{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,15]],"date-time":"2025-06-15T10:40:05Z","timestamp":1749984005233,"version":"3.41.0"},"publisher-location":"Cham","reference-count":30,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783319527260"},{"type":"electronic","value":"9783319527277"}],"license":[{"start":{"date-parts":[[2017,1,1]],"date-time":"2017-01-01T00:00:00Z","timestamp":1483228800000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2017]]},"DOI":"10.1007\/978-3-319-52727-7_14","type":"book-chapter","created":{"date-parts":[[2017,2,14]],"date-time":"2017-02-14T13:32:01Z","timestamp":1487079121000},"page":"127-138","source":"Crossref","is-referenced-by-count":7,"title":["Identifying DOS and DDOS Attack Origin: IP Traceback Methods Comparison and Evaluation for IoT"],"prefix":"10.1007","author":[{"given":"Brian","family":"Cusack","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Zhuang","family":"Tian","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ar Kar","family":"Kyaw","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2017,2,15]]},"reference":[{"key":"14_CR1","unstructured":"Specht, S., Lee, R.: Distributed denial of service: taxonomies of attacks, tools and countermeasures. In: International Conference on Parallel and Distributed Computing Systems, pp. 543\u2013550. San Francisco, CA, USA: CiteSeerX (2004)"},{"key":"14_CR2","doi-asserted-by":"crossref","unstructured":"Kumar, K., Sngal, A., Bhandari, A.: Traceback techniques against DDoS attacks: a comprehensive review. In: 2011 2nd International Conference on Computer and Communication Technology (ICCCT), pp. 491\u2013498. IEEE, Allahabad, India (2011)","DOI":"10.1109\/ICCCT.2011.6075132"},{"key":"14_CR3","unstructured":"CERT Coordination Center.: Cert Advisories: CA-2000-01 denial of service developments. CERT Software Engineering Institute. http:\/\/www.cert.org\/historical\/advisories\/ca-2000-01.cfm (2015)"},{"key":"14_CR4","doi-asserted-by":"crossref","unstructured":"Chen, T., Tsai, J., Gerla, M.: QoS routing performance in multihop, multimedia, wireless networks. In: IEEE 96th International Conference on Universal Personal Communications Record, vol. 2, pp. 557\u2013561. IEEE, San Diego (1997)","DOI":"10.1109\/ICUPC.1997.627226"},{"key":"14_CR5","doi-asserted-by":"crossref","unstructured":"Eddy, W.: TCP SYN flooding attacks and common mitigations, RFC4987. IETF: https:\/\/tools.ietf.org\/html\/rfc4987 (2007)","DOI":"10.17487\/rfc4987"},{"key":"14_CR6","unstructured":"Lemon, J.: Resisting SYN flood DoS attacks with a SYN cache. In: 2nd European BSD Conference, pp. 89\u201398. Amsterdam, The Netherlands: USENIX (2002)"},{"issue":"3","key":"14_CR7","doi-asserted-by":"crossref","first-page":"38","DOI":"10.1145\/505659.505664","volume":"31","author":"V Paxson","year":"2001","unstructured":"Paxson, V.: An analysis of using reflectors for distributed denial-of-service attacks. ACM SIGCOMM Comput. Commun. Rev. 31(3), 38\u201347 (2001)","journal-title":"ACM SIGCOMM Comput. Commun. Rev."},{"issue":"2","key":"14_CR8","doi-asserted-by":"crossref","first-page":"6","DOI":"10.1145\/2240276.2240277","volume":"15","author":"Y Gilad","year":"2012","unstructured":"Gilad, Y., Herzberg, A.: LOT: a defense against IP spoofing and flooding attacks. ACM Trans. Inf. Syst. Secur. 15(2), 6 (2012)","journal-title":"ACM Trans. Inf. Syst. Secur."