Journal of Northeastern University(Natural Science)

Journal of Northeastern University ›› 2008, Vol. 29 ›› Issue (3): 324-327.DOI: -

• OriginalPaper • Previous Articles     Next Articles

GA-based filtering algorithm to defend against DDoS attack due to bandwidth depletion

Guo, Rui (1); Chang, Gui-Ran (1); Sun, Bao-Jing (2); Liu, An (2)   

  1. (1) School of Information Science and Engineering, Northeastern University, Shenyang 110004, China; (2) Electronic Scouting and Commanding Department, Shenyang Artillery Academy, Shenyang 110162, China
  • Received:2013-06-22 Revised:2013-06-22 Online:2008-03-15 Published:2013-06-22
  • Contact: Guo, R.
  • About author:-
  • Supported by:
    -

RichHTML

0

PDF (PC)

524

Abstract: With the DDoS (distributed denial of service) traffic which was implemented using depleted bandwidth is filtered by routers, the attached server owners should work together with ISP (Internet service provider) to defend against such DDoS attack the way the Netflow statistics is mainly used to allocate the weights for traffic routing by routers. A new algorithm is thus proposed to get efficiently maximum traffic by GA with the traffic filtered by routers, and its feasibility and validity have been verified in real network circumstances. The algorithm shows its advantages that it just occupies a small part of resources without any ISP router required to participate in, and the servers can be upgraded at low cast and allocated easily. Moreover, it can optimize the network traffic simultaneously with defending against DDoS attack, thus eliminating efficiently the global burst of traffic arising from normal traffic so as to improve greatly the efficiency of servers.

CLC Number: