Please use this identifier to cite or link to this item:

IDR: An intrusion detection router for defending against Distributed Denial-of-Service (DDoS) attacks

Authors Chan, E.Y.K.
Chan, H.W.
Chan, K.M.
Chan, V.P.S.
Chanson, S.T. HKUST affiliated (currently or previously)
Cheung, M.M.H.
Chong, C.F.
Chow, K.P.
Hui, A.K.T.
Hui, L.C.K.
Lam, L.C.K.
Lau, W.C.
Pun, K.K.H.
Tsang, A.Y.F.
Tsang, W.W.
Tso, S.C.W.
Yeung, D.Y. View this author's profile
Yu, K.Y.
Issue Date 2004
Source Proceedings of the International Symposium on Parallel Architectures, Algorithms and Networks, I-SPAN , 2004, p. 581-586
Summary Distributed Denial-of-Service (DDoS) attack has turned into one of the major security threads in recent years. Usually the only solution is to stop the services or shut down the victim and then discard the attack traffic only after the DDoS attack characteristics (such as the destination ports of the attack packets) are known. In this paper, we introduce a generic DDoS attack detection mechanism as well as the design and setup of a testbed for performing experiments and analysis. Our results showed that the mechanism can detect DDoS attack. This enable us to proceed to the next steps of packet classification and traffic control.
Language English
Format Conference paper
Access View full-text via DOI
View full-text via Scopus