Abstract:
Distributed Denial of Service (DDoS) attacks are threats not only for the direct targets but also for the core of a network. These attacks can be so powerful that they can easily deplete the computing resources or bandwidth of the potential targets, by flooding packets. They are also hard to detect in advance, hence methods to deal with them need to be proactive, but several researchers used reactive methods to detect the DDoS attacks. Building on an existing work which used SHA1 hashing method to encapsulate token, a proactive method was enhanced to improve on the distribution control aspects. The Enhanced Cluster Based Proactive framework (E-CluB) aims at mitigating DDoS attacks by keeping the network performance degradation as little as possible using graphical network simulator 3 and the wamp apache server. E-CluB uses Open Shortest Path First (OSPF) as its routing policy in the network, including contemporary datagram options. 38% improvement was achieved compared with the existing system when filtering packets in transmission.
Keywords: Distributed Denial of Service (DDOS), E – CluB, anycast network, Blowfish, SHA1
