDoS Attacks: One TCP Flow2020 RIVF International Conference on Computing and Communication Technologies (RIVF)10.1109/RIVF48685.2020.9140777(1-8)Online publication date: Oct-2020

    View Options

    Login options

    View options

    PDF

    View or Download as a PDF file.

    PDF

    eReader

    View online with eReader.

    eReader

    Figures

    Tables

    Media

    Share

    Share

    Share this Publication link

    Share on social media