Network Dominating Attack Detection and Mitigation

In this paper, we address the issue of network dominating attack through which a malicious user tries to grab an unfair share of bandwidth. In this attack, malicious senders on receiving the congestion indication, increase their congestion window instead of decreasing. Random Early Detection (RED), which is one of the current Active Queue Management (AQM) schemes, fails to identify such flow that leads to unfair sharing of bandwidth. Therefore, we present a unique solution which works on top of RED to detect and mitigate the anomalous flows by monitoring the packets present in the gateway buffer.