SlideShare a Scribd company logo

Ip trace ppt

Download as PPTX, PDF
D
deepakmarndi

ip trace ppt is represent in better way. an one can under stand easily......

Technology
1 of 19
SEMINAR ON IP TRACEBACK SECURITY Guided by: Presented By: Miss Ranjita Mishra Deepak Kumar Marndi Regd No-0801106165 CET,BBSR
CONTENTS  Introduction  Overview of Trace back system  Classification of Trace back Methods  Technologies For Preventing Network Attacks  Limitation and open Issues  Challenges and Future Works  Conclusion  References
INTRODUCTION  DOS(denial of service)  DDOS(distributed denial of service  Spoofed IP address  IP Trace back To identify the address of Fig A Scenario of DOS Attack the true source of the packets causing a DOS.
OVERVIEW OF TRACEBACK SYSTEM  Able to trace the attacker with a single packet.  Minimal processing overhead.  Very low level of ISP involvement.  High level of protection is preferred in a trace back system.  Producing meaningful traces are limited to the range of deployment the trace back system.
CLASSIFICATION OF TRACEBACK SYSTEM  Preventing Methods Ingress Filtering  Reactive Methods Link Testing Input Debugging Controlled Flooding Logging ICMP Trackback Packet Marking Algorithm FDPM Trackback TBPM Trackback
CLASSIFICATION(Contd….) • Ingress Filtering  Configure routers to block packets that arrive with illegitimate source addresses.  Examine the source address to distinguish between Fig Ingress Filtering legitimate and illegitimate addresses.  Is most feasible in customer or at the border of the ISPs.
CLASSIFICATION(Contd….) • Link Testing  Starts from the router closest to the victim.  It determines which link carries the attacker’s traffic.  It is divided into two types. Input debugging. Controlled flooding.  Disadvantage Consumes huge amount of resources. Causes denial of service when the no. of sources needed to be increased.
CLASSIFICATION(Contd….) • Logging  It logs packets at key routers.  It determines the attacker’s path based on the packet traversing.  Drawback Enormous resource requirements.
CLASSIFICATION(Contd….) • ICMP TRACEBACK  It trace out the full path of the attack.  It generates an iTrace at every router directed to the same destination as the selected packet.  ICMP message contains part of a traversing Fig ICMP Traceback Mechanism packet and sends the message to the packet’s destination.
CLASSIFICATION(Contd….) • Packet Marking Algorithm  In this algorithm when it forwards a packet it also insert a mark in the packet which is an unique identifier to the particular router.  The victim can determine all the intermediate hops for each packet by observing inserted marks.  This makes the reconstruction of the attack path at the victim’s trivial.  It is divided into two marking schemes. Deterministic Packet Marking scheme. Probabilistic packet Marking scheme.
CLASSIFICATION(Contd….) • FDPM Traceback  It is the optimized version of DPM.  It utilizes various bits(called marks) in the IP header which has a flexible length depending on the network protocol used to mark packets.  When an IP packet enters the protected network, it is marked by the interface close to the source of the packet.  Reconstruction of path can be made as that of DPM to identify the source of the attack if detected.
CLASSIFICATION(Contd….) • Advantages  Number of packets required is comparatively less.  Better Tracing Capability.  It has Different probabilities that a router marks the attack packets.
CLASSIFICATION(Contd….) • TBPM Method  It is based on the bloom filter which utilizes router’s local topology information.  It helps to design a single packet IP traceback system that needs not to be fully deployed in the entire network.  Topology Based Packet Marking has been a new approach in Anti-IP spoofing techniques.  TBPM techniques are compatible with both IPv4 and IPv6; unlike present packet marking techniques that cannot be effectively implemented in IPv6 networks.
TECHNOLOGIES FOR PREVENTING NETWORK ATTACKS • Firewalls • Intrusion Detection • Intrusion Source Identification
LIMITATION AND OPEN ISSUES  It has the problem with tracing beyond corporate firewalls.  To accomplish IP traceback, we need to reach the host where the attack originated.  To trace packets through firewalls into corporate intranets the last- traced IP address might be the firewall’s address.
CHALLENGES AND FUTURE WORK  Identifying the indirect sources of reflector based DDoS attacks.  Identifying the attacker who conceals himself/herself with stepping stones.  Integrating defensive measures with traceback so that one mechanism may perform tracing as well as detection and/or defense.  Automatic traceback to speed up tracing and reduce human intervention.
CONCLUSION  One conclusion we can draw from this is that unless IP trace back measures are deployed all over the Internet, they are only effective for controlled networks than for the Internet.  Today we can find many tools for doing DoS attacks. DoS attacks have become very popular. Hence we need to design proper mechanisms to protect systems from such attacks.
REFERENCES  http://en.wikipedia.org/wiki/IP_traceback  http://dslab.csie.ncu.edu.tw/93html/paper/pdf/IP%20Traceb ack:A%20New%20Denial-of-Service%20Deterrent.pdf  http://cseweb.ucsd.edu/~savage/papers/Ton01.pdf  http://www.cs.plu.edu/courses/netsec/arts/w2020.pdf  http://citeseerx.ist.psu.edu/viewdoc/download?doi=10.1.1.2 .4574&rep=rep1&type=pdf
Ip trace ppt

