SlideShare a Scribd company logo

Ip trace ppt

Download as PPTX, PDF
D
deepakmarndi

ip trace ppt is represent in better way. an one can under stand easily......

Technology
1 of 19
SEMINAR ON IP TRACEBACK SECURITY Guided by: Presented By: Miss Ranjita Mishra Deepak Kumar Marndi Regd No-0801106165 CET,BBSR
CONTENTS  Introduction  Overview of Trace back system  Classification of Trace back Methods  Technologies For Preventing Network Attacks  Limitation and open Issues  Challenges and Future Works  Conclusion  References
INTRODUCTION  DOS(denial of service)  DDOS(distributed denial of service  Spoofed IP address  IP Trace back To identify the address of Fig A Scenario of DOS Attack the true source of the packets causing a DOS.
OVERVIEW OF TRACEBACK SYSTEM  Able to trace the attacker with a single packet.  Minimal processing overhead.  Very low level of ISP involvement.  High level of protection is preferred in a trace back system.  Producing meaningful traces are limited to the range of deployment the trace back system.
CLASSIFICATION OF TRACEBACK SYSTEM  Preventing Methods Ingress Filtering  Reactive Methods Link Testing Input Debugging Controlled Flooding Logging ICMP Trackback Packet Marking Algorithm FDPM Trackback TBPM Trackback
CLASSIFICATION(Contd….) • Ingress Filtering  Configure routers to block packets that arrive with illegitimate source addresses.  Examine the source address to distinguish between Fig Ingress Filtering legitimate and illegitimate addresses.  Is most feasible in customer or at the border of the ISPs.
CLASSIFICATION(Contd….) • Link Testing  Starts from the router closest to the victim.  It determines which link carries the attacker’s traffic.  It is divided into two types. Input debugging. Controlled flooding.  Disadvantage Consumes huge amount of resources. Causes denial of service when the no. of sources needed to be increased.
CLASSIFICATION(Contd….) • Logging  It logs packets at key routers.  It determines the attacker’s path based on the packet traversing.  Drawback Enormous resource requirements.
CLASSIFICATION(Contd….) • ICMP TRACEBACK  It trace out the full path of the attack.  It generates an iTrace at every router directed to the same destination as the selected packet.  ICMP message contains part of a traversing Fig ICMP Traceback Mechanism packet and sends the message to the packet’s destination.
CLASSIFICATION(Contd….) • Packet Marking Algorithm  In this algorithm when it forwards a packet it also insert a mark in the packet which is an unique identifier to the particular router.  The victim can determine all the intermediate hops for each packet by observing inserted marks.  This makes the reconstruction of the attack path at the victim’s trivial.  It is divided into two marking schemes. Deterministic Packet Marking scheme. Probabilistic packet Marking scheme.
CLASSIFICATION(Contd….) • FDPM Traceback  It is the optimized version of DPM.  It utilizes various bits(called marks) in the IP header which has a flexible length depending on the network protocol used to mark packets.  When an IP packet enters the protected network, it is marked by the interface close to the source of the packet.  Reconstruction of path can be made as that of DPM to identify the source of the attack if detected.
CLASSIFICATION(Contd….) • Advantages  Number of packets required is comparatively less.  Better Tracing Capability.  It has Different probabilities that a router marks the attack packets.
CLASSIFICATION(Contd….) • TBPM Method  It is based on the bloom filter which utilizes router’s local topology information.  It helps to design a single packet IP traceback system that needs not to be fully deployed in the entire network.  Topology Based Packet Marking has been a new approach in Anti-IP spoofing techniques.  TBPM techniques are compatible with both IPv4 and IPv6; unlike present packet marking techniques that cannot be effectively implemented in IPv6 networks.
TECHNOLOGIES FOR PREVENTING NETWORK ATTACKS • Firewalls • Intrusion Detection • Intrusion Source Identification
LIMITATION AND OPEN ISSUES  It has the problem with tracing beyond corporate firewalls.  To accomplish IP traceback, we need to reach the host where the attack originated.  To trace packets through firewalls into corporate intranets the last- traced IP address might be the firewall’s address.
CHALLENGES AND FUTURE WORK  Identifying the indirect sources of reflector based DDoS attacks.  Identifying the attacker who conceals himself/herself with stepping stones.  Integrating defensive measures with traceback so that one mechanism may perform tracing as well as detection and/or defense.  Automatic traceback to speed up tracing and reduce human intervention.
CONCLUSION  One conclusion we can draw from this is that unless IP trace back measures are deployed all over the Internet, they are only effective for controlled networks than for the Internet.  Today we can find many tools for doing DoS attacks. DoS attacks have become very popular. Hence we need to design proper mechanisms to protect systems from such attacks.
REFERENCES  http://en.wikipedia.org/wiki/IP_traceback  http://dslab.csie.ncu.edu.tw/93html/paper/pdf/IP%20Traceb ack:A%20New%20Denial-of-Service%20Deterrent.pdf  http://cseweb.ucsd.edu/~savage/papers/Ton01.pdf  http://www.cs.plu.edu/courses/netsec/arts/w2020.pdf  http://citeseerx.ist.psu.edu/viewdoc/download?doi=10.1.1.2 .4574&rep=rep1&type=pdf
Ip trace ppt

