ANALYTICAL MODEL FOR ADMISSION CONTROL OF TCP SYN FLOODDING
Abstract
In this paper we make an attempt to propose an analytical model for Admission control of TCP SYN flooding. Admission control is one of the ways to protect the web server from SYN Flooding. An admission control strategy is introduced based on Erlang loss queuing model studied by Daniel Boteanu(2007). The proposed strategy deals with whether a connection request (malicious/legitimate) to  enter into the Backlog Queue or not. We propose a control function is for accepting/rejecting a new TCP connection that arrived at the Backlog Queue. We show that LCAR (legitimate Connections Acceptance Ratio) is an important security metric to analyze SYN flood attacks. The results and the conclusions are presented.
Article Metrics Graph
Downloads
Published
Issue
Section
License
COPYRIGHT AGREEMENT AND AUTHORSHIP RESPONSIBILITY
 All paper submissions must carry the following duly signed by all the authors:
“I certify that I have participated sufficiently in the conception and design of this work and the analysis of the data (wherever applicable), as well as the writing of the manuscript, to take public responsibility for it. I believe the manuscript represents valid work. I have reviewed the final version of the manuscript and approve it for publication. Neither has the manuscript nor one with substantially similar content under my authorship been published nor is being considered for publication elsewhere, except as described in an attachment. Furthermore I attest that I shall produce the data upon which the manuscript is based for examination by the editors or their assignees, if requested.â€