Recommended

Computer Security and Intrusion Detection(IDS/IPS)
Computer Security and Intrusion Detection(IDS/IPS)Computer Security and Intrusion Detection(IDS/IPS)
Computer Security and Intrusion Detection(IDS/IPS)LJ PROJECTS
 
DDoS Attack Detection and Botnet Prevention using Machine Learning
DDoS Attack Detection and Botnet Prevention using Machine LearningDDoS Attack Detection and Botnet Prevention using Machine Learning
DDoS Attack Detection and Botnet Prevention using Machine LearningIRJET Journal
 
Malware forensics
Malware forensicsMalware forensics
Malware forensicsSameera Amjad
 
Introduction to filesystems and computer forensics
Introduction to filesystems and computer forensicsIntroduction to filesystems and computer forensics
Introduction to filesystems and computer forensicsMayank Chaudhari
 
TCP/IP
TCP/IPTCP/IP
TCP/IPAnju Kanjirathingal
 
Link state routing protocol
Link state routing protocolLink state routing protocol
Link state routing protocolAung Thu Rha Hein
 
IDS and IPS
IDS and IPSIDS and IPS
IDS and IPSSantosh Khadsare
 
File System Interface
File System InterfaceFile System Interface
File System Interfacechandinisanz
 

Recommended

Computer Security and Intrusion Detection(IDS/IPS)
Computer Security and Intrusion Detection(IDS/IPS)Computer Security and Intrusion Detection(IDS/IPS)
Computer Security and Intrusion Detection(IDS/IPS)LJ PROJECTS
 
DDoS Attack Detection and Botnet Prevention using Machine Learning
DDoS Attack Detection and Botnet Prevention using Machine LearningDDoS Attack Detection and Botnet Prevention using Machine Learning
DDoS Attack Detection and Botnet Prevention using Machine LearningIRJET Journal
 
Malware forensics
Malware forensicsMalware forensics
Malware forensicsSameera Amjad
 
Introduction to filesystems and computer forensics
Introduction to filesystems and computer forensicsIntroduction to filesystems and computer forensics
Introduction to filesystems and computer forensicsMayank Chaudhari
 
TCP/IP
TCP/IPTCP/IP
TCP/IPAnju Kanjirathingal
 
Link state routing protocol
Link state routing protocolLink state routing protocol
Link state routing protocolAung Thu Rha Hein
 
IDS and IPS
IDS and IPSIDS and IPS
IDS and IPSSantosh Khadsare
 
File System Interface
File System InterfaceFile System Interface
File System Interfacechandinisanz
 
IPV4 Frame Format
IPV4 Frame FormatIPV4 Frame Format
IPV4 Frame FormatAditya Rawat
 
Static Routing
Static RoutingStatic Routing
Static RoutingKishore Kumar
 
TCP/IP Protocols With All Layer Description
TCP/IP Protocols With All Layer DescriptionTCP/IP Protocols With All Layer Description
TCP/IP Protocols With All Layer DescriptionShubham Khedekar
 
Presentation on arp protocol
Presentation on arp protocolPresentation on arp protocol
Presentation on arp protocolMohd. Ahmad Siddiqi
 
Firewall in Network Security
Firewall in Network SecurityFirewall in Network Security
Firewall in Network Securitylalithambiga kamaraj
 
Tapestry
TapestryTapestry
TapestrySutha31
 
Network address translation
Network address translationNetwork address translation
Network address translationVarsha Honde
 
Lecture 6 -_presentation_layer
Lecture 6 -_presentation_layerLecture 6 -_presentation_layer
Lecture 6 -_presentation_layerSerious_SamSoul
 
TCP/IP 3-way Handshake
TCP/IP 3-way Handshake TCP/IP 3-way Handshake
TCP/IP 3-way Handshake Alok Tripathi
 
Osint presentation nov 2019
Osint presentation nov 2019Osint presentation nov 2019
Osint presentation nov 2019Priyanka Aash
 
Introduction to IDS & IPS - Part 1
Introduction to IDS & IPS - Part 1Introduction to IDS & IPS - Part 1
Introduction to IDS & IPS - Part 1whitehat 'People'
 
IDS VS IPS.pptx
IDS VS IPS.pptxIDS VS IPS.pptx
IDS VS IPS.pptxTapan Khilar
 
Computer forensics
Computer forensicsComputer forensics
Computer forensicsShreya Singireddy
 
Routing Information Protocol (RIP)
Routing Information Protocol (RIP)Routing Information Protocol (RIP)
Routing Information Protocol (RIP)Amna Nawazish
 
Distributed operating system
Distributed operating systemDistributed operating system
Distributed operating systemudaya khanal
 
Network Layer
Network LayerNetwork Layer
Network LayerDr Shashikant Athawale
 
Ipv4 presentation
Ipv4 presentationIpv4 presentation
Ipv4 presentationshakeel khan
 
Grayhole
GrayholeGrayhole
GrayholeKumud Dixit
 
Intrusion Detection System(IDS)
Intrusion Detection System(IDS)Intrusion Detection System(IDS)
Intrusion Detection System(IDS)shraddha_b
 
Intrusion detection and prevention system
Intrusion detection and prevention systemIntrusion detection and prevention system
Intrusion detection and prevention systemNikhil Raj
 
Passive ip traceback disclosing the locations
Passive ip traceback disclosing the locationsPassive ip traceback disclosing the locations
Passive ip traceback disclosing the locationsjpstudcorner
 
Ip traceback seminar full report
Ip traceback seminar full reportIp traceback seminar full report
Ip traceback seminar full reportdeepakmarndi
 

More Related Content

What's hot

TCP/IP Protocols With All Layer Description
TCP/IP Protocols With All Layer DescriptionTCP/IP Protocols With All Layer Description
TCP/IP Protocols With All Layer DescriptionShubham Khedekar
 
Tapestry
TapestryTapestry
TapestrySutha31
 
Network address translation
Network address translationNetwork address translation
Network address translationVarsha Honde
 
Lecture 6 -_presentation_layer
Lecture 6 -_presentation_layerLecture 6 -_presentation_layer
Lecture 6 -_presentation_layerSerious_SamSoul
 
TCP/IP 3-way Handshake
TCP/IP 3-way Handshake TCP/IP 3-way Handshake
TCP/IP 3-way Handshake Alok Tripathi
 
Osint presentation nov 2019
Osint presentation nov 2019Osint presentation nov 2019
Osint presentation nov 2019Priyanka Aash
 
Introduction to IDS & IPS - Part 1
Introduction to IDS & IPS - Part 1Introduction to IDS & IPS - Part 1
Introduction to IDS & IPS - Part 1whitehat 'People'
 
Routing Information Protocol (RIP)
Routing Information Protocol (RIP)Routing Information Protocol (RIP)
Routing Information Protocol (RIP)Amna Nawazish
 
Distributed operating system
Distributed operating systemDistributed operating system
Distributed operating systemudaya khanal
 
Intrusion Detection System(IDS)
Intrusion Detection System(IDS)Intrusion Detection System(IDS)
Intrusion Detection System(IDS)shraddha_b
 
Intrusion detection and prevention system
Intrusion detection and prevention systemIntrusion detection and prevention system
Intrusion detection and prevention systemNikhil Raj
 

What's hot (20)

IPV4 Frame Format
IPV4 Frame FormatIPV4 Frame Format
IPV4 Frame Format
 
Static Routing
Static RoutingStatic Routing
Static Routing
 
TCP/IP Protocols With All Layer Description
TCP/IP Protocols With All Layer DescriptionTCP/IP Protocols With All Layer Description
TCP/IP Protocols With All Layer Description
 
Presentation on arp protocol
Presentation on arp protocolPresentation on arp protocol
Presentation on arp protocol
 
Firewall in Network Security
Firewall in Network SecurityFirewall in Network Security
Firewall in Network Security
 
Tapestry
TapestryTapestry
Tapestry
 
Network address translation
Network address translationNetwork address translation
Network address translation
 
Lecture 6 -_presentation_layer
Lecture 6 -_presentation_layerLecture 6 -_presentation_layer
Lecture 6 -_presentation_layer
 
TCP/IP 3-way Handshake
TCP/IP 3-way Handshake TCP/IP 3-way Handshake
TCP/IP 3-way Handshake
 
Osint presentation nov 2019
Osint presentation nov 2019Osint presentation nov 2019
Osint presentation nov 2019
 
Introduction to IDS & IPS - Part 1
Introduction to IDS & IPS - Part 1Introduction to IDS & IPS - Part 1
Introduction to IDS & IPS - Part 1
 
IDS VS IPS.pptx
IDS VS IPS.pptxIDS VS IPS.pptx
IDS VS IPS.pptx
 
Computer forensics
Computer forensicsComputer forensics
Computer forensics
 
Routing Information Protocol (RIP)
Routing Information Protocol (RIP)Routing Information Protocol (RIP)
Routing Information Protocol (RIP)
 
Distributed operating system
Distributed operating systemDistributed operating system
Distributed operating system
 
Network Layer
Network LayerNetwork Layer
Network Layer
 
Ipv4 presentation
Ipv4 presentationIpv4 presentation
Ipv4 presentation
 
Grayhole
GrayholeGrayhole
Grayhole
 
Intrusion Detection System(IDS)
Intrusion Detection System(IDS)Intrusion Detection System(IDS)
Intrusion Detection System(IDS)
 
Intrusion detection and prevention system
Intrusion detection and prevention systemIntrusion detection and prevention system
Intrusion detection and prevention system
 

Viewers also liked

Passive ip traceback disclosing the locations
Passive ip traceback disclosing the locationsPassive ip traceback disclosing the locations
Passive ip traceback disclosing the locationsjpstudcorner
 
Ip traceback seminar full report
Ip traceback seminar full reportIp traceback seminar full report
Ip traceback seminar full reportdeepakmarndi
 
Overview of IP traceback mechanism
Overview of IP traceback mechanismOverview of IP traceback mechanism
Overview of IP traceback mechanismibnu mubarok
 
Passive ip traceback disclosing the locations of ip spoofers from path backsc...
Passive ip traceback disclosing the locations of ip spoofers from path backsc...Passive ip traceback disclosing the locations of ip spoofers from path backsc...
Passive ip traceback disclosing the locations of ip spoofers from path backsc...Pvrtechnologies Nellore
 
Tracing IP Addresses: Gary Kessler
Tracing IP Addresses: Gary KesslerTracing IP Addresses: Gary Kessler
Tracing IP Addresses: Gary KesslerVere Software
 
Speedy ip trace back(sipt) for identifying sadhan
Speedy ip trace back(sipt) for identifying sadhanSpeedy ip trace back(sipt) for identifying sadhan
Speedy ip trace back(sipt) for identifying sadhanSadan Kumar
 
Online sources of information december 2010
Online sources of information december 2010Online sources of information december 2010
Online sources of information december 2010Vere Software
 
Tracing an email by Amin Pathan
Tracing an email by Amin PathanTracing an email by Amin Pathan
Tracing an email by Amin Pathanaminpathan11
 
Night vision report
Night vision reportNight vision report
Night vision reportdeepakmarndi
 
Going with the (Cash) Flow with Microsoft Excel
Going with the (Cash) Flow with Microsoft ExcelGoing with the (Cash) Flow with Microsoft Excel
Going with the (Cash) Flow with Microsoft ExcelKeitaro Matsuoka
 
From Awesome Admin to Champion Coder by Ashima Saigal, David Liu, Jennifer Be...
From Awesome Admin to Champion Coder by Ashima Saigal, David Liu, Jennifer Be...From Awesome Admin to Champion Coder by Ashima Saigal, David Liu, Jennifer Be...
From Awesome Admin to Champion Coder by Ashima Saigal, David Liu, Jennifer Be...Salesforce Admins
 
Typhoon Hagupit (RubyPH) Map Sampling
Typhoon Hagupit (RubyPH) Map Sampling Typhoon Hagupit (RubyPH) Map Sampling
Typhoon Hagupit (RubyPH) Map Sampling Catherine Graham
 

Viewers also liked (16)

Passive ip traceback disclosing the locations
Passive ip traceback disclosing the locationsPassive ip traceback disclosing the locations
Passive ip traceback disclosing the locations
 
Ip traceback seminar full report
Ip traceback seminar full reportIp traceback seminar full report
Ip traceback seminar full report
 
Overview of IP traceback mechanism
Overview of IP traceback mechanismOverview of IP traceback mechanism
Overview of IP traceback mechanism
 
Passive ip traceback disclosing the locations of ip spoofers from path backsc...
Passive ip traceback disclosing the locations of ip spoofers from path backsc...Passive ip traceback disclosing the locations of ip spoofers from path backsc...
Passive ip traceback disclosing the locations of ip spoofers from path backsc...
 
Tracing IP Addresses: Gary Kessler
Tracing IP Addresses: Gary KesslerTracing IP Addresses: Gary Kessler
Tracing IP Addresses: Gary Kessler
 
Speedy ip trace back(sipt) for identifying sadhan
Speedy ip trace back(sipt) for identifying sadhanSpeedy ip trace back(sipt) for identifying sadhan
Speedy ip trace back(sipt) for identifying sadhan
 
Ip address
Ip addressIp address
Ip address
 
Online sources of information december 2010
Online sources of information december 2010Online sources of information december 2010
Online sources of information december 2010
 
Tracing an email by Amin Pathan
Tracing an email by Amin PathanTracing an email by Amin Pathan
Tracing an email by Amin Pathan
 
Night vision report
Night vision reportNight vision report
Night vision report
 
11 áGua 393 27 Ago04
11 áGua 393 27 Ago0411 áGua 393 27 Ago04
11 áGua 393 27 Ago04
 
Going with the (Cash) Flow with Microsoft Excel
Going with the (Cash) Flow with Microsoft ExcelGoing with the (Cash) Flow with Microsoft Excel
Going with the (Cash) Flow with Microsoft Excel
 
From Awesome Admin to Champion Coder by Ashima Saigal, David Liu, Jennifer Be...
From Awesome Admin to Champion Coder by Ashima Saigal, David Liu, Jennifer Be...From Awesome Admin to Champion Coder by Ashima Saigal, David Liu, Jennifer Be...
From Awesome Admin to Champion Coder by Ashima Saigal, David Liu, Jennifer Be...
 
Zaragoza turismo-56
Zaragoza turismo-56Zaragoza turismo-56
Zaragoza turismo-56
 
Typhoon Hagupit (RubyPH) Map Sampling
Typhoon Hagupit (RubyPH) Map Sampling Typhoon Hagupit (RubyPH) Map Sampling
Typhoon Hagupit (RubyPH) Map Sampling
 
EFFAM PIONEERS.
EFFAM PIONEERS.EFFAM PIONEERS.
EFFAM PIONEERS.
 

Similar to Ip trace ppt

TRACEBACK OF DOS OVER AUTONOMOUS SYSTEMS
TRACEBACK OF DOS OVER AUTONOMOUS SYSTEMSTRACEBACK OF DOS OVER AUTONOMOUS SYSTEMS
TRACEBACK OF DOS OVER AUTONOMOUS SYSTEMSIJNSA Journal
 
Efficient packet marking for large scale ip trace back(synopsis)
Efficient packet marking for large scale ip trace back(synopsis)Efficient packet marking for large scale ip trace back(synopsis)
Efficient packet marking for large scale ip trace back(synopsis)Mumbai Academisc
 
REVEALING THE LOCATIONS OF IP SPOOFERS FROM ICMP
REVEALING THE LOCATIONS OF IP SPOOFERS FROM ICMPREVEALING THE LOCATIONS OF IP SPOOFERS FROM ICMP
REVEALING THE LOCATIONS OF IP SPOOFERS FROM ICMPpaperpublications3
 
Cyber security tutorial2
Cyber security tutorial2Cyber security tutorial2
Cyber security tutorial2sweta dargad
 
Ijricit 01-001 pipt - path backscatter mechanism for unveiling real location ...
Ijricit 01-001 pipt - path backscatter mechanism for unveiling real location ...Ijricit 01-001 pipt - path backscatter mechanism for unveiling real location ...
Ijricit 01-001 pipt - path backscatter mechanism for unveiling real location ...Ijripublishers Ijri
 
An improved ip traceback mechanism for network security
An improved ip traceback mechanism for network securityAn improved ip traceback mechanism for network security
An improved ip traceback mechanism for network securityeSAT Journals
 
An improved ip traceback mechanism for network
An improved ip traceback mechanism for networkAn improved ip traceback mechanism for network
An improved ip traceback mechanism for networkeSAT Publishing House
 
BYPASSING OF DEPLOYMENT DIFFICULTIES OF IP TRACEBACK TECHNIQUES USING NEW PAS...
BYPASSING OF DEPLOYMENT DIFFICULTIES OF IP TRACEBACK TECHNIQUES USING NEW PAS...BYPASSING OF DEPLOYMENT DIFFICULTIES OF IP TRACEBACK TECHNIQUES USING NEW PAS...
BYPASSING OF DEPLOYMENT DIFFICULTIES OF IP TRACEBACK TECHNIQUES USING NEW PAS...Journal For Research
 
Procuring the Anomaly Packets and Accountability Detection in the Network
Procuring the Anomaly Packets and Accountability Detection in the NetworkProcuring the Anomaly Packets and Accountability Detection in the Network
Procuring the Anomaly Packets and Accountability Detection in the NetworkIOSR Journals
 
透视消费者.ppt
透视消费者.ppt透视消费者.ppt
透视消费者.pptwei mingyang
 
firewalls.ppt
firewalls.pptfirewalls.ppt
firewalls.pptRaj Kumar
 
THE FIGHT AGAINST IP SPOOFING ATTACKS: NETWORK INGRESS FILTERING VERSUS FIRST...
THE FIGHT AGAINST IP SPOOFING ATTACKS: NETWORK INGRESS FILTERING VERSUS FIRST...THE FIGHT AGAINST IP SPOOFING ATTACKS: NETWORK INGRESS FILTERING VERSUS FIRST...
THE FIGHT AGAINST IP SPOOFING ATTACKS: NETWORK INGRESS FILTERING VERSUS FIRST...ijsptm
 
IRJET-A Survey On Opportunistic Piggyback Marking For IP Trace Back
IRJET-A Survey On Opportunistic Piggyback Marking For IP Trace BackIRJET-A Survey On Opportunistic Piggyback Marking For IP Trace Back
IRJET-A Survey On Opportunistic Piggyback Marking For IP Trace BackIRJET Journal
 
A Survey On Opportunistic Piggyback Marking For IP Trace Back
A Survey On Opportunistic Piggyback Marking For IP Trace BackA Survey On Opportunistic Piggyback Marking For IP Trace Back
A Survey On Opportunistic Piggyback Marking For IP Trace BackIRJET Journal
 
Detection of application layer ddos attack using hidden semi markov model (20...
Detection of application layer ddos attack using hidden semi markov model (20...Detection of application layer ddos attack using hidden semi markov model (20...
Detection of application layer ddos attack using hidden semi markov model (20...Mumbai Academisc
 
Intrusion_Detection_By_loay_elbasyouni
Intrusion_Detection_By_loay_elbasyouniIntrusion_Detection_By_loay_elbasyouni
Intrusion_Detection_By_loay_elbasyouniLoay Elbasyouni
 
A STATISTICAL APPROACH TO DETECT DENIAL OF SERVICE ATTACKER
A STATISTICAL APPROACH TO DETECT DENIAL OF SERVICE ATTACKERA STATISTICAL APPROACH TO DETECT DENIAL OF SERVICE ATTACKER
A STATISTICAL APPROACH TO DETECT DENIAL OF SERVICE ATTACKERJournal For Research
 

Similar to Ip trace ppt (20)

Ijnsa050211
Ijnsa050211Ijnsa050211
Ijnsa050211
 
TRACEBACK OF DOS OVER AUTONOMOUS SYSTEMS
TRACEBACK OF DOS OVER AUTONOMOUS SYSTEMSTRACEBACK OF DOS OVER AUTONOMOUS SYSTEMS
TRACEBACK OF DOS OVER AUTONOMOUS SYSTEMS
 
Efficient packet marking for large scale ip trace back(synopsis)
Efficient packet marking for large scale ip trace back(synopsis)Efficient packet marking for large scale ip trace back(synopsis)
Efficient packet marking for large scale ip trace back(synopsis)
 
REVEALING THE LOCATIONS OF IP SPOOFERS FROM ICMP
REVEALING THE LOCATIONS OF IP SPOOFERS FROM ICMPREVEALING THE LOCATIONS OF IP SPOOFERS FROM ICMP
REVEALING THE LOCATIONS OF IP SPOOFERS FROM ICMP
 
3.Network
3.Network3.Network
3.Network
 
Cyber security tutorial2
Cyber security tutorial2Cyber security tutorial2
Cyber security tutorial2
 
Ijricit 01-001 pipt - path backscatter mechanism for unveiling real location ...
Ijricit 01-001 pipt - path backscatter mechanism for unveiling real location ...Ijricit 01-001 pipt - path backscatter mechanism for unveiling real location ...
Ijricit 01-001 pipt - path backscatter mechanism for unveiling real location ...
 
An improved ip traceback mechanism for network security
An improved ip traceback mechanism for network securityAn improved ip traceback mechanism for network security
An improved ip traceback mechanism for network security
 
An improved ip traceback mechanism for network
An improved ip traceback mechanism for networkAn improved ip traceback mechanism for network
An improved ip traceback mechanism for network
 
BYPASSING OF DEPLOYMENT DIFFICULTIES OF IP TRACEBACK TECHNIQUES USING NEW PAS...
BYPASSING OF DEPLOYMENT DIFFICULTIES OF IP TRACEBACK TECHNIQUES USING NEW PAS...BYPASSING OF DEPLOYMENT DIFFICULTIES OF IP TRACEBACK TECHNIQUES USING NEW PAS...
BYPASSING OF DEPLOYMENT DIFFICULTIES OF IP TRACEBACK TECHNIQUES USING NEW PAS...
 
Procuring the Anomaly Packets and Accountability Detection in the Network
Procuring the Anomaly Packets and Accountability Detection in the NetworkProcuring the Anomaly Packets and Accountability Detection in the Network
Procuring the Anomaly Packets and Accountability Detection in the Network
 
透视消费者.ppt
透视消费者.ppt透视消费者.ppt
透视消费者.ppt
 
firewalls.ppt
firewalls.pptfirewalls.ppt
firewalls.ppt
 
THE FIGHT AGAINST IP SPOOFING ATTACKS: NETWORK INGRESS FILTERING VERSUS FIRST...
THE FIGHT AGAINST IP SPOOFING ATTACKS: NETWORK INGRESS FILTERING VERSUS FIRST...THE FIGHT AGAINST IP SPOOFING ATTACKS: NETWORK INGRESS FILTERING VERSUS FIRST...
THE FIGHT AGAINST IP SPOOFING ATTACKS: NETWORK INGRESS FILTERING VERSUS FIRST...
 
IRJET-A Survey On Opportunistic Piggyback Marking For IP Trace Back
IRJET-A Survey On Opportunistic Piggyback Marking For IP Trace BackIRJET-A Survey On Opportunistic Piggyback Marking For IP Trace Back
IRJET-A Survey On Opportunistic Piggyback Marking For IP Trace Back
 
A Survey On Opportunistic Piggyback Marking For IP Trace Back
A Survey On Opportunistic Piggyback Marking For IP Trace BackA Survey On Opportunistic Piggyback Marking For IP Trace Back
A Survey On Opportunistic Piggyback Marking For IP Trace Back
 
Detection of application layer ddos attack using hidden semi markov model (20...
Detection of application layer ddos attack using hidden semi markov model (20...Detection of application layer ddos attack using hidden semi markov model (20...
Detection of application layer ddos attack using hidden semi markov model (20...
 
Intrusion_Detection_By_loay_elbasyouni
Intrusion_Detection_By_loay_elbasyouniIntrusion_Detection_By_loay_elbasyouni
Intrusion_Detection_By_loay_elbasyouni
 
A STATISTICAL APPROACH TO DETECT DENIAL OF SERVICE ATTACKER
A STATISTICAL APPROACH TO DETECT DENIAL OF SERVICE ATTACKERA STATISTICAL APPROACH TO DETECT DENIAL OF SERVICE ATTACKER
A STATISTICAL APPROACH TO DETECT DENIAL OF SERVICE ATTACKER
 
DDoS attacks
DDoS attacksDDoS attacks
DDoS attacks
 

Recently uploaded

Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Allon Mureinik
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024Results
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024Rafal Los
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024The Digital Insurer
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationRadu Cotescu
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxMalak Abu Hammad
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdfhans926745
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesSinan KOZAK
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)Gabriella Davis
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking MenDelhi Call girls
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking MenDelhi Call girls
 
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024BookNet Canada
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonAnna Loughnan Colquhoun
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Miguel Araújo
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountPuma Security, LLC
 
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 3652toLead Limited
 
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...gurkirankumar98700
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Drew Madelung
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Igalia
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationRidwan Fadjar
 

Recently uploaded (20)

Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organization
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptx
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen Frames
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men
 