Recommended

cloud computing:Types of virtualization
cloud computing:Types of virtualizationcloud computing:Types of virtualization
cloud computing:Types of virtualization
Dr.Neeraj Kumar Pandey
 
Identity as a Service
Identity as a ServiceIdentity as a Service
Identity as a Service
Prabath Siriwardena
 
Intrusion detection system ppt
Intrusion detection system pptIntrusion detection system ppt
Intrusion detection system ppt
Sheetal Verma
 
Proxy Server
Proxy ServerProxy Server
Proxy Server
guest095022
 
Evolution of Cloud Computing
Evolution of Cloud ComputingEvolution of Cloud Computing
Evolution of Cloud Computing
NephoScale
 
Linux Operating System Vulnerabilities
Linux Operating System VulnerabilitiesLinux Operating System Vulnerabilities
Linux Operating System Vulnerabilities
Information Technology
 
Common Standards in Cloud Computing
Common Standards in Cloud ComputingCommon Standards in Cloud Computing
Common Standards in Cloud Computing
mrzahidfaiz.blogspot.com
 
Types of attacks and threads
Types of attacks and threadsTypes of attacks and threads
Types of attacks and threads
srivijaymanickam
 

Recommended

cloud computing:Types of virtualization
cloud computing:Types of virtualizationcloud computing:Types of virtualization
cloud computing:Types of virtualization
Dr.Neeraj Kumar Pandey
 
Identity as a Service
Identity as a ServiceIdentity as a Service
Identity as a Service
Prabath Siriwardena
 
Intrusion detection system ppt
Intrusion detection system pptIntrusion detection system ppt
Intrusion detection system ppt
Sheetal Verma
 
Proxy Server
Proxy ServerProxy Server
Proxy Server
guest095022
 
Evolution of Cloud Computing
Evolution of Cloud ComputingEvolution of Cloud Computing
Evolution of Cloud Computing
NephoScale
 
Linux Operating System Vulnerabilities
Linux Operating System VulnerabilitiesLinux Operating System Vulnerabilities
Linux Operating System Vulnerabilities
Information Technology
 
Common Standards in Cloud Computing
Common Standards in Cloud ComputingCommon Standards in Cloud Computing
Common Standards in Cloud Computing
mrzahidfaiz.blogspot.com
 
Types of attacks and threads
Types of attacks and threadsTypes of attacks and threads
Types of attacks and threads
srivijaymanickam
 
Virtual machine security
Virtual machine securityVirtual machine security
Virtual machine security
Jacob Zvirikuzhe
 
