Proactive model for mitigating Internet denial-of-service attacks

Abstract

Denial-of-Service is one of the most frequent, costly and rapidly growing attacks on the Internet. In a denial of service attack, a malicious user exploits the connectivity of the Internet to cripple the services offered by a victim site, often simply by flooding a victim with many requests. In this paper we have compared the three main architectures already proposed for mitigating the DoS attacks. The comparison is with respect to incremental deployment, traffic analysis, and the attacks on the infrastructure itself. Finally, we combine the strengths of the different proposals to propose a new model for denial of service. Our model uses the concept of active networks to mitigate DoS attacks. � 2007 IEEE.