No. 11 (2025), Articles
No. 11 (2025)

IP FRAGMENTATION–BASED ATTACKS AND PROTECTION MECHANISMS IN DISTRIBUTED AND HETEROGENEOUS NETWORