Solving the Challenges of Network Performance in the Presence of Distributed Denial-of-Service Attack

Abstract

On the Internet, we're talking about distributed denial of service attacks. The February 2000 widespread attack on Yahoo!, Amazon.com, CNN.com, and other major websites inspired us. Denial of service is defined as an intentional attempt by an attacker to prevent you, legitimate customers, from using resources. An attacker could also attempt to "flood" a community, reducing legitimate users' bandwidth, preventing access to services, or disrupting a carrier to a specific machine or person. We outline the methods and strategies used in denial of service attacks, as well as effective countermeasures. Using an ns-2 network simulator, we simulate a distributed denial-of-service assault. During an assault, a test is run to see how well different queuing algorithms in a network router operate and whether valid clients can get the bandwidth they need. Even in the face of continual denial of service attacks, class-based queuing algorithms can ensure bandwidth for affirmative instructions for incoming flows.