Title: Traceback of DDoS attack using Entropy Variation
Author(s): Shubhankar Patra1, Shubham Bhirad 2, Pallavi Chaudhari3, Rajyapal Kshirsagar4
Student (UG), Department of Computer Engineering,
A.I.S.S.M.S. College of Engineering, Pune, Maharashtra, India
Distributed Denial-of-Service (DDoS) attacks have become a critical threat to the Internet. However, the feature of the Internet routing mechanisms makes it difficult to trace back to the sources of these attacks. As a result, there is less effective and efficient method to deal with such issue so far. The traceback method for DDoS attacks that is based on entropy variations between normal attack traffic and DDoS attack traffic, which is different from commonly used packet marking techniques. Most of the methodologies in DDoS attack are having some performance issues regarding accuracy of the system, to enhance this, this paper proposes a novel idea of traceback and removal of DDoS attack using entropy variations. As compared to the existing DDoS traceback methods, the proposed methodology possesses a number of advantages, it is memory non intensive, efficiently scalable, robust against packet pollution, and they are independent of attack traffic patterns. These results of experimental and simulation studies are presented to demonstrate the effectiveness and efficiency of the proposed methodology. Our experiments show that accurate traceback is possible in a large scale attack network with thousands of zombies.