},{"key":"14_CR9","doi-asserted-by":"crossref","unstructured":"Kashyap, H., Bhattacharyya, D.: A DDos attack detection mechanism based on protocol specific traffic features. In: Proceedings of the Second International Conference on Computational Science, Engineering and Information Technology, CCSEIT 2012, pp. 194\u2013200. ACM, New York (2012)","DOI":"10.1145\/2393216.2393249"},{"issue":"3","key":"14_CR10","doi-asserted-by":"crossref","first-page":"471","DOI":"10.1109\/TIFS.2014.2381873","volume":"10","author":"G Yao","year":"2015","unstructured":"Yao, G., Bi, J., Vasilakos, A.: Passive IP traceback: disclosing the locations of IP spoofers from path backscatter. IEEE Trans. Inf. Forensics Secur. 10(3), 471\u2013484 (2015)","journal-title":"IEEE Trans. Inf. Forensics Secur."},{"key":"14_CR11","unstructured":"Ho, C.: Email forensics: tracing and mapping digital evidence from my address. Unpublished Master\u2019s Thesis (2010)"},{"issue":"3","key":"14_CR12","doi-asserted-by":"crossref","first-page":"226","DOI":"10.1109\/90.929847","volume":"9","author":"S Savage","year":"2001","unstructured":"Savage, S., Wetherall, D., Karlin, A., Anderson, T.: Network support for IP tracback. IEEE\/ACM Trans. Netw. 9(3), 226\u2013237 (2001)","journal-title":"IEEE\/ACM Trans. Netw."},{"key":"14_CR13","unstructured":"Burch, H., Cheswick, B.: Tracing anonymous packets to their approximate source. In: Proceedings of the 14th USENIX conference on System Administration, LISA 2000, pp. 319\u2013328. Berkeley, CA, USA: USENIX Association Berkeley (2002)"},{"key":"14_CR14","unstructured":"Bellovin, S.: ICMP Traceback Messages. Internet Draft: draft-bellovin-itrace-00.txt (2002)"},{"key":"14_CR15","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"124","DOI":"10.1007\/978-3-540-39927-8_12","volume-title":"Information and Communications Security","author":"HCJ Lee","year":"2003","unstructured":"Lee, H.C.J., Thing, V.L.L., Xu, Y., Ma, M.: ICMP traceback with cumulative path, an efficient solution for IP traceback. In: Qing, S., Gollmann, D., Zhou, J. (eds.) ICICS 2003. LNCS, vol. 2836, pp. 124\u2013135. Springer, Heidelberg (2003). doi: 10.1007\/978-3-540-39927-8_12"},{"key":"14_CR16","doi-asserted-by":"crossref","unstructured":"Izaddoost, A., Othman, M, Rasid, M.: Accurate ICMP traceback model under DoS\/DDoS attack. In: Proceedings of the 15th International Conference on Advanced Computing and Communications, ADCOM 2007, pp. 441\u2013446. IEEE Computer Society, Washington, DC, USA (2007)","DOI":"10.1109\/ADCOM.2007.103"},{"key":"14_CR17","unstructured":"Sager, G.: Security fun with OCxmon and cflowd. Presentation at the Internet 2 Working Group (1998)"},{"key":"14_CR18","doi-asserted-by":"crossref","unstructured":"Song, D., Perrig, A.: Advanced and authenticated marking schemes for IP traceback. In: Proceedings of Twentieth Annual Joint Conference of the IEEE Computer and Communications Societies, INFOCOM 2001, vol. 2, pp. 878\u2013886. IEEE, Anchorage, AK, USA (2001)","DOI":"10.1109\/INFCOM.2001.916279"},{"issue":"6","key":"14_CR19","doi-asserted-by":"crossref","first-page":"721","DOI":"10.1109\/TNET.2002.804827","volume":"10","author":"A Snoeren","year":"2002","unstructured":"Snoeren, A., Partridge, C., Sanchez, L., Jones, S., Tchakountio, F., Schwartz, B., Kent, S., Strayer, W.: Single-packet IP traceback. IEEE\/ACM Trans. Netw. 10(6), 721\u2013734 (2002)","journal-title":"IEEE\/ACM Trans. Netw."},{"key":"14_CR20","doi-asserted-by":"crossref","unstructured":"Ponec, M., Giura,P., Br\u00f6nnimann, H., Wein, J.: Highly efficient techniques for network forensics. In: Proceedings of the 14th ACM Conference on Computer and Communication Security, CCS 2007, pp. 150\u2013160. ACM, New York (2007)","DOI":"10.1145\/1315245.1315265"},{"key":"14_CR21","unstructured":"Sung, M., Xu, J.J., Li, J., Li, L.E.: Large-scale IP traceback in high-speed internet: practical techniques and information-theoretic foundation. http:\/\/www.cc.gatech.edu\/~mhsung\/pub\/ddos_sp.pdf (2008)"},{"key":"14_CR22","volume-title":"Performance evaluation of a TTL-based dynamic marking scheme in IP traceback","author":"S Devasundaram","year":"2006","unstructured":"Devasundaram, S.: Performance evaluation of a TTL-based dynamic marking scheme in IP traceback. University of Akron, Akron (2006)"},{"issue":"1","key":"14_CR23","doi-asserted-by":"crossref","first-page":"40","DOI":"10.1109\/TNET.2006.890133","volume":"15","author":"H Wang","year":"2007","unstructured":"Wang, H., Jin, C., Shin, K.: Defense against spoofed IP traffic using hop-count filtering. IEEE\/ACM Trans. Netw. 15(1), 40\u201353 (2007)","journal-title":"IEEE\/ACM Trans. Netw."},{"key":"14_CR24","doi-asserted-by":"crossref","unstructured":"KrishnaKumar, B., Kumar, P., Sukanesh.: Hop count based packet processing approach to counter DDoS attacks. In: International Conference on Recent Trends in Information, Telecommunication and Computing (ITC), pp. 271\u2013273. IEEE, Kochi (2010)","DOI":"10.1109\/ITC.2010.48"},{"key":"14_CR25","doi-asserted-by":"crossref","unstructured":"Yang, M., Luo, J.: High accuracy and low storage hybrid IP traceback. In: 2014 International Conference on Computer, Information and Telecommunication Systems (CITS), pp. 1\u20135. IEEE, Jeju (2014)","DOI":"10.1109\/CITS.2014.6878977"},{"key":"14_CR26","doi-asserted-by":"crossref","unstructured":"Park, P., Yi. H., Hong, S., Ryu, J.: An effective defense mechanism against DoS\/DDoS attacks in flow-based routers. In: The 8th International Conference on Advances in Mobile Computing and Multimedia, pp. 442\u2013446. ACM, Paris (2010)","DOI":"10.1145\/1971519.1971595"},{"issue":"16","key":"14_CR27","doi-asserted-by":"crossref","first-page":"3193","DOI":"10.1016\/j.comcom.2007.05.060","volume":"30","author":"X Dang","year":"2007","unstructured":"Dang, X., Albright, E., Abonamah, A.: Performance analysis of probabilistic packet marking in IPv6. Comput. Commun. 30(16), 3193\u20133202 (2007)","journal-title":"Comput. Commun."},{"issue":"1","key":"14_CR28","first-page":"54","volume":"1","author":"H Michiko","year":"2005","unstructured":"Michiko, H., Naoyuki, K., Daisaku, T.: Implementation of probabilistic packet marking for IPv6 traceback. IPSI BgD Trans. Internet Res. 1(1), 54\u201358 (2005)","journal-title":"IPSI BgD Trans. Internet Res."},{"issue":"2","key":"14_CR29","first-page":"1","volume":"9","author":"S Amin","year":"2006","unstructured":"Amin, S., Hong, C., Kwak, D., Lee, J.: IPv6 traceback using policy based management system. Korean Netw. Oper. Manag. 9(2), 1\u20137 (2006)","journal-title":"Korean Netw. Oper. Manag."},{"issue":"2","key":"14_CR30","first-page":"47","volume":"2","author":"Q Yan","year":"2010","unstructured":"Yan, Q., He, X., Ning, T.: An improved dynamic probabilistic packet marking for IP traceback. Int. J. Comput. Netw. Inf. Secur. 2(2), 47\u201353 (2010)","journal-title":"Int. J. Comput. Netw. Inf. Secur."}],"container-title":["Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering","Interoperability, Safety and Security in IoT"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-52727-7_14","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,15]],"date-time":"2025-06-15T10:18:28Z","timestamp":1749982708000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-319-52727-7_14"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2017]]},"ISBN":["9783319527260","9783319527277"],"references-count":30,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-52727-7_14","relation":{},"ISSN":["1867-8211","1867-822X"],"issn-type":[{"type":"print","value":"1867-8211"},{"type":"electronic","value":"1867-822X"}],"subject":[],"published":{"date-parts":[[2017]]}}}