Port Scanning
Port ScanningPort Scanning
Port Scanning
amiable_indian
 
Cloud Forensics
Cloud ForensicsCloud Forensics
Cloud Forensics
sdavis532
 
Denial of service attack
Denial of service attackDenial of service attack
Denial of service attack
Kaustubh Padwad
 
How to Hunt for Lateral Movement on Your Network
How to Hunt for Lateral Movement on Your NetworkHow to Hunt for Lateral Movement on Your Network
How to Hunt for Lateral Movement on Your Network
Sqrrl
 
DDOS Attack
DDOS Attack DDOS Attack
DDOS Attack
Ahmed Salama
 
Denial of Service Attack
Denial of Service AttackDenial of Service Attack
Denial of Service Attack
Dhrumil Panchal
 
Dos attack
Dos attackDos attack
Dos attack
Manjushree Mashal
 
Ip spoofing ppt
Ip spoofing pptIp spoofing ppt
Ip spoofing ppt
Anushakp9
 
DNS - Domain Name System
DNS - Domain Name SystemDNS - Domain Name System
DNS - Domain Name System
Peter R. Egli
 
Dns server
Dns server Dns server
Dns server
kajal sood
 
DHCP (Dynamic Host Configuration Protocol)
DHCP (Dynamic Host Configuration Protocol)DHCP (Dynamic Host Configuration Protocol)
DHCP (Dynamic Host Configuration Protocol)
Faisal Jatt
 
DDoS Attack Preparation and Mitigation
DDoS Attack Preparation and MitigationDDoS Attack Preparation and Mitigation
DDoS Attack Preparation and Mitigation
Jerod Brennen
 
TOR Packet Analysis - Locating Identifying Markers
TOR Packet Analysis - Locating Identifying MarkersTOR Packet Analysis - Locating Identifying Markers
TOR Packet Analysis - Locating Identifying Markers
Brent Muir
 
Honeypots and honeynets
Honeypots and honeynetsHoneypots and honeynets
Honeypots and honeynets
Rasool Irfan
 
Firewall
FirewallFirewall
Firewall
Apo
 
pop3-imap.ppt
pop3-imap.pptpop3-imap.ppt
pop3-imap.ppt
BilalYounssi
 
RPC: Remote procedure call
RPC: Remote procedure callRPC: Remote procedure call
RPC: Remote procedure call
Sunita Sahu
 
DDoS Protection
DDoS ProtectionDDoS Protection
DDoS Protection
Amazon Web Services
 
IDS and IPS
IDS and IPSIDS and IPS
IDS and IPS
Santosh Khadsare
 
Passive ip traceback disclosing the locations
Passive ip traceback disclosing the locationsPassive ip traceback disclosing the locations
Passive ip traceback disclosing the locations
jpstudcorner
 
Ip traceback seminar full report
Ip traceback seminar full reportIp traceback seminar full report
Ip traceback seminar full report
deepakmarndi
 

More Related Content

What's hot

Cloud Forensics
Cloud ForensicsCloud Forensics
Cloud Forensics
sdavis532
 
Denial of service attack
Denial of service attackDenial of service attack
Denial of service attack
Kaustubh Padwad
 
Ip spoofing ppt
Ip spoofing pptIp spoofing ppt
Ip spoofing ppt
Anushakp9
 
DNS - Domain Name System
DNS - Domain Name SystemDNS - Domain Name System
DNS - Domain Name System
Peter R. Egli
 
Firewall
FirewallFirewall
Firewall
Apo
 

What's hot (20)

Virtual machine security
Virtual machine securityVirtual machine security
Virtual machine security
 
Port Scanning
Port ScanningPort Scanning
Port Scanning
 
Cloud Forensics
Cloud ForensicsCloud Forensics
Cloud Forensics
 
Denial of service attack
Denial of service attackDenial of service attack
Denial of service attack
 
How to Hunt for Lateral Movement on Your Network
How to Hunt for Lateral Movement on Your NetworkHow to Hunt for Lateral Movement on Your Network
How to Hunt for Lateral Movement on Your Network
 
