Skip to Main Content
A technical solution has been proposed in this paper to secure transport protocol communication in the case of DDoS (distributed denial of service) attacks. The recent papers about DDoS attacks, especially the amplification attack looks for abnormal transaction that signals and eventually reports them. These methods may generate false positives or negatives and in turn can be quite dismal in its performance, in the wake of a real DDoS attack. This paper suggests a symmetric key exchange and hiding of a secret code in the UDP (user datagram protocol) packets. Any packet that has the secret code missing would be rejected. At first, the secure UDP protocol will be discussed and later, a similar method for the TCP (transmission control protocol) will be discussed. Finally the performance analysis is done to compare the overhead incurred.