Active router approach to defeating denial-of-service attacks in networks

El-Moussa, FA; Linge, N; Hope, MD

doi:10.1049/iet-com:20050441

Active router approach to defeating denial-of-service attacks in networks

El-Moussa, FA; Linge, N; Hope, MD

Authors

FA El-Moussa

N Linge

MD Hope

Abstract

Denial-of-service attacks represent a major threat to modern organisations who are increasingly dependent on the integrity of their computer networks. A new approach to combating such threats introduces active routers into the network architecture. These active routers offer the combined benefits of intrusion detection, firewall functionality and data encryption and work collaboratively to provide a distributed defence mechanism. The paper provides a detailed description of the design and operation of the algorithms used by the active routers and demonstrates how this approach is able to defeat a SYN and SMURF attack. Other approaches to network design, such as the introduction of a firewall and intrusion detection systems, can be used to protect networks, however, weaknesses remain. It is proposed that the adoption of an active router approach to protecting networks overcomes many of these weaknesses and therefore offers enhanced protection.

Citation

El-Moussa, F., Linge, N., & Hope, M. (2007). Active router approach to defeating denial-of-service attacks in networks. IET Communications, 1(1), 55-63. https://doi.org/10.1049/iet-com%3A20050441

Journal Article Type	Article
Publication Date	Feb 26, 2007
Deposit Date	Sep 25, 2007
Publicly Available Date	Sep 25, 2007
Journal	IET Communications
Print ISSN	1751-8628
Publisher	Institution of Engineering and Technology (IET)
Peer Reviewed	Peer Reviewed
Volume	1
Issue	1
Pages	55-63
DOI	https://doi.org/10.1049/iet-com%3A20050441
Publisher URL	http://dx.doi.org/10.1049/iet-com:20050441
Related Public URLs	http://ieeexplore.ieee.org/xpl/RecentIssue.jsp?punumber=4105970 http://ieeexplore.ieee.org/Xplore/home.jsp