Improved Network Traffic by Attacking Denial of Service to Protect Resource Using Z-Test Based 4-Tier Geomark Traceback (Z4TGT)

Abstract

Network security plays a vital role in protecting the resources available in the network against various threats. There are vulnerabilities in every system connected to the network. Due to these, unauthorized users try to access and utilize the system resources with some intention. Denial of Service is one of the major attacks, which makes the system resources unavailable to the intended users of the system. Distributed denial of service is invoked by a group of attackers who are either compromised or deliberately demolish the services offered to the victim system. Existing research work on DDoS handling strategies has focused on those with some limitations. In this proposed research work named Z-test based 4-Tier Geomark Traceback (Z4TGT), DDoS attack at various layers of data transmission is detected. The origin of the Source of the attack is traced back using the telephone prefix code incorporated with the Z4TGT mechanism. This mechanism helps to mitigate the attack packets that occur in the victim machine. Z-test based statistical analysis helps to eliminate the type II error by clearly defining the null and alternate hypothesis about the possibilities of the attack. Hence, a negligible false positive rate is achieved. The protection offered by the Z4TGT is available at the network layer and application layer. The average detection rate of 98.75% is achieved with the help of Z-test based statistical analysis. The performance of the victim machine is analyzed before and after the attack mitigation process by considering the throughput and attack rate. A mitigation strategy is effectively performed with the minimum collateral damage of 8%