| | |
Summary: Hash-Based IP Traceback
Alex C. Snoeren
, Craig Partridge, Luis A. Sanchez
, Christine E. Jones,
Fabrice Tchakountio, Stephen T. Kent, and W. Timothy Strayer
BBN Technologies
10 Moulton Street, Cambridge, MA 02138
{snoeren, craig, cej, ftchakou, kent, strayer}@bbn.com
ABSTRACT
The design of the IP protocol makes it difficult to reliably identify
the originator of an IP packet. Even in the absence of any delib-
erate attempt to disguise a packet's origin, wide-spread packet for-
warding techniques such as NAT and encapsulation may obscure
the packet's true source. Techniques have been developed to deter-
mine the source of large packet flows, but, to date, no system has
been presented to track individual packets in an efficient, scalable
fashion.
We present a hash-based technique for IP traceback that generates
audit trails for traffic within the network, and can trace the origin of
a single IP packet delivered by the network in the recent past. We
|
