Skip to Content
[CAIDA - Center for Applied Internet Data Analysis logo]
Center for Applied Internet Data Analysis
www.caida.org > publications : papers : 2013 : initial_longitudinal_analysis_of_ip_source_spoofing_on_the_internet
Initial Longitudinal Analysis of IP Source Spoofing Capability on the Internet
R. Beverly, R. Koga, and k. claffy, "Initial Longitudinal Analysis of IP Source Spoofing Capability on the Internet", Internet Society, Jul 2013.
|   View full paper:    PDF    |  Citation:    BibTeX    Resource Catalog   |

Initial Longitudinal Analysis of IP Source Spoofing Capability on the Internet

Robert Beverly2
Ryan Koga1
kc claffy1
1

CAIDA, San Diego Supercomputer Center, University of California San Diego

2

Naval Postgraduate School

The Spoofer project originated in 2005 as the result of discussions over the general ability to successfully send spoofed-source IP packets across the Internet. At the time, a common misconception was that “most networks perform source address filtering, and, even if they don’t, botnets remove any of the anonymity advantage afforded by spoofing.” Such beliefs of course proved incorrect in light of a rash of spoofing-based denial-of-service attacks — attacks that still occur to this day. Despite IP source spoofing being a known vulnerability for at least 25 years, and despite many efforts to shed light on the problem, spoofing remains a viable attack vector for redirection, amplification, and anonymity as evidenced most recently and publicly in May 2013 during a 300+ Gb/s DDoS attack against Spamhaus.

Keywords: routing, security
  Last Modified: Tue Nov-17-2020 04:47:17 UTC
  Page URL: https://www.caida.org/publications/papers/2013/initial_longitudinal_analysis_of_ip_source_spoofing_on_the_internet/index.xml