Countermeasure against Distributed Denial of Service Attack

Gaoping Hu


The threat of Distributed Denial of Service (DDoS) attack now has become a major issue in network security not only in commercial sectors but also government infra-structures. Although a lot of research has been done in this field, these attacks remain one of the most common threats affecting network performance. In this paper, the authors experimentally verify the validity of the analysis performed by running simulations using the SSFNet network simulator. A DDoS attack is simulated by flooding the mincut arcs in the network. The results indicate that the minimum number of zombie processors required to disable a set of arcs, the minimum attack traffic volume required to disable the arcs and our proposed technique will be part of an effective DDoS countermeasure.


Full Text:



  • There are currently no refbacks.