Implementation of single‐packet hybrid IP traceback for IPv4 and IPv6 networks

Abstract

The Internet and other computing technologies have seen rapid growth in the recent years; the malicious users continue to look for vulnerabilities in the Internet infrastructure to perform various types of attacks. Distributed denial-of-service attack is an attack in which licit users are repudiated the access to available resources either temporarily or indefinitely. To establish liability for these attacks, there is a need to scout for real attack sources. Schemes that identify the source of packets on the Internet are called IP traceback schemes. Hybrid IP traceback schemes outdo discrete marking and logging approaches and trace the source of attack using a few packets. The findings of this research redound to current single-packet hybrid IP traceback schemes by employing the double hashing technique to resolve collisions in the hash table and thus reducing the logging time at routers by 15%. Besides, the proposed scheme ensures zero false positives by encoding the options field in IPv4 header. The research also introduces the first single-packet hybrid IP traceback implementation for IPv6 networks using hop-by-hop extension header. The simulation results correctly demonstrate the viability of the proposed scheme and unveil that IPv6 implementation requires 82.5% less storage in contrast to existing work.