{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,19]],"date-time":"2025-06-19T04:08:01Z","timestamp":1750306081500,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":40,"publisher":"ACM","license":[{"start":{"date-parts":[[2017,12,4]],"date-time":"2017-12-04T00:00:00Z","timestamp":1512345600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2017,12,4]]},"DOI":"10.1145\/3134600.3134644","type":"proceedings-article","created":{"date-parts":[[2017,12,4]],"date-time":"2017-12-04T19:18:32Z","timestamp":1512415112000},"page":"474-485","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":6,"title":["RESECT"],"prefix":"10.1145","author":[{"given":"Jelena","family":"Mirkovic","sequence":"first","affiliation":[{"name":"USC\/ISI, Marina del Rey, CA"}]},{"given":"Erik","family":"Kline","sequence":"additional","affiliation":[{"name":"USC\/ISI, Marina del Rey, CA"}]},{"given":"Peter","family":"Reiher","sequence":"additional","affiliation":[{"name":"UCLA, Los Angeles, CA"}]}],"member":"320","published-online":{"date-parts":[[2017,12,4]]},"reference":[{"key":"e_1_3_2_1_1_1","volume-title":"Security Report","author":"Arbor Networks","year":"2016","unstructured":"Arbor Networks , Worldwide Infrastructure Security Report 2016 . Arbor Networks, Worldwide Infrastructure Security Report 2016."},{"key":"e_1_3_2_1_2_1","unstructured":"DeterLab Testbed. http:\/\/deterlab.isi.edu.  DeterLab Testbed. http:\/\/deterlab.isi.edu."},{"key":"e_1_3_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-45719-2_14"},{"key":"e_1_3_2_1_4_1","doi-asserted-by":"publisher","DOI":"10.1007\/11422778_16"},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1145\/1644893.1644936"},{"key":"e_1_3_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.1109\/INFCOM.2005.1497921"},{"key":"e_1_3_2_1_7_1","volume-title":"June 1","author":"CAIDA.","year":"2016","unstructured":"CAIDA. The CAIDA AS Relationships Dataset , June 1 , 2016 . http:\/\/www.caida.org\/data\/as-relationships\/. CAIDA. The CAIDA AS Relationships Dataset, June 1, 2016. http:\/\/www.caida.org\/data\/as-relationships\/."},{"key":"e_1_3_2_1_8_1","volume-title":"The CAIDA UCSD Anonymized Internet Traces","author":"CAIDA.","year":"2011","unstructured":"CAIDA. The CAIDA UCSD Anonymized Internet Traces 2011 . http:\/\/www.caida.org\/data\/passive\/passive_2011_dataset.xml. CAIDA. The CAIDA UCSD Anonymized Internet Traces 2011. http:\/\/www.caida.org\/data\/passive\/passive_2011_dataset.xml."},{"key":"e_1_3_2_1_9_1","unstructured":"CloudFlare. Technical Details Behind a 400Gbps NTP Amplification DDoS Attack. https:\/\/blog.cloudflare.com\/technical-details-behind-a-400gbps-ntp-amplification-ddos-attack\/.  CloudFlare. Technical Details Behind a 400Gbps NTP Amplification DDoS Attack. https:\/\/blog.cloudflare.com\/technical-details-behind-a-400gbps-ntp-amplification-ddos-attack\/."},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1109\/INFOCOM.2006.128"},{"key":"e_1_3_2_1_11_1","unstructured":"Ferguson P. and Senie D. Network Ingress Filtering: Defeating Denial of Service Attacks which employ IP Source Address Spoofing. IETF RFC 2267.   Ferguson P. and Senie D. Network Ingress Filtering: Defeating Denial of Service Attacks which employ IP Source Address Spoofing. IETF RFC 2267."},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1145\/1452520.1452542"},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1145\/948109.948116"},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1109\/ACSAC.2009.32"},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1145\/354871.354874"},{"key":"e_1_3_2_1_16_1","volume-title":"Proceedings of HotNets","author":"Kreibich C.","year":"2005","unstructured":"Kreibich , C. , Warfield , A. , Crowcroft , J. , Hand , S. , and Pratt , I . Using packet symmetry to curtail malicious traffic . In Proceedings of HotNets ( 2005 ). Kreibich, C., Warfield, A., Crowcroft, J., Hand, S., and Pratt, I. Using packet symmetry to curtail malicious traffic. In Proceedings of HotNets (2005)."