Home > Published Issues > 2023 > Volume 14, No. 3, 2023 >
JAIT 2023 Vol.14(3): 444-453
doi: 10.12720/jait.14.3.444-453

A Survey on DDoS Detection and Prevention Mechanism

Foram Suthar 1,* and Nimisha Patel 2
1. Indus University, Ahmedabad, India
2. Gandhinagar Institute of Technology, Gandhinagar University, Gandhinagar, India
*Correspondence: foramsuthar@outlook.com (F.S.)

Manuscript received October 8, 2022; revised November 2, 2022; accepted November 28, 2022; published May 15, 2023.

Abstract—The internet is an obvious target for a cyberattack nowadays. The population on the internet globally is increasing from 3 billion in 2014 to 4.5 billion in 2020, resulting into nearly 59% of the total world population. The attacker is always looking for loopholes and vulnerabilities of internet-connected devices. It has been noticed from the last decade, there are more Denial-of-Service Attack (DoS) or DoS attacks and their variant Distributed Denial-of-Service (DDoS) or DDoS attacks performed by the attacker. This creates a serious problem for the network administrator to secure the infrastructure. The attacker mainly targets reputed organization/ industries and try to violate the major parameter of cyber security—Availability. The most commonly performed attack by the attacker is a Transmission Control Protocol (TCP) Synonym (SYN) DDoS attack, caused due to the design issue of the TCP algorithm. The attacker floods the packets in the network causing the server to crash. Hence, it is important to understand the source of the DDoS attack. Therefore, a real-life and accurate TCP SYN detection mechanism is required. Numerous techniques have been used for preventing and detecting various DDoS flooding attacks, some of which are covered in the literature review. The paper highlights the strengths and weaknesses of the available defense mechanism. To understand the performance status of the system we have implemented a DoS by the hping3 tool. This gives us better clarity in shortlisting and analyzing the parameters for the detection of DDoS attacks. Also, we try to analyze the impact of TCP SYN attack on the network in DDoS attacks.
Keywords—Distributed Denial-of-Service (DDoS) attack, Transmission Control Protocol (TCP) Synonym (SYN), packet sniffer, detection mechanism, DDoS prevention, hping3, DDoS prevention and detection survey

Cite: Foram Suthar and Nimisha Patel, "A Survey on DDoS Detection and Prevention Mechanism," Journal of Advances in Information Technology, Vol. 14, No. 3, pp. 444-453, 2023.

Copyright © 2023 by the authors. This is an open access article distributed under the Creative Commons Attribution License (CC BY-NC-ND 4.0), which permits use, distribution and reproduction in any medium, provided that the article is properly cited, the use is non-commercial and no modifications or adaptations are made.