Presentation is loading. Please wait.

Presentation is loading. Please wait.

ID NO : 1070 S. VARALAKSHMI Sethu Institute Of Tech IV year -ECE department CEC Batch : AUG 2012.

Published byElijah Tate Modified over 8 years ago

Similar presentations

Presentation on theme: "ID NO : 1070 S. VARALAKSHMI Sethu Institute Of Tech IV year -ECE department CEC Batch : AUG 2012."— Presentation transcript:

1 ID NO : 1070 S. VARALAKSHMI iswarya91@gmail.com Sethu Institute Of Tech IV year -ECE department CEC Batch : AUG 2012

2 The Internet was initially designed for openness and scalability

3 The attacker first takes control of a large number of vulnerable hosts on the internet, and then uses them to send a huge flood of packets to the victim simultaneously, exhausting all of its resources.

4

5  Sender authentication process Marking M (24 bit random number generated by the source) is sent to the receiver proxy server by the sender After receiving the Marking value M, the receiver proxy server sends back an echo message for the verification of the marking value If the marking value is correct, then the sender drops a positive acknowledgement After receiving positive acknowledgement, the receiver will send a new marking digest to the source The sender will put the digest value to the option field of the packet and then sends the packet

6  TCP flow rate calculation Normal user usually sends 3 to 4 packet successively and wait for reply Attacker sends the packets continuously Normal flow rate = tp/2 TD is the time duration between two packets tp is the propagation time If ((tp/2)< TD)  Normal packet Else  Attack packets

7  Entropy calculation Entropy is the measure of uncertainty or randomness associated with a random variable (data over the network) The entropy value is  small when the class distribution is pure  large when the class distribution is impure Change in randomness is detected on comparing the value of a sample of packet header files to that of another sample of packet header files Entropy on receiver proxy server is given by P (xi) = (Number of attack)/ Total No of packet

8 Normalized Entropy is given by NE = H/log n0 n0 = no of source node in particular Time Interval If NE < threshold (Δ), then attack is there in receiver proxy server The routers with NE rate less than threshold are suspected as attack routers The NE rate for the neighboring routers of the attack routers are calculated The process is repeated until we reach the source attacker

9 The date and time of the agent software installation is gathered from the attacker The above details are provided to the attacker’s ISP to get the IP address of the source attacker The IANA provides the information related on which ISP the IP address belongs From the new ISP, the source attacker is traced ATTACKER IDENTIFICATION

10

11

Download ppt "ID NO : 1070 S. VARALAKSHMI Sethu Institute Of Tech IV year -ECE department CEC Batch : AUG 2012."

Similar presentations

Network and Application Attacks Contributed by- Chandra Prakash Suryawanshi CISSP, CEH, SANS-GSEC, CISA, ISO 27001LI, BS 25999LA, ERM (ISB) June 2006.

Network and Application Attacks Contributed by- Chandra Prakash Suryawanshi CISSP, CEH, SANS-GSEC, CISA, ISO 27001LI, BS 25999LA, ERM (ISB) June 2006.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Addressing the Network – IPv4 Network Fundamentals – Chapter 6.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Addressing the Network – IPv4 Network Fundamentals – Chapter 6.
Umut Girit 200535027.  One of the core members of the Internet Protocol Suite, the set of network protocols used for the Internet. With UDP, computer.

Umut Girit  One of the core members of the Internet Protocol Suite, the set of network protocols used for the Internet. With UDP, computer.
Introduction to TCP/IP TCP / IP –including 2 protocols Protocol : = a set of rules that govern the communication between different devices Protocol : =

Introduction to TCP/IP TCP / IP –including 2 protocols Protocol : = a set of rules that govern the communication between different devices Protocol : =
CCNA2 Module 4. Discovering and Connecting to Neighbors Enable and disable CDP Use the show cdp neighbors command Determine which neighboring devices.

CCNA2 Module 4. Discovering and Connecting to Neighbors Enable and disable CDP Use the show cdp neighbors command Determine which neighboring devices.
Modelling and Analysing of Security Protocol: Lecture 10 Anonymity: Systems.

Modelling and Analysing of Security Protocol: Lecture 10 Anonymity: Systems.
UDP & TCP Where would we be without them!. UDP User Datagram Protocol.

UDP & TCP Where would we be without them!. UDP User Datagram Protocol.
Security (Continued) V.T. Raja, Ph.D., Oregon State University.

Security (Continued) V.T. Raja, Ph.D., Oregon State University.
Simulation and Analysis of DDos Attacks Poongothai, M Department of Information Technology,Institute of Road and Transport Technology, Erode Tamilnadu,

Simulation and Analysis of DDos Attacks Poongothai, M Department of Information Technology,Institute of Road and Transport Technology, Erode Tamilnadu,
Internet Control Message Protocol (ICMP)

Internet Control Message Protocol (ICMP)
UDP - User Datagram Protocol UDP – User Datagram Protocol Author : Nir Shafrir Reference The TCP/IP Guide - (http://www.TCPIPGuide.com) Version 3.0 - Version.

UDP - User Datagram Protocol UDP – User Datagram Protocol Author : Nir Shafrir Reference The TCP/IP Guide - ( Version Version.
Internet Networking Spring 2003

Internet Networking Spring 2003
Using Multiple Gateways to Foil DDOS Attack by David Wilkinson.

Using Multiple Gateways to Foil DDOS Attack by David Wilkinson.
11 ASSIGNING IP ADDRESSES Chapter 2. Chapter 2: ASSIGNING IP ADDRESSES2 CHAPTER OVERVIEW  Describe the structure of IP addresses and subnet masks. 

11 ASSIGNING IP ADDRESSES Chapter 2. Chapter 2: ASSIGNING IP ADDRESSES2 CHAPTER OVERVIEW  Describe the structure of IP addresses and subnet masks. 
CMPT 471 Networking II Address Resolution IPv6 Neighbor Discovery 1© Janice Regan, 2012.

CMPT 471 Networking II Address Resolution IPv6 Neighbor Discovery 1© Janice Regan, 2012.
DDoS Attack and Its Defense1 CSE 5473: Network Security Prof. Dong Xuan.

DDoS Attack and Its Defense1 CSE 5473: Network Security Prof. Dong Xuan.
1 ICMP : Internet Control Message Protocol Computer Network System Sirak Kaewjamnong.

1 ICMP : Internet Control Message Protocol Computer Network System Sirak Kaewjamnong.
Lecture 22 Page 1 Advanced Network Security Other Types of DDoS Attacks Advanced Network Security Peter Reiher August, 2014.

Lecture 22 Page 1 Advanced Network Security Other Types of DDoS Attacks Advanced Network Security Peter Reiher August, 2014.
Module A Panko and Panko Business Data Networks and Security, 9 th Edition © 2013 Pearson.

Module A Panko and Panko Business Data Networks and Security, 9 th Edition © 2013 Pearson.
Review of IP traceback Ming-Hour Yang The Department of Information & Computer Engineering Chung Yuan Christian University

Review of IP traceback Ming-Hour Yang The Department of Information & Computer Engineering Chung Yuan Christian University

Similar presentations

Ads by Google