},{"key":"e_1_3_2_1_17_1","first-page":"111","volume-title":"23rd USENIX Security Symposium","author":"K\u00fchrer M.","year":"2014","unstructured":"K\u00fchrer , M. , Hupperich , T. , Rossow , C. , and Holz , T . Exit from hell? reducing the impact of amplification ddos attacks . In 23rd USENIX Security Symposium ( 2014 ), pp. 111 -- 125 . K\u00fchrer, M., Hupperich, T., Rossow, C., and Holz, T. Exit from hell? reducing the impact of amplification ddos attacks. In 23rd USENIX Security Symposium (2014), pp. 111--125."},{"key":"e_1_3_2_1_18_1","volume-title":"Proc. of SRUTI","author":"Liu X.","year":"2006","unstructured":"Liu , X. , Yang , X. , Wetherall , D. , and Anderson , T . Efficient and Secure Source Authentication with Packet Passports . In Proc. of SRUTI ( 2006 ). Liu, X., Yang, X., Wetherall, D., and Anderson, T. Efficient and Secure Source Authentication with Packet Passports. In Proc. of SRUTI (2006)."},{"key":"e_1_3_2_1_19_1","unstructured":"MAWI Working Group Traffic Archive. http:\/\/mawi.wide.ad.jp.  MAWI Working Group Traffic Archive. http:\/\/mawi.wide.ad.jp."},{"key":"e_1_3_2_1_20_1","doi-asserted-by":"publisher","DOI":"10.1109\/TDSC.2009.44"},{"key":"e_1_3_2_1_21_1","unstructured":"NixCraft. Security Tip: Avoid Detection with nmap Port Scan Decoys. http:\/\/www.cyberciti.biz\/tips\/nmap-hide-ipaddress-with-decoy-ideal-scan.html.  NixCraft. Security Tip: Avoid Detection with nmap Port Scan Decoys. http:\/\/www.cyberciti.biz\/tips\/nmap-hide-ipaddress-with-decoy-ideal-scan.html."},{"key":"e_1_3_2_1_22_1","unstructured":"Paganini P. OVH hosting hit by 1Tbps DDoS attack the largest one ever seen. http:\/\/securityaffairs.co\/wordpress\/51640\/cyber-crime\/tbps-ddos-attack.html.  Paganini P. OVH hosting hit by 1Tbps DDoS attack the largest one ever seen. http:\/\/securityaffairs.co\/wordpress\/51640\/cyber-crime\/tbps-ddos-attack.html."},{"key":"e_1_3_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.1145\/383059.383061"},{"key":"e_1_3_2_1_24_1","doi-asserted-by":"publisher","DOI":"10.1109\/GLOCOM.2003.1258460"},{"key":"e_1_3_2_1_26_1","unstructured":"Piscitello D. M. Anatomy of a DNS DDoS Amplification Attack. http:\/\/www.corecom.com\/external\/livesecurity\/dnsamplification.htm.  Piscitello D. M. Anatomy of a DNS DDoS Amplification Attack. http:\/\/www.corecom.com\/external\/livesecurity\/dnsamplification.htm."},{"key":"e_1_3_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1145\/637201.637232"},{"key":"e_1_3_2_1_28_1","volume-title":"Network and Distributed System Security Symposium, NDSS","author":"Rossow C.","year":"2014","unstructured":"Rossow , C. Amplification hell : Revisiting network protocols for ddos abuse . In Network and Distributed System Security Symposium, NDSS ( 2014 ). Rossow, C. Amplification hell: Revisiting network protocols for ddos abuse. In Network and Distributed System Security Symposium, NDSS (2014)."},{"key":"e_1_3_2_1_29_1","unstructured":"RouteViews.org. BGP Core Routing Table Size. http:\/\/www.routeviews.org\/dynamics\/.  RouteViews.org. BGP Core Routing Table Size. http:\/\/www.routeviews.org\/dynamics\/."