Archives
An enhanced packet marking scheme is proposed to track distributed denial of service attacks.
Author(s): Monesh RaoAbstract
A significant threat to Internet security is the Distributed Denial of Service (DDoS) assault which involves the deliberate flooding of the network with a large number of deceptive packets. This article presents an Enhanced Packet Marking Scheme that use RBF NN as a resolution to the issue of IP Spoofing in DDoS assaults. In order to do this we modify the ID and Offset fields of the IP header to store the designated pushback information without introducing any additional payload. In addition we use a 12-bit HMAC hash algorithm to ensure security and minimise the occurrence of incorrect reconstructions. We conducted experiments using the proposed technique on the NS-2 Simulator for Linux. The results indicate that the approach offers enhanced security and reduces network overhead.