Research on Counter Bandwidth Depletion DDoS Attacks Based on Genetic Algorithm
- Resource Type
- Conference
- Authors
- Guo, Rui; Chang, Guiran; Hou, Ruidong; Qin, Yuhai; Sun, Baojing; Liu, An; Jia, Yan; Peng, Dan
- Source
- Third International Conference on Natural Computation (ICNC 2007) Natural Computation, 2007. ICNC 2007. Third International Conference on. 4:155-159 Aug, 2007
- Subject
- Computing and Processing
Counting circuits
Bandwidth
Computer crime
Genetic algorithms
Telecommunication traffic
Filters
Network servers
Filtering
Protection
Sun
- Language
- ISSN
- 2157-9555
2157-9563
In this paper, we advocate that routers will filter bandwidth depletion of DDoS traffic. It is our consideration that server owners who experience an attack should work with ISP routers to defend DDoS. The main idea is to use statistical approaches of Netflow to allocate weighted bandwidth at the routers. We propose a new algorithm based on Genetic Algorithm to filter traffic on routers and maximize goodput. The feasibility and effectiveness of our approach is validated by measuring the performance of an experimental prototype against a series of attacks. The advantages of the scheme are discussed and further research directions are given.