Design and Analysis about Preventing Distributed Denial of Service Attacks in Mobile Ad-Hoc Network Using Blocking IP Broadcast Method
*Corresponding Author E-mail: email@example.com
Distributed Denial of Service attacks (DDoS) are a variant of Denial of Service (DoS) attacks where an attacker or a group of attackers employ multiple machines to carry out a DoS attack simultaneously, therefore increasing its effectiveness and strength. MANET has no clear line of defence so it is accessible to both legitimate network users and malicious attackers. In the presence of malicious nodes, one of the main challenges in MANET is to design the robust security solution that can prevent MANET from various DDOS attacks. DDoS attacks in the networks needs to be prevented or handled if it occurs, as early as possible and before reaching the victim. Dealing with DDoS attacks is hard due to their properties such as dynamic attack rates, various kinds of targets, big scale of botnet, etc. DDoS attacks are hard to detect and block since the attack traffic is easily confused with legitimate traffic and difficult to trace. DDoS attack becomes more difficult to handle if it occurs in wireless network because of the properties of ad-hoc network such as dynamic topologies, low battery life, multicast routing, frequency of updates or network overhead, scalability, mobile agent based routing, and power aware routing, etc., Therefore ad hoc networks have their own vulnerabilities that cannot be always tackled by these wired network security solutions. Distributed Denial of Service attacks has also become a problem for users of computer systems connected to the Internet. In this paper, a novel method is proposed that can prevent a flood attack which will block IP broadcast in Mobile Ad-hoc Networks. The proposed method is distributed in nature and it has the capability to prevent DDoS attacks effectively. More over the performance of the proposed method is tested using the NS-2 Simulator and the simulation result shows that the proposed method gives the efficient result in preventing against DDoS attacks.
DDoS Attacks, Botnet, MANET, Flooding Attack, PDR, Collisions.