},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1145\/383059.383060"},{"key":"e_1_3_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.1109\/TNET.2002.804827"},{"key":"e_1_3_2_1_32_1","volume-title":"1st Symposium on Networked Systems Design and Implementation","author":"Subramanian L.","year":"2004","unstructured":"Subramanian , L. , Roth , V. , Stoica , I. , Shenker , S. , and Katz , R. H . Listen and whisper: security mechanisms for BGP . In 1st Symposium on Networked Systems Design and Implementation ( 2004 ). Subramanian, L., Roth, V., Stoica, I., Shenker, S., and Katz, R. H. Listen and whisper: security mechanisms for BGP. In 1st Symposium on Networked Systems Design and Implementation (2004)."},{"key":"e_1_3_2_1_33_1","unstructured":"Times T. N. Y. How the Cyberattack on Spamhaus Unfolded. http:\/\/www.nytimes.com\/interactive\/2013\/03\/30\/technology\/how-the-cyberattack-on-spamhaus-unfolded.html.  Times T. N. Y. How the Cyberattack on Spamhaus Unfolded. http:\/\/www.nytimes.com\/interactive\/2013\/03\/30\/technology\/how-the-cyberattack-on-spamhaus-unfolded.html."},{"key":"e_1_3_2_1_34_1","first-page":"4953","author":"Touch","year":"2007","unstructured":"Touch , J. Defending TCP Against Spoofing Attacks. IETF RFC 4953 , 2007 . Touch, J. Defending TCP Against Spoofing Attacks. IETF RFC 4953, 2007.","journal-title":"J. Defending TCP Against Spoofing Attacks. IETF RFC"},{"key":"e_1_3_2_1_35_1","volume-title":"Multiple DNS implementations vulnerable to cache poisoning. VU#800113","author":"CERT.","year":"2008","unstructured":"US- CERT. Multiple DNS implementations vulnerable to cache poisoning. VU#800113 , 2008 . US-CERT. Multiple DNS implementations vulnerable to cache poisoning. VU#800113, 2008."},{"key":"e_1_3_2_1_36_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-00975-4_6"},{"key":"e_1_3_2_1_37_1","volume-title":"Proc. of INFOCOM","author":"Wang D.","year":"2011","unstructured":"Wang , D. , Xu , M. , and Yang , J . On the scalability of router forwarding tables: Nexthop-Selectable FIB aggregation . In Proc. of INFOCOM ( 2011 ). Wang, D., Xu, M., and Yang, J. On the scalability of router forwarding tables: Nexthop-Selectable FIB aggregation. In Proc. of INFOCOM (2011)."},{"key":"e_1_3_2_1_38_1","doi-asserted-by":"publisher","DOI":"10.1145\/1140086.1140094"},{"key":"e_1_3_2_1_39_1","doi-asserted-by":"publisher","DOI":"10.1145\/1282380.1282415"},{"key":"e_1_3_2_1_40_1","doi-asserted-by":"publisher","DOI":"10.1145\/1080091.1080120"},{"key":"e_1_3_2_1_41_1","volume-title":"On the Mismanagement and Maliciousness of Networks. In Network & Distributed System Security Symposium","author":"Zhang J.","year":"2013","unstructured":"Zhang , J. , Durumeric , Z. , Bailey , M. , Karir , M. , and Liu , M . On the Mismanagement and Maliciousness of Networks. In Network & Distributed System Security Symposium ( 2013 ). Zhang, J., Durumeric, Z., Bailey, M., Karir, M., and Liu, M. On the Mismanagement and Maliciousness of Networks. In Network & Distributed System Security Symposium (2013)."}],"event":{"name":"ACSAC 2017: 2017 Annual Computer Security Applications Conference","acronym":"ACSAC 2017","location":"Orlando FL USA"},"container-title":["Proceedings of the 33rd Annual Computer Security Applications Conference"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3134600.3134644","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3134600.3134644","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T03:30:11Z","timestamp":1750217411000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3134600.3134644"}},"subtitle":["Self-Learning Traffic Filters for IP Spoofing Defense"],"short-title":[],"issued":{"date-parts":[[2017,12,4]]},"references-count":40,"alternative-id":["10.1145\/3134600.3134644","10.1145\/3134600"],"URL":"https:\/\/doi.org\/10.1145\/3134600.3134644","relation":{},"subject":[],"published":{"date-parts":[[2017,12,4]]},"assertion":[{"value":"2017-12-04","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}