Skip to Main Content
Distributed Denial-of-Service (DDoS) attacks are a huge threat to the Internet. Because it is easy to change the source addresses of IP packets, plus the memory-less feature of the Internet, it is extremely hard to defend against DDoS attacks. In this talk, we discuss two particular challenges in dealing with DDoS attacks: the discrimination of DDoS attacks from fresh cloud traffic and the traceback of attack packets to their origins, and propose a number of methods to deal with these challenges. The talk is divided into the following three parts: 1. An overview of existing techniques in dealing with DDoS attacks. 2. Detection of network behavior mimicking DDoS attacks. 3. Trace IP packets of DDoS attacks.