DDOS Attack
DDOS Attack DDOS Attack
DDOS Attack
 
Denial of Service Attack
Denial of Service AttackDenial of Service Attack
Denial of Service Attack
 
Dos attack
Dos attackDos attack
Dos attack
 
Ip spoofing ppt
Ip spoofing pptIp spoofing ppt
Ip spoofing ppt
 
DNS - Domain Name System
DNS - Domain Name SystemDNS - Domain Name System
DNS - Domain Name System
 
Dns server
Dns server Dns server
Dns server
 
DHCP (Dynamic Host Configuration Protocol)
DHCP (Dynamic Host Configuration Protocol)DHCP (Dynamic Host Configuration Protocol)
DHCP (Dynamic Host Configuration Protocol)
 
DDoS Attack Preparation and Mitigation
DDoS Attack Preparation and MitigationDDoS Attack Preparation and Mitigation
DDoS Attack Preparation and Mitigation
 
TOR Packet Analysis - Locating Identifying Markers
TOR Packet Analysis - Locating Identifying MarkersTOR Packet Analysis - Locating Identifying Markers
TOR Packet Analysis - Locating Identifying Markers
 
Honeypots and honeynets
Honeypots and honeynetsHoneypots and honeynets
Honeypots and honeynets
 
Firewall
FirewallFirewall
Firewall
 
pop3-imap.ppt
pop3-imap.pptpop3-imap.ppt
pop3-imap.ppt
 
RPC: Remote procedure call
RPC: Remote procedure callRPC: Remote procedure call
RPC: Remote procedure call
 
DDoS Protection
DDoS ProtectionDDoS Protection
DDoS Protection
 
IDS and IPS
IDS and IPSIDS and IPS
IDS and IPS
 

Viewers also liked

Passive ip traceback disclosing the locations
Passive ip traceback disclosing the locationsPassive ip traceback disclosing the locations
Passive ip traceback disclosing the locations
jpstudcorner
 

Viewers also liked (16)

Passive ip traceback disclosing the locations
Passive ip traceback disclosing the locationsPassive ip traceback disclosing the locations
Passive ip traceback disclosing the locations
 
Ip traceback seminar full report
Ip traceback seminar full reportIp traceback seminar full report
Ip traceback seminar full report
 
Overview of IP traceback mechanism
Overview of IP traceback mechanismOverview of IP traceback mechanism
Overview of IP traceback mechanism
 
Passive ip traceback disclosing the locations of ip spoofers from path backsc...
Passive ip traceback disclosing the locations of ip spoofers from path backsc...Passive ip traceback disclosing the locations of ip spoofers from path backsc...
Passive ip traceback disclosing the locations of ip spoofers from path backsc...
 
Tracing IP Addresses: Gary Kessler
Tracing IP Addresses: Gary KesslerTracing IP Addresses: Gary Kessler
Tracing IP Addresses: Gary Kessler
 
Speedy ip trace back(sipt) for identifying sadhan
Speedy ip trace back(sipt) for identifying sadhanSpeedy ip trace back(sipt) for identifying sadhan
Speedy ip trace back(sipt) for identifying sadhan
 
Ip address
Ip addressIp address
Ip address
 
Online sources of information december 2010
Online sources of information december 2010Online sources of information december 2010
Online sources of information december 2010
 
Tracing an email by Amin Pathan
Tracing an email by Amin PathanTracing an email by Amin Pathan
Tracing an email by Amin Pathan
 
Night vision report
Night vision reportNight vision report
Night vision report
 
11 áGua 393 27 Ago04
11 áGua 393 27 Ago0411 áGua 393 27 Ago04
11 áGua 393 27 Ago04
 
Going with the (Cash) Flow with Microsoft Excel
Going with the (Cash) Flow with Microsoft ExcelGoing with the (Cash) Flow with Microsoft Excel
Going with the (Cash) Flow with Microsoft Excel
 
From Awesome Admin to Champion Coder by Ashima Saigal, David Liu, Jennifer Be...
From Awesome Admin to Champion Coder by Ashima Saigal, David Liu, Jennifer Be...From Awesome Admin to Champion Coder by Ashima Saigal, David Liu, Jennifer Be...
From Awesome Admin to Champion Coder by Ashima Saigal, David Liu, Jennifer Be...
 
