Strategies for Tracking Individual IP Packets Towards DDoS

TL;DR

This paper introduces Tracemax, a novel network traceback and defense system that efficiently tracks individual IP packets over many hops, helping to identify and mitigate DDoS attacks by enabling routers to cooperate and self-organize.

Contribution

The paper presents a new traceback strategy combined with a defense system that allows direct packet tracing over many hops and enhances DDoS attack mitigation.

Findings

Effective reduction of bandwidth and resource consumption attacks

Enables early warning and prevention of DDoS attacks

Routers cooperate in self-organized traceback process

Abstract

The identification of the exact path that packets are routed in the network is quite a challenge. This paper presents a novel, efficient traceback strategy in combination with a defence system against distributed denial of service (DDoS) attacks named Tracemax. A single packets can be directly traced over many more hops than the current existing techniques allow. It let good connections pass while bad ones get thwarted. Initiated by the victim the routers in the network cooperate in tracing and become automatically self-organised and self-managed. The novel concept support analyses of packet flows and transmission paths in a network infrastructure. It can effectively reduce the effect of common bandwidth and resource consumption attacks and foster in addition early warning and prevention.