On the effectiveness of Martian address filtering and its extensions

Hyogon Kim, Inhye Kang

Research output: Contribution to conferencePaperpeer-review

5 Scopus citations

Abstract

Martian address filtering refers to a technique that discards IP packets that have an invalid source or destination address. This paper evaluates its effectiveness (or lack thereof) under denial of service (DoS) attack or host scan, in terms of packet-level and flow-level filtering performance. In order to overcome the shortcoming of Martian address filtering, we consider two extensions: unallocated address checking and blacklisting. We demonstrate through trace-based simulation that these techniques can indeed boost filtering performance. We also analyze the performance and the possible side-effects of the extensions.

Original languageEnglish
Pages1348-1352
Number of pages5
StatePublished - 2003
EventIEEE Global Telecommunications Conference GLOBECOM'03 - San Francisco, CA, United States
Duration: 1 Dec 20035 Dec 2003

Conference

ConferenceIEEE Global Telecommunications Conference GLOBECOM'03
Country/TerritoryUnited States
CitySan Francisco, CA
Period1/12/035/12/03

Keywords

  • Denial-of-service attack
  • Host scan
  • Martian addresses
  • Packet filtering
  • Stateful inspection

Fingerprint

Dive into the research topics of 'On the effectiveness of Martian address filtering and its extensions'. Together they form a unique fingerprint.

Cite this