Zaragoza turismo-56
Zaragoza turismo-56Zaragoza turismo-56
Zaragoza turismo-56
 
Typhoon Hagupit (RubyPH) Map Sampling
Typhoon Hagupit (RubyPH) Map Sampling Typhoon Hagupit (RubyPH) Map Sampling
Typhoon Hagupit (RubyPH) Map Sampling
 
EFFAM PIONEERS.
EFFAM PIONEERS.EFFAM PIONEERS.
EFFAM PIONEERS.
 

Similar to Ip trace ppt

TRACEBACK OF DOS OVER AUTONOMOUS SYSTEMS
TRACEBACK OF DOS OVER AUTONOMOUS SYSTEMSTRACEBACK OF DOS OVER AUTONOMOUS SYSTEMS
TRACEBACK OF DOS OVER AUTONOMOUS SYSTEMS
IJNSA Journal
 
Efficient packet marking for large scale ip trace back(synopsis)
Efficient packet marking for large scale ip trace back(synopsis)Efficient packet marking for large scale ip trace back(synopsis)
Efficient packet marking for large scale ip trace back(synopsis)
Mumbai Academisc
 
REVEALING THE LOCATIONS OF IP SPOOFERS FROM ICMP
REVEALING THE LOCATIONS OF IP SPOOFERS FROM ICMPREVEALING THE LOCATIONS OF IP SPOOFERS FROM ICMP
REVEALING THE LOCATIONS OF IP SPOOFERS FROM ICMP
paperpublications3
 
Ijricit 01-001 pipt - path backscatter mechanism for unveiling real location ...
Ijricit 01-001 pipt - path backscatter mechanism for unveiling real location ...Ijricit 01-001 pipt - path backscatter mechanism for unveiling real location ...
Ijricit 01-001 pipt - path backscatter mechanism for unveiling real location ...
Ijripublishers Ijri
 
An improved ip traceback mechanism for network security
An improved ip traceback mechanism for network securityAn improved ip traceback mechanism for network security
An improved ip traceback mechanism for network security
eSAT Journals
 
BYPASSING OF DEPLOYMENT DIFFICULTIES OF IP TRACEBACK TECHNIQUES USING NEW PAS...
BYPASSING OF DEPLOYMENT DIFFICULTIES OF IP TRACEBACK TECHNIQUES USING NEW PAS...BYPASSING OF DEPLOYMENT DIFFICULTIES OF IP TRACEBACK TECHNIQUES USING NEW PAS...
BYPASSING OF DEPLOYMENT DIFFICULTIES OF IP TRACEBACK TECHNIQUES USING NEW PAS...
Journal For Research
 
透视消费者.ppt
透视消费者.ppt透视消费者.ppt
透视消费者.ppt
wei mingyang
 
THE FIGHT AGAINST IP SPOOFING ATTACKS: NETWORK INGRESS FILTERING VERSUS FIRST...
THE FIGHT AGAINST IP SPOOFING ATTACKS: NETWORK INGRESS FILTERING VERSUS FIRST...THE FIGHT AGAINST IP SPOOFING ATTACKS: NETWORK INGRESS FILTERING VERSUS FIRST...
THE FIGHT AGAINST IP SPOOFING ATTACKS: NETWORK INGRESS FILTERING VERSUS FIRST...
ijsptm
 
Detection of application layer ddos attack using hidden semi markov model (20...
Detection of application layer ddos attack using hidden semi markov model (20...Detection of application layer ddos attack using hidden semi markov model (20...
Detection of application layer ddos attack using hidden semi markov model (20...
Mumbai Academisc
 
