Anu Johnson, Bhuvaneswari.P
Distributed denial-of-service (DDoS) attacks remain a major security problem and the mitigation of which is very hard . In computing, a denial-of-service attack (DoS attack) or distributed denial-of-service attack (DDoS attack) is an attempt to make a machine or network resource unavailable to its intended users.The early discovery of these attacks, although challenging, is necessary to(IPSs) located at the Internet service providers (ISPs) level. The IPSs form virtual protection rings around the hosts to defend and collaborate by exchanging selected traffic information.The evaluation of this work using extensive simulations and a real dataset is presented, showing its effectiveness and low overhead, as well as its support for incremental deployment in real networks.As an enhancement to this work the controlling of DDoS attacks are also included by constructing Inter Domain Packet Filters protect end-users as well as the expensive network infrastructure resources. Here, address the problem of DdoS attacks and present the theoretical foundation, architecture, and algorithms of detecting DDoS attacks. The core of this work is composed of intrusion prevention systems.