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
 
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
 
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 Presentation
 

Ip trace ppt

  • 1. SEMINAR ON IP TRACEBACK SECURITY Guided by: Presented By: Miss Ranjita Mishra Deepak Kumar Marndi Regd No-0801106165 CET,BBSR
  • 2. CONTENTS  Introduction  Overview of Trace back system  Classification of Trace back Methods  Technologies For Preventing Network Attacks  Limitation and open Issues  Challenges and Future Works  Conclusion  References
  • 3. INTRODUCTION  DOS(denial of service)  DDOS(distributed denial of service  Spoofed IP address  IP Trace back To identify the address of Fig A Scenario of DOS Attack the true source of the packets causing a DOS.
  • 4. OVERVIEW OF TRACEBACK SYSTEM  Able to trace the attacker with a single packet.  Minimal processing overhead.  Very low level of ISP involvement.  High level of protection is preferred in a trace back system.  Producing meaningful traces are limited to the range of deployment the trace back system.
  • 5. CLASSIFICATION OF TRACEBACK SYSTEM  Preventing Methods Ingress Filtering  Reactive Methods Link Testing Input Debugging Controlled Flooding Logging ICMP Trackback Packet Marking Algorithm FDPM Trackback TBPM Trackback
  • 6. CLASSIFICATION(Contd….) • Ingress Filtering  Configure routers to block packets that arrive with illegitimate source addresses.  Examine the source address to distinguish between Fig Ingress Filtering legitimate and illegitimate addresses.  Is most feasible in customer or at the border of the ISPs.
  • 7. CLASSIFICATION(Contd….) • Link Testing  Starts from the router closest to the victim.  It determines which link carries the attacker’s traffic.  It is divided into two types. Input debugging. Controlled flooding.  Disadvantage Consumes huge amount of resources. Causes denial of service when the no. of sources needed to be increased.
  • 8. CLASSIFICATION(Contd….) • Logging  It logs packets at key routers.  It determines the attacker’s path based on the packet traversing.  Drawback Enormous resource requirements.
  • 9. CLASSIFICATION(Contd….) • ICMP TRACEBACK  It trace out the full path of the attack.  It generates an iTrace at every router directed to the same destination as the selected packet.  ICMP message contains part of a traversing Fig ICMP Traceback Mechanism packet and sends the message to the packet’s destination.
  • 10. CLASSIFICATION(Contd….) • Packet Marking Algorithm  In this algorithm when it forwards a packet it also insert a mark in the packet which is an unique identifier to the particular router.  The victim can determine all the intermediate hops for each packet by observing inserted marks.  This makes the reconstruction of the attack path at the victim’s trivial.  It is divided into two marking schemes. Deterministic Packet Marking scheme. Probabilistic packet Marking scheme.
  • 11. CLASSIFICATION(Contd….) • FDPM Traceback  It is the optimized version of DPM.  It utilizes various bits(called marks) in the IP header which has a flexible length depending on the network protocol used to mark packets.  When an IP packet enters the protected network, it is marked by the interface close to the source of the packet.  Reconstruction of path can be made as that of DPM to identify the source of the attack if detected.
  • 12. CLASSIFICATION(Contd….) • Advantages  Number of packets required is comparatively less.  Better Tracing Capability.  It has Different probabilities that a router marks the attack packets.
  • 13. CLASSIFICATION(Contd….) • TBPM Method  It is based on the bloom filter which utilizes router’s local topology information.  It helps to design a single packet IP traceback system that needs not to be fully deployed in the entire network.  Topology Based Packet Marking has been a new approach in Anti-IP spoofing techniques.  TBPM techniques are compatible with both IPv4 and IPv6; unlike present packet marking techniques that cannot be effectively implemented in IPv6 networks.
  • 14. TECHNOLOGIES FOR PREVENTING NETWORK ATTACKS • Firewalls • Intrusion Detection • Intrusion Source Identification
  • 15. LIMITATION AND OPEN ISSUES  It has the problem with tracing beyond corporate firewalls.  To accomplish IP traceback, we need to reach the host where the attack originated.  To trace packets through firewalls into corporate intranets the last- traced IP address might be the firewall’s address.
  • 16. CHALLENGES AND FUTURE WORK  Identifying the indirect sources of reflector based DDoS attacks.  Identifying the attacker who conceals himself/herself with stepping stones.  Integrating defensive measures with traceback so that one mechanism may perform tracing as well as detection and/or defense.  Automatic traceback to speed up tracing and reduce human intervention.
  • 17. CONCLUSION  One conclusion we can draw from this is that unless IP trace back measures are deployed all over the Internet, they are only effective for controlled networks than for the Internet.  Today we can find many tools for doing DoS attacks. DoS attacks have become very popular. Hence we need to design proper mechanisms to protect systems from such attacks.
  • 18. REFERENCES  http://en.wikipedia.org/wiki/IP_traceback  http://dslab.csie.ncu.edu.tw/93html/paper/pdf/IP%20Traceb ack:A%20New%20Denial-of-Service%20Deterrent.pdf  http://cseweb.ucsd.edu/~savage/papers/Ton01.pdf  http://www.cs.plu.edu/courses/netsec/arts/w2020.pdf  http://citeseerx.ist.psu.edu/viewdoc/download?doi=10.1.1.2 .4574&rep=rep1&type=pdf