Intrusion_Detection_By_loay_elbasyouni
Intrusion_Detection_By_loay_elbasyouniIntrusion_Detection_By_loay_elbasyouni
Intrusion_Detection_By_loay_elbasyouni
Loay Elbasyouni
 
A STATISTICAL APPROACH TO DETECT DENIAL OF SERVICE ATTACKER
A STATISTICAL APPROACH TO DETECT DENIAL OF SERVICE ATTACKERA STATISTICAL APPROACH TO DETECT DENIAL OF SERVICE ATTACKER
A STATISTICAL APPROACH TO DETECT DENIAL OF SERVICE ATTACKER
Journal For Research
 

Similar to Ip trace ppt (20)

Ijnsa050211
Ijnsa050211Ijnsa050211
Ijnsa050211
 
TRACEBACK OF DOS OVER AUTONOMOUS SYSTEMS
TRACEBACK OF DOS OVER AUTONOMOUS SYSTEMSTRACEBACK OF DOS OVER AUTONOMOUS SYSTEMS
TRACEBACK OF DOS OVER AUTONOMOUS SYSTEMS
 
Efficient packet marking for large scale ip trace back(synopsis)
Efficient packet marking for large scale ip trace back(synopsis)Efficient packet marking for large scale ip trace back(synopsis)
Efficient packet marking for large scale ip trace back(synopsis)
 
REVEALING THE LOCATIONS OF IP SPOOFERS FROM ICMP
REVEALING THE LOCATIONS OF IP SPOOFERS FROM ICMPREVEALING THE LOCATIONS OF IP SPOOFERS FROM ICMP
REVEALING THE LOCATIONS OF IP SPOOFERS FROM ICMP
 
3.Network
3.Network3.Network
3.Network
 
Cyber security tutorial2
Cyber security tutorial2Cyber security tutorial2
Cyber security tutorial2
 
Ijricit 01-001 pipt - path backscatter mechanism for unveiling real location ...
Ijricit 01-001 pipt - path backscatter mechanism for unveiling real location ...Ijricit 01-001 pipt - path backscatter mechanism for unveiling real location ...
Ijricit 01-001 pipt - path backscatter mechanism for unveiling real location ...
 
An improved ip traceback mechanism for network security
An improved ip traceback mechanism for network securityAn improved ip traceback mechanism for network security
An improved ip traceback mechanism for network security
 
An improved ip traceback mechanism for network
An improved ip traceback mechanism for networkAn improved ip traceback mechanism for network
An improved ip traceback mechanism for network
 
BYPASSING OF DEPLOYMENT DIFFICULTIES OF IP TRACEBACK TECHNIQUES USING NEW PAS...
BYPASSING OF DEPLOYMENT DIFFICULTIES OF IP TRACEBACK TECHNIQUES USING NEW PAS...BYPASSING OF DEPLOYMENT DIFFICULTIES OF IP TRACEBACK TECHNIQUES USING NEW PAS...
BYPASSING OF DEPLOYMENT DIFFICULTIES OF IP TRACEBACK TECHNIQUES USING NEW PAS...
 
Procuring the Anomaly Packets and Accountability Detection in the Network
Procuring the Anomaly Packets and Accountability Detection in the NetworkProcuring the Anomaly Packets and Accountability Detection in the Network
Procuring the Anomaly Packets and Accountability Detection in the Network
 
透视消费者.ppt
透视消费者.ppt透视消费者.ppt
透视消费者.ppt
 
firewalls.ppt
firewalls.pptfirewalls.ppt
firewalls.ppt
 
THE FIGHT AGAINST IP SPOOFING ATTACKS: NETWORK INGRESS FILTERING VERSUS FIRST...
THE FIGHT AGAINST IP SPOOFING ATTACKS: NETWORK INGRESS FILTERING VERSUS FIRST...THE FIGHT AGAINST IP SPOOFING ATTACKS: NETWORK INGRESS FILTERING VERSUS FIRST...
THE FIGHT AGAINST IP SPOOFING ATTACKS: NETWORK INGRESS FILTERING VERSUS FIRST...
 
