Abstract—Distributed denial-of-service (DDoS) attacks are a major threat to the Internet. A lot of research is going on to detect, prevent and trace back DDoS attacks. Most of researchers are busy in post attack forensics which comes after the attack has been occurred but nobody is talking about how to design a system which can tolerate such attacks. In this paper we have suggested a approach for dynamic assignment of bandwidth in order to sustain the server. Basic idea is to examine genuine IP user’s traffic flow based on volume. Divide traffic in two categories of genuine traffic and malicious traffic and assign bandwidth as per category. The idea is to design a system which can give services even when the server is under attack. However some performance will degrades but overall Quality of services will be acceptable. A new formula also has been derived for dynamic bandwidth assignment which is based on number of genuine users and traffic volumes of users and attackers.

Index Terms— Bandwidth Management, Dynamic Bandwidth Assignment, QoS Controlling Factor

Cite: Raman Singh and Amandeep Verma, "‘A Dynamic Bandwidth Assignment Approach Under DDoS Flood Attack," Journal of Advances in Information Technology, Vol. 3, No. 2, pp. 120-129, May, 2012.doi:10.4304/jait.3.2.120-129