IEICE Technical Committee Submission System
Conference Paper's Information
Online Proceedings
[Sign in]
Tech. Rep. Archives
 Go Top Page Go Previous   [Japanese] / [English] 

Paper Abstract and Keywords
Presentation 2004-12-16 13:50
Deployable Overlay Network for Defense against Distributed SYN Flood Attacks
Yuichi Ohsita (Osaka Univ.), Shingo Ata (Osaka City Univ.), Masayuki Murata (Osaka Univ.)
Abstract (in Japanese) (See Japanese page) 
(in English) Distributed denial-of-service attacks on public servers have recently become more serious. More are SYN Flood attacks, since the malicious attackers can easily exploit the TCP specification to generate traffic making public servers unavailable. To assure that network services will not be interrupted, we need faster and more accurate defense mechanisms against malicious traffic, especially SYN floods. But single point deffense (ex. firewalls) cannot work at the large distributed attacks.

In this paper, we introduce a distributed defense mechanism using overlay netwroks of TCP Proxies. This mechanism detects attacks near the victim servers and alert messages are sent via the overlay networks. And then TCP Proxies classify packets to the victim servers and blocks malicious traffic. The packets classified into legitimate traffic are protected by being sent via overlay networks. We simulate and verify our proposed method can effectively block malicious traffic and protect legitimate traffic.
Keyword (in Japanese) (See Japanese page) 
(in English) Distributed Denial of Service / DDoS / SYN flood / overlay network / TCP proxy / / /  
Reference Info. IEICE Tech. Rep., vol. 104, no. 513, IN2004-125, pp. 13-18, Dec. 2004.
Paper # IN2004-125 
Date of Issue 2004-12-09 (IN) 
ISSN Print edition: ISSN 0913-5685
Download PDF

Conference Information
Committee IN  
Conference Date 2004-12-16 - 2004-12-17 
Place (in Japanese) (See Japanese page) 
Place (in English) Hiroshima City Univ. 
Topics (in Japanese) (See Japanese page) 
Topics (in English)  
Paper Information
Registration To IN 
Conference Code 2004-12-IN 
Language Japanese 
Title (in Japanese) (See Japanese page) 
Sub Title (in Japanese) (See Japanese page) 
Title (in English) Deployable Overlay Network for Defense against Distributed SYN Flood Attacks 
Sub Title (in English)  
Keyword(1) Distributed Denial of Service  
Keyword(2) DDoS  
Keyword(3) SYN flood  
Keyword(4) overlay network  
Keyword(5) TCP proxy  
1st Author's Name Yuichi Ohsita  
1st Author's Affiliation Osaka University (Osaka Univ.)
2nd Author's Name Shingo Ata  
2nd Author's Affiliation Osaka City University (Osaka City Univ.)
3rd Author's Name Masayuki Murata  
3rd Author's Affiliation Osaka University (Osaka Univ.)
4th Author's Name  
4th Author's Affiliation ()
5th Author's Name  
5th Author's Affiliation ()
6th Author's Name  
6th Author's Affiliation ()
7th Author's Name  
7th Author's Affiliation ()
8th Author's Name  
8th Author's Affiliation ()
9th Author's Name  
9th Author's Affiliation ()
10th Author's Name  
10th Author's Affiliation ()
11th Author's Name  
11th Author's Affiliation ()
12th Author's Name  
12th Author's Affiliation ()
13th Author's Name  
13th Author's Affiliation ()
14th Author's Name  
14th Author's Affiliation ()
15th Author's Name  
15th Author's Affiliation ()
16th Author's Name  
16th Author's Affiliation ()
17th Author's Name  
17th Author's Affiliation ()
18th Author's Name  
18th Author's Affiliation ()
19th Author's Name  
19th Author's Affiliation ()
20th Author's Name  
20th Author's Affiliation ()
Speaker Author-1 
Date Time 2004-12-16 13:50:00 
Presentation Time 25 minutes 
Registration for IN 
Paper # IN2004-125 
Volume (vol) vol.104 
Number (no) no.513 
Page pp.13-18 
Date of Issue 2004-12-09 (IN) 

[Return to Top Page]

[Return to IEICE Web Page]

The Institute of Electronics, Information and Communication Engineers (IEICE), Japan