Tracing the Origins of Distributed Denial of Service Attacks

Distributed Denial of Service (DDoS) attacks are the cousin of Denial of Service (DoS) attacks and paralyze targets to inflict permanent damage by preventing them from servicing legitimate users. DoS is a method of cyber attack that renders a host unavailable to its users. DDoS attacks have become more popular in recent years through SYN flooding and exploitation of the HTTP GET method. DDoS attacks mostly use a bot-net, a large group of unwillingly infected computers that carry out a DoS attack on a specific target. IP spoofing makes it difficult for attacks to be raced. Proposes a new method of finding origin of an attack using IP spoofing that builds upon current techniques that reconstruct attack paths and use a computational comparison to identify false positive.