FAST AND STRONG CONTROL OF CONGESTION-MAKING TRAFFIC

Gaeil Ahn, Kiyoung Kim, Jongsoo Jang

2004

Abstract

In case that malicious or selfish user congests network, the traditional congestion control schemes such as ECN (Explicit Congestion Notification) in TCP protocol could not control the pernicious congestion so perfectly as they protect normal traffic. In this paper, we propose a strong congestion-making traffic control scheme, which is capable of preventing malicious or selfish user from congesting networks by dropping only packets corresponding to congestion-making traffic when a network congestion occurs. Our scheme involves two mechanisms: a traffic service decision mechanism that is able to fast and correctly determine whether an incoming packet is normal traffic or congestion-making, and a marking mechanism for identifying congestion-making traffic. In the marking mechanism a router can mark a packet in order to notify downstream routers that the marked packet is congestion-making traffic. To show our scheme's excellence, its performance is measured and compared with that of the existing schemes through simulation.

References

  1. S. Floyd, “TCP and explicit congestion notification,” ACM Computer Communication Review, vol. 24, no. 5, pp. 8.23, October 1994
  2. K. J. Houle and G. M. Weaver. "Trends in Denial of Service Attack Technology," The fall 2001 NANOG meeting, Oct. 2001
  3. X. Geng and A. B. Whinston, "Defeating Distributed Denial of Service Attacks", IT Pro, July-August 2000, pp 36-41
  4. Cisco, "Strategies to Protect Against Distributed Denial of Service (DDoS) Attacks," white paper, http://www.cisco.com/…/newsflash.html, Feb. 2000.
  5. R. Mahajan, S. M. Bellovin, S. Floyd, and et al., "Controlling High Bandwidth Aggregates in the Network," ACM SIGCOMM Computer Communications Review, Vol. 32, No. 3, pp. 62-73, July 2002.
  6. P. Ferguson and D. Senie, "Network Ingress Filtering: Defeating Denial of Service Attacks which employ IP Source Address Spoofing," RFC 2827, May 2000.
  7. Cisco, "Unicast Reverse Path Forwarding (uRPF) Enhancements for the ISP-ISP Edge", http://www. cisco.com/…/uRPF_Enhancement.pdf, Feb. 2001.
  8. T. Li and Y. Rekhter "A Provider Architecture for Differentialted Services and Traffic Engineering (PASTE)". RFC 2430. October 1998.
  9. K. Nichols,S. Blake, F. Baker and D. Black, "Definition of the Differentiated Services Field (DS Field) in the IPv4 and IPv6 Headers," RFC 2474
  10. F. Baker, W. Weiss and J. Wroclawski, "Assured Forwarding PHB Group," RFC 2597
  11. V. Jacobson, K. Nichols, K. Poduri, "An Expedited Forwarding PHB," RFC 2598
  12. S. Savage, A. Karlin and T. Anderson, "Network Support for IP Traceback," IEEE/ACM Transactions on Networking, Vol. 9, No. 3, June 2001, pp. 226-237
  13. S. Bellovin, M. Leech, and T. Taylor, "ICMP Traceback Messages," Internet draft, Oct. 2001.
  14. S. Keshav, "An Engineering Approach to Computer Networking: ATM Networks, the Internet, and the Telephone Network", Addison Wesley, 1997.
  15. F. Lau, S. H. Rubin, M. H. Smith, and L. Trajkovic, "Distributed Denial of Service Attacks," IEEE International Conference on Systems, Man, and Cybernetics, 2000.
  16. D.K.Y. Yau, J.C.S. Lui, and Feng Liang, "Defending against distributed denial-of-service attacks with maxmin fair server-centric router throttles," Tenth IEEE International Workshop on Quality of Service, pp.35 - 44, May 2002.
Download


Paper Citation


in Harvard Style

Ahn G., Kim K. and Jang J. (2004). FAST AND STRONG CONTROL OF CONGESTION-MAKING TRAFFIC . In Proceedings of the First International Conference on E-Business and Telecommunication Networks - Volume 2: ICETE, ISBN 972-8865-15-5, pages 20-29. DOI: 10.5220/0001399700200029


in Bibtex Style

@conference{icete04,
author={Gaeil Ahn and Kiyoung Kim and Jongsoo Jang},
title={FAST AND STRONG CONTROL OF CONGESTION-MAKING TRAFFIC},
booktitle={Proceedings of the First International Conference on E-Business and Telecommunication Networks - Volume 2: ICETE,},
year={2004},
pages={20-29},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0001399700200029},
isbn={972-8865-15-5},
}


in EndNote Style

TY - CONF
JO - Proceedings of the First International Conference on E-Business and Telecommunication Networks - Volume 2: ICETE,
TI - FAST AND STRONG CONTROL OF CONGESTION-MAKING TRAFFIC
SN - 972-8865-15-5
AU - Ahn G.
AU - Kim K.
AU - Jang J.
PY - 2004
SP - 20
EP - 29
DO - 10.5220/0001399700200029