{"id":"https://openalex.org/W2052554999","doi":"https://doi.org/10.1145/1162666.1162674","title":"Protecting TCP services from denial of service attacks","display_name":"Protecting TCP services from denial of service attacks","publication_year":2006,"publication_date":"2006-09-11","ids":{"openalex":"https://openalex.org/W2052554999","doi":"https://doi.org/10.1145/1162666.1162674","mag":"2052554999"},"language":"en","primary_location":{"id":"doi:10.1145/1162666.1162674","is_oa":true,"landing_page_url":"https://doi.org/10.1145/1162666.1162674","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/1162666.1162674","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2006 SIGCOMM workshop on Large-scale attack defense","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://dl.acm.org/doi/pdf/10.1145/1162666.1162674","any_repository_has_fulltext":null},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5049054639","display_name":"Hikmat Farhat","orcid":"https://orcid.org/0000-0002-5043-227X"},"institutions":[{"id":"https://openalex.org/I60770847","display_name":"Notre Dame University \u2013 Louaize","ror":"https://ror.org/030br0314","country_code":"LB","type":"education","lineage":["https://openalex.org/I60770847"]}],"countries":["LB"],"is_corresponding":true,"raw_author_name":"Hikmat Farhat","raw_affiliation_strings":["Notre Dame University, Zouk Mosbeh, Lebanon","Notre-Dame University, Zouk Mosbeh, Lebanon"],"affiliations":[{"raw_affiliation_string":"Notre Dame University, Zouk Mosbeh, Lebanon","institution_ids":["https://openalex.org/I60770847"]},{"raw_affiliation_string":"Notre-Dame University, Zouk Mosbeh, Lebanon","institution_ids":["https://openalex.org/I60770847"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":1,"corresponding_author_ids":["https://openalex.org/A5049054639"],"corresponding_institution_ids":["https://openalex.org/I60770847"],"apc_list":null,"apc_paid":null,"fwci":3.3197,"has_fulltext":true,"cited_by_count":23,"citation_normalized_percentile":{"value":0.92672565,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":96},"biblio":{"volume":null,"issue":null,"first_page":"155","last_page":"160"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12326","display_name":"Network Packet Processing and Optimization","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1708","display_name":"Hardware and Architecture"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/denial-of-service-attack","display_name":"Denial-of-service attack","score":0.8557289838790894},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7987194657325745},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.7450746297836304},{"id":"https://openalex.org/keywords/network-packet","display_name":"Network packet","score":0.6469129920005798},{"id":"https://openalex.org/keywords/security-token","display_name":"Security token","score":0.6081514358520508},{"id":"https://openalex.org/keywords/header","display_name":"Header","score":0.5648264288902283},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5643327236175537},{"id":"https://openalex.org/keywords/transmission-control-protocol","display_name":"Transmission Control Protocol","score":0.46433886885643005},{"id":"https://openalex.org/keywords/trinoo","display_name":"Trinoo","score":0.4383026361465454},{"id":"https://openalex.org/keywords/application-layer-ddos-attack","display_name":"Application layer DDoS attack","score":0.4270693063735962},{"id":"https://openalex.org/keywords/protocol","display_name":"Protocol (science)","score":0.42680004239082336},{"id":"https://openalex.org/keywords/scheme","display_name":"Scheme (mathematics)","score":0.42607811093330383},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.33195990324020386},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.2033187448978424}],"concepts":[{"id":"https://openalex.org/C38822068","wikidata":"https://www.wikidata.org/wiki/Q131406","display_name":"Denial-of-service attack","level":3,"score":0.8557289838790894},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7987194657325745},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.7450746297836304},{"id":"https://openalex.org/C158379750","wikidata":"https://www.wikidata.org/wiki/Q214111","display_name":"Network packet","level":2,"score":0.6469129920005798},{"id":"https://openalex.org/C48145219","wikidata":"https://www.wikidata.org/wiki/Q1335365","display_name":"Security token","level":2,"score":0.6081514358520508},{"id":"https://openalex.org/C48105269","wikidata":"https://www.wikidata.org/wiki/Q1141160","display_name":"Header","level":2,"score":0.5648264288902283},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5643327236175537},{"id":"https://openalex.org/C33588617","wikidata":"https://www.wikidata.org/wiki/Q8803","display_name":"Transmission Control Protocol","level":3,"score":0.46433886885643005},{"id":"https://openalex.org/C43639116","wikidata":"https://www.wikidata.org/wiki/Q7843050","display_name":"Trinoo","level":5,"score":0.4383026361465454},{"id":"https://openalex.org/C120865594","wikidata":"https://www.wikidata.org/wiki/Q131406","display_name":"Application layer DDoS attack","level":4,"score":0.4270693063735962},{"id":"https://openalex.org/C2780385302","wikidata":"https://www.wikidata.org/wiki/Q367158","display_name":"Protocol (science)","level":3,"score":0.42680004239082336},{"id":"https://openalex.org/C77618280","wikidata":"https://www.wikidata.org/wiki/Q1155772","display_name":"Scheme (mathematics)","level":2,"score":0.42607811093330383},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.33195990324020386},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.2033187448978424},{"id":"https://openalex.org/C71924100","wikidata":"https://www.wikidata.org/wiki/Q11190","display_name":"Medicine","level":0,"score":0.0},{"id":"https://openalex.org/C134306372","wikidata":"https://www.wikidata.org/wiki/Q7754","display_name":"Mathematical analysis","level":1,"score":0.0},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.0},{"id":"https://openalex.org/C204787440","wikidata":"https://www.wikidata.org/wiki/Q188504","display_name":"Alternative medicine","level":2,"score":0.0},{"id":"https://openalex.org/C142724271","wikidata":"https://www.wikidata.org/wiki/Q7208","display_name":"Pathology","level":1,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1145/1162666.1162674","is_oa":true,"landing_page_url":"https://doi.org/10.1145/1162666.1162674","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/1162666.1162674","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2006 SIGCOMM workshop on Large-scale attack defense","raw_type":"proceedings-article"},{"id":"pmh:oai:eprints.soton.ac.uk:492296","is_oa":false,"landing_page_url":null,"pdf_url":null,"source":{"id":"https://openalex.org/S4306401019","display_name":"ePrints Soton (University of Southampton)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I43439940","host_organization_name":"University of Southampton","host_organization_lineage":["https://openalex.org/I43439940"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"acceptedVersion","is_accepted":true,"is_published":false,"raw_source_name":"","raw_type":"Conference or Workshop Item"}],"best_oa_location":{"id":"doi:10.1145/1162666.1162674","is_oa":true,"landing_page_url":"https://doi.org/10.1145/1162666.1162674","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/1162666.1162674","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2006 SIGCOMM workshop on Large-scale attack defense","raw_type":"proceedings-article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W2052554999.pdf","grobid_xml":"https://content.openalex.org/works/W2052554999.grobid-xml"},"referenced_works_count":31,"referenced_works":["https://openalex.org/W1563061804","https://openalex.org/W1867219652","https://openalex.org/W1959318606","https://openalex.org/W1970837734","https://openalex.org/W1985382559","https://openalex.org/W1987045229","https://openalex.org/W2001619556","https://openalex.org/W2001968297","https://openalex.org/W2004704207","https://openalex.org/W2049742406","https://openalex.org/W2094051614","https://openalex.org/W2095738877","https://openalex.org/W2098334439","https://openalex.org/W2116183119","https://openalex.org/W2118878434","https://openalex.org/W2135708813","https://openalex.org/W2136262545","https://openalex.org/W2138178896","https://openalex.org/W2150228605","https://openalex.org/W2154178154","https://openalex.org/W2154337851","https://openalex.org/W2159669151","https://openalex.org/W2162133150","https://openalex.org/W2164256494","https://openalex.org/W2164686665","https://openalex.org/W2165080990","https://openalex.org/W2169246522","https://openalex.org/W2170771030","https://openalex.org/W4243528443","https://openalex.org/W4300930169","https://openalex.org/W6684773649"],"related_works":["https://openalex.org/W2783466926","https://openalex.org/W4286539397","https://openalex.org/W2204131204","https://openalex.org/W3123917664","https://openalex.org/W1968168724","https://openalex.org/W2376172429","https://openalex.org/W4322008378","https://openalex.org/W2383770723","https://openalex.org/W2754163055","https://openalex.org/W2186749541"],"abstract_inverted_index":{"In":[0],"this":[1],"paper,":[2],"we":[3],"present":[4],"a":[5,19,37,52,101],"scheme":[6],"that":[7,59],"protects":[8],"legitimate":[9],"traffic":[10],"from":[11],"the":[12,28,33,60],"large":[13],"volume":[14],"of":[15,81,103,130,132],"attackers":[16],"packets":[17,23],"during":[18,126],"DDoS":[20],"attack.":[21],"Legitimate":[22],"can":[24],"be":[25,108],"recognized":[26],"by":[27,92],"tokens":[29],"they":[30],"carry":[31],"in":[32],"IP":[34],"header.":[35],"Obtaining":[36],"token":[38],"does":[39],"not":[40,97,115],"require":[41],"protocol":[42],"additions":[43],"or":[44,79],"changes,":[45],"rather":[46],"it":[47],"is":[48,55,70,84],"automatically":[49],"obtained":[50],"when":[51],"TCP":[53],"connection":[54],"established.":[56],"We":[57],"believe":[58],"Implicit":[61],"Token":[62],"Scheme":[63],"(ITS)":[64],"has":[65],"numerous":[66],"advantages:":[67],"(1)":[68],"It":[69],"totally":[71],"transparent":[72],"to":[73,86,117],"clients.":[74],"(2)":[75],"No":[76],"new":[77],"protocols":[78],"modification":[80],"existing":[82],"ones":[83],"needed":[85],"implement":[87],"ITS.":[88],"(3)":[89],"Operations":[90],"required":[91],"intermediate":[93],"routers":[94],"are":[95],"computationally":[96],"more":[98],"intensive":[99],"than":[100],"couple":[102],"addition":[104],"operations":[105],"which":[106],"could":[107],"easily":[109],"done":[110],"at":[111],"wire-speed.":[112],"(4)":[113],"Does":[114],"lead":[116],"false":[118],"positives.":[119],"(5)":[120],"Can":[121],"sustain":[122],"server":[123],"availability":[124],"even":[125],"attacks":[127],"involving":[128],"hundreds":[129],"thousands":[131],"attackers.":[133]},"counts_by_year":[{"year":2020,"cited_by_count":1},{"year":2019,"cited_by_count":1},{"year":2017,"cited_by_count":1},{"year":2015,"cited_by_count":1},{"year":2014,"cited_by_count":2},{"year":2013,"cited_by_count":1},{"year":2012,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}