White Papers

Active Internet Traffic Filtering: Real-Time Response to Denial-of-Service Attacks

Overview This paper describes Active Internet Traffic Filtering (AITF), a mechanism for blocking highly Distributed Denial-of-Service (DDoS) attacks. These attacks are an acute contemporary problem, with few practical solutions available today; this paper describes the reasons why no effective DDoS filtering mechanism has been deployed yet. The paper shows that the current Internet's routers have sufficient filtering resources to thwart such attacks, with the condition that attack traffic be blocked close to its sources; AITF leverages this observation. The results demonstrate that AITF can block a million-flow attack within seconds, while it requires only tens of thousands of wire-speed filters per participating router - an amount easily accommodated by today's routers. AITF can be deployed incrementally and yields benefits even to the very first adopters.

By downloading you agree to our Terms and Conditions. These include information regarding use of your personal data.

Publisher: Stanford University
File Format: PDF
Date Published: Oct 14, 2008
Format: White Papers
Topics: Denial of Service, Network Security, Security Management

Similiar White Papers

X-Force®Threat Insight Quarterly Voice over Internet Protocol (VoIP) ? Find out what the threats and challenges are for anyone deploying VoIP

The X-Force Threat Insight Quarterly (Threat IQ) highlights the most significant threats and challenges facing security

Publisher: Internet Security Systems | Tags: homeland security, security flaws, voip

An independent report by ICSA Labs on the performance of ISS' VoIP-enabled Intrusion Prevention devices

This technical product evaluation is focused on the ISS VoIP-enabled Intrusion Prevention devices. These are built to su

Publisher: Internet Security Systems | Tags: voip

Cisco - Strategies to Protect Against Distributed Denial of Service (DDoS) Attacks

In order to facilitate Distributed Denial of Service (DDoS), the attackers need to have several hundred to several thous

Publisher: Cisco Systems | Tags: ddos, linux

Jargon, jargon, jargon. Find out what the IT industries acronyms really mean

ISS provide you with a simple glossary of major VoIP terms. What do they really mean, when can they be used? Make yourse

Publisher: Internet Security Systems | Tags: voip

IT's New Role: Defining and Managing Risk

This article explores how a Security Risk Management (SRM) approach can protect your company from the most severe threat

Publisher: McAfee | Tags: srm

Stanford University White Papers

Modeling Signal Attenuation in IEEE 802.11 Wireless LANs - Vol. 1

Featured white papers

The Value of Location Intelligence in the Communications Industry

Pitney Bowes

Public Services are under pressure, the challenge is to do more with less. How do you improve citizen satisfaction, increase cost efficiencies and improve service delivery? The power of location intelligence is helping many local authorities...

Download now »
Best Practices for Translating Customer Satisfaction into Revenue

Citrix Online

Today's support organisations are focused on two top-level metrics: financial results and customer satisfaction. For most, it's easy to track financial performance, but customer satisfaction is akin to speaking a foreign language...

Download now »
HP print solutions and 3M

Hewlett-Packard (HP)

The objective for 3M was to optimize office printing infrastructure at 3M locations worldwide, reduce total cost and environmental footprint. Some of the business benefits acheived by switching to HP print solutions...

Download now »