Abstract

One of the biggest dangers to Internet security is the Distributed Denial of Service (DDoS) attack which sends out a flood of false packets throughout the network. In this paper we offer an Improved Packet Marking Scheme based on RBF NN as a solution to the IP Spoofing problem in DDoS attacks. To do this we rework the IP headers ID and Offset fields to hold the marked pushback information which does not add any extra payload. Additionally we use a 12-bit HMAC hash function to keep things secure and reduce false positives when reconstructing. We test the suggested method on Linuxs NS-2 Simulator and the findings show that its more secure and can save network overhead.