The Spoofer project has collected data on the deployment and characteristics of IP source
address validation on the Internet since 2005. Data from the project comes from participants …

The Public Key Infrastructure (PKI) protects users from malicious man-in-the-middle attacks
by having trusted Certificate Authorities (CAs) vouch for the domain names of servers on the …

DDoS attacks are one of the biggest threats to the modern Internet as their magnitude is
constantly increasing. They are highly effective because of the amplification and reflection …

IP spoofing, sending IP packets with a false source IP address, continues to be a primary
attack vector for large-scale Denial of Service attacks. To combat spoofing, various …

IP traffic with forged source addresses (ie, spoofed traffic) enables a series of threats ranging
from the impersonation of remote hosts to massive denial-of-service attacks. Consequently …

This paper concerns the problem of the absence of ingress filtering at the network edge, one
of the main causes of important network security issues. Numerous network operators do not …

A safe and secure Domain Name System (DNS) is of paramount importance for the digital
economy and society. Malicious activities on the DNS, generally referred to as" DNS abuse" …

Spoofed Internet traffic is used by miscreants, most visibly for amplification DDoS attacks.
Source Address Validation (SAV) by network operators is a security best practice to stop …

Background The Internet relies on IP packets to enable communication between hosts with
the destination and source addresses specified in packet headers. However, there is no …

Ascertaining that a network will forward spoofed traffic usually requires an active probing
vantage point in that network, effectively preventing a comprehensive view of this global …