Archives
An Enhanced Packet Marking Scheme is Proposed to Track Distributed Denial of Service Attacks
Author(s): Ravi GuptaAbstract
Distributed Denial of Service (DDoS) attacks have emerged as one of the most severe scalable and damaging forms of cyberattacks capable of overwhelming network infrastructures exhausting bandwidth degrading server availability and crippling mission-critical services. As attackers increasingly deploy botnets spoofed source addresses and sophisticated obfuscation techniques identifying the true origin of such attacks has become a persistent challenge in network forensics. Packet marking schemes have been widely proposed in the literature as an efficient method for reconstructing attack paths and identifying malicious origins without excessive router overhead. However traditional packet marking techniques suffer from problems such as low traceback accuracy under high traffic load fragmentation of path information vulnerability to spoofed markings limited scalability and high reconstruction time for distributed attacks involving multiple ingress points. This research proposes an enhanced packet marking scheme designed to improve traceback accuracy reduce marking collisions adapt under load variance and generate reliable path reconstruction even when attackers deploy distributed and high-intensity DDoS vectors.