English

IP Traceback for Flooding attacks on Internet Threat Monitors (ITM) Using Honeypots

Networking and Internet Architecture 2012-02-22 v1

Abstract

The Internet Threat Monitoring (ITM) is an efficient monitoring system used globally to measure, detect, characterize and track threats such as denial of service (DoS) and distributed Denial of Service (DDoS) attacks and worms. . To block the monitoring system in the internet the attackers are targeted the ITM system. In this paper we address the flooding attack of DDoS against ITM monitors to exhaust the network resources, such as bandwidth, computing power, or operating system data structures by sending the malicious traffic. We propose an information-theoretic frame work that models the flooding attacks using Botnet on ITM. One possible way to counter DDoS attacks is to trace the attack sources and punish the perpetrators. we propose a novel traceback method for DDoS using Honeypots. IP tracing through honeypot is a single packet tracing method and is more efficient than commonly used packet marking techniques.

Keywords

Cite

@article{arxiv.1202.4530,
  title  = {IP Traceback for Flooding attacks on Internet Threat Monitors (ITM) Using Honeypots},
  author = {K. Munivara Prasad and A. Rama Mohan Reddy and V Jyothsna},
  journal= {arXiv preprint arXiv:1202.4530},
  year   = {2012}
}

Comments

International Journal of Network Security & Its Applications (IJNSA), Vol.4, No.1, January 2012. arXiv admin note: substantial text overlap with arXiv:1201.2481

R2 v1 2026-06-21T20:22:37.232Z