Design of Defence Mechanism against DDoS Attacks in NCP-based Broadband Convergence Networks

Kyeong-Eun Han; Won-Hyuk Yang; Kyung-Min Yoo; Jae-Young Yoo; Young-Sun Kim; Young-Chon Kim

Design of Defence Mechanism against DDoS Attacks in NCP-based Broadband Convergence Networks

Vol. 35, No. 1, pp. 8-19, Jan. 2010

PDF

Abstract

In this paper, we propose the NCP (Network Control Platform)-based defense mechanism against DDoS (Distributed Denial of Service) attacks in order to guarantee the transmission of normal traffic and prevent the flood of abnormal traffic. We also define defense modules, the threshold and packet drop-rate used for the response against DDoS attacks. NCP analyzes whether DDoS attacks are occurred or not based on the flow and queue information collected from SR (Source Router) and VR (Victim Router). Attack packets are dopped according to drop rate decided from NCP. The performance is simulated using OPNET and evaluated in terms of the queue size of both SR and VR, the transmitted volumes of legitimate and attack packets at SR.

Statistics

Cumulative Counts from November, 2022
Multiple requests among the same browser session are counted as one view. If you mouse over a chart, the values of data points will be shown.

Cite this article

[IEEE Style]

K. Han, W. Yang, K. Yoo, J. Yoo, Y. Kim, Y. Kim, "Design of Defence Mechanism against DDoS Attacks in NCP-based Broadband Convergence Networks," The Journal of Korean Institute of Communications and Information Sciences, vol. 35, no. 1, pp. 8-19, 2010. DOI: .

[ACM Style]

Kyeong-Eun Han, Won-Hyuk Yang, Kyung-Min Yoo, Jae-Young Yoo, Young-Sun Kim, and Young-Chon Kim. 2010. Design of Defence Mechanism against DDoS Attacks in NCP-based Broadband Convergence Networks. The Journal of Korean Institute of Communications and Information Sciences, 35, 1, (2010), 8-19. DOI: .

[KICS Style]

Kyeong-Eun Han, Won-Hyuk Yang, Kyung-Min Yoo, Jae-Young Yoo, Young-Sun Kim, Young-Chon Kim, "Design of Defence Mechanism against DDoS Attacks in NCP-based Broadband Convergence Networks," The Journal of Korean Institute of Communications and Information Sciences, vol. 35, no. 1, pp. 8-19, 1. 2010.

Design of Defence Mechanism against DDoS Attacks in NCP-based Broadband Convergence Networks

Submenu

Search
(IN TITLE, AUTHOR, ABSTRACT,KEYWORDS)

Advanced Search

Recent Publications
(LAST 3 YEARS)

Design of Defence Mechanism against DDoS Attacks in NCP-based Broadband Convergence Networks

Submenu

Search (IN TITLE, AUTHOR, ABSTRACT,KEYWORDS)

Advanced Search

POPULAR KEYWORDS(TOP 10 KEYWORDS)

Recent Publications(LAST 3 YEARS)

Search
(IN TITLE, AUTHOR, ABSTRACT,KEYWORDS)

POPULAR KEYWORDS
(TOP 10 KEYWORDS)

Recent Publications
(LAST 3 YEARS)