Improved authentication packet marketing for IP trace-back

Abstract

IP Trace back is a significant technique for countering Denial of service attacks; it deals with the problem of finding the true source of packets, which takes part in a flooding based Denial of Service attack. Finding the true source is challenging because of the use of incorrect or spoofed ip address, as source address in these packets.

There is a significant amount of work has been proposed in the area of identifying the source of attack packets, Probabilistic Packet Marking is one of the approaches, which deals with ip trace back of the Denial of service attack. In this approach routers Probabilistically puts partial path information in the packets, and then the receiver construct the attack path by these path informations. All the existing approaches deal with a simple attack scenario where no router is compromised.

Authenticated Packet Marking [1] is the only approach which deal with compromised router, under the control of attacker. In this thesis, we propose an improved Authenticated Packet Marking Scheme, which deals with the active attacker with compromised router. We discuss this approach in detail in chapter 3. We also presented a performance comparison of the previous and proposed approach.