IRJET-A Survey On Opportunistic Piggyback Marking For IP Trace Back
IRJET-A Survey On Opportunistic Piggyback Marking For IP Trace BackIRJET-A Survey On Opportunistic Piggyback Marking For IP Trace Back
IRJET-A Survey On Opportunistic Piggyback Marking For IP Trace Back
 
A Survey On Opportunistic Piggyback Marking For IP Trace Back
A Survey On Opportunistic Piggyback Marking For IP Trace BackA Survey On Opportunistic Piggyback Marking For IP Trace Back
A Survey On Opportunistic Piggyback Marking For IP Trace Back
 
Detection of application layer ddos attack using hidden semi markov model (20...
Detection of application layer ddos attack using hidden semi markov model (20...Detection of application layer ddos attack using hidden semi markov model (20...
Detection of application layer ddos attack using hidden semi markov model (20...
 
Intrusion_Detection_By_loay_elbasyouni
Intrusion_Detection_By_loay_elbasyouniIntrusion_Detection_By_loay_elbasyouni
Intrusion_Detection_By_loay_elbasyouni
 
A STATISTICAL APPROACH TO DETECT DENIAL OF SERVICE ATTACKER
A STATISTICAL APPROACH TO DETECT DENIAL OF SERVICE ATTACKERA STATISTICAL APPROACH TO DETECT DENIAL OF SERVICE ATTACKER
A STATISTICAL APPROACH TO DETECT DENIAL OF SERVICE ATTACKER
 
DDoS attacks
DDoS attacksDDoS attacks
DDoS attacks
 

Recently uploaded

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
sammart93
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
Principled Technologies
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
UK Journal
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
Enterprise Knowledge
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
Delhi Call girls
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
Safe Software
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...
Enterprise Knowledge
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
Delhi Call girls
 

Recently uploaded (20)

Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
 
presentation ICT roal in 21st century education
presentation ICT roal in 21st century educationpresentation ICT roal in 21st century education
presentation ICT roal in 21st century education
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a Fresher
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 
Evaluating the top large language models.pdf
Evaluating the top large language models.pdfEvaluating the top large language models.pdf
Evaluating the top large language models.pdf
 
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...
 
Tech Trends Report 2024 Future Today Institute.pdf
Tech Trends Report 2024 Future Today Institute.pdfTech Trends Report 2024 Future Today Institute.pdf
Tech Trends Report 2024 Future Today Institute.pdf
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
 

Ip trace ppt

  • 1. SEMINAR ON IP TRACEBACK SECURITY Guided by: Presented By: Miss Ranjita Mishra Deepak Kumar Marndi Regd No-0801106165 CET,BBSR
  • 2. CONTENTS  Introduction  Overview of Trace back system  Classification of Trace back Methods  Technologies For Preventing Network Attacks  Limitation and open Issues  Challenges and Future Works  Conclusion  References
  • 3. INTRODUCTION  DOS(denial of service)  DDOS(distributed denial of service  Spoofed IP address  IP Trace back To identify the address of Fig A Scenario of DOS Attack the true source of the packets causing a DOS.
  • 4. OVERVIEW OF TRACEBACK SYSTEM  Able to trace the attacker with a single packet.  Minimal processing overhead.  Very low level of ISP involvement.  High level of protection is preferred in a trace back system.  Producing meaningful traces are limited to the range of deployment the trace back system.
  • 5. CLASSIFICATION OF TRACEBACK SYSTEM  Preventing Methods Ingress Filtering  Reactive Methods Link Testing Input Debugging Controlled Flooding Logging ICMP Trackback Packet Marking Algorithm FDPM Trackback TBPM Trackback
  • 6. CLASSIFICATION(Contd….) • Ingress Filtering  Configure routers to block packets that arrive with illegitimate source addresses.  Examine the source address to distinguish between Fig Ingress Filtering legitimate and illegitimate addresses.  Is most feasible in customer or at the border of the ISPs.
  • 7. CLASSIFICATION(Contd….) • Link Testing  Starts from the router closest to the victim.  It determines which link carries the attacker’s traffic.  It is divided into two types. Input debugging. Controlled flooding.  Disadvantage Consumes huge amount of resources. Causes denial of service when the no. of sources needed to be increased.
  • 8. CLASSIFICATION(Contd….) • Logging  It logs packets at key routers.  It determines the attacker’s path based on the packet traversing.  Drawback Enormous resource requirements.
  • 9. CLASSIFICATION(Contd….) • ICMP TRACEBACK  It trace out the full path of the attack.  It generates an iTrace at every router directed to the same destination as the selected packet.  ICMP message contains part of a traversing Fig ICMP Traceback Mechanism packet and sends the message to the packet’s destination.
  • 10. CLASSIFICATION(Contd….) • Packet Marking Algorithm  In this algorithm when it forwards a packet it also insert a mark in the packet which is an unique identifier to the particular router.  The victim can determine all the intermediate hops for each packet by observing inserted marks.  This makes the reconstruction of the attack path at the victim’s trivial.  It is divided into two marking schemes. Deterministic Packet Marking scheme. Probabilistic packet Marking scheme.
  • 11. CLASSIFICATION(Contd….) • FDPM Traceback  It is the optimized version of DPM.  It utilizes various bits(called marks) in the IP header which has a flexible length depending on the network protocol used to mark packets.  When an IP packet enters the protected network, it is marked by the interface close to the source of the packet.  Reconstruction of path can be made as that of DPM to identify the source of the attack if detected.
  • 12. CLASSIFICATION(Contd….) • Advantages  Number of packets required is comparatively less.  Better Tracing Capability.  It has Different probabilities that a router marks the attack packets.
  • 13. CLASSIFICATION(Contd….) • TBPM Method  It is based on the bloom filter which utilizes router’s local topology information.  It helps to design a single packet IP traceback system that needs not to be fully deployed in the entire network.  Topology Based Packet Marking has been a new approach in Anti-IP spoofing techniques.  TBPM techniques are compatible with both IPv4 and IPv6; unlike present packet marking techniques that cannot be effectively implemented in IPv6 networks.
  • 14. TECHNOLOGIES FOR PREVENTING NETWORK ATTACKS • Firewalls • Intrusion Detection • Intrusion Source Identification
  • 15. LIMITATION AND OPEN ISSUES  It has the problem with tracing beyond corporate firewalls.  To accomplish IP traceback, we need to reach the host where the attack originated.  To trace packets through firewalls into corporate intranets the last- traced IP address might be the firewall’s address.
  • 16. CHALLENGES AND FUTURE WORK  Identifying the indirect sources of reflector based DDoS attacks.  Identifying the attacker who conceals himself/herself with stepping stones.  Integrating defensive measures with traceback so that one mechanism may perform tracing as well as detection and/or defense.  Automatic traceback to speed up tracing and reduce human intervention.
  • 17. CONCLUSION  One conclusion we can draw from this is that unless IP trace back measures are deployed all over the Internet, they are only effective for controlled networks than for the Internet.  Today we can find many tools for doing DoS attacks. DoS attacks have become very popular. Hence we need to design proper mechanisms to protect systems from such attacks.
  • 18. REFERENCES  http://en.wikipedia.org/wiki/IP_traceback  http://dslab.csie.ncu.edu.tw/93html/paper/pdf/IP%20Traceb ack:A%20New%20Denial-of-Service%20Deterrent.pdf  http://cseweb.ucsd.edu/~savage/papers/Ton01.pdf  http://www.cs.plu.edu/courses/netsec/arts/w2020.pdf  http://citeseerx.ist.psu.edu/viewdoc/download?doi=10.1.1.2 .4574&rep=rep1&type=pdf