@inproceedings{16e073729ca24ef9b9b4c2f197a7846b,
title = "Resistance is not futile: Detecting DDoS attacks without packet inspection",
abstract = "Packets in anonymous networks are fully protected. Therefore, traditional methods relying on packet header and higher layer information do not work to detect Distributed-Denial-of-Service (DDoS) attacks in anonymous networks. In this paper we propose to use observable statistics at routers that need no packet inspection to infer the presence of an attack. We propose packet resistance as a metric to detect the presence of attacks which reduce the availability of channel bandwidth for wireless routers in the core network. Our proposed detection framework is distributed, wherein each router in the network core monitors and reports its findings to an intermediate router. These intermediate routers form a hierarchical overlay to eventually reach a centralized attack monitoring center. The alarm messages are used to construct an attack path and determine the origin of the attack. We present simulation results to demonstrate the effectiveness of our proposed metric.",
keywords = "Anonymous networks, DDoS, Intrusion detection",
author = "Athreya, {Arjun P.} and Xiao Wang and Kim, {Yu Seung} and Yuan Tian and Patrick Tague",
note = "Funding Information: This research was supported through the Northrop Grumman Cybersecurity Research Consortium. The views and conclusions contained here are those of the authors and should not be interpreted as necessarily representing the official policies or endorsements, either express or implied, of Northrop Grumman or Carnegie Mellon University.; 14th International Workshop on Information Security Applications, WISA 2013 ; Conference date: 19-08-2013 Through 21-08-2013",
year = "2014",
doi = "10.1007/978-3-319-05149-9_11",
language = "English (US)",
isbn = "9783319051482",
series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
publisher = "Springer Verlag",
pages = "174--188",
booktitle = "Information Security Applications - 14th International Workshop, WISA 2013, Revised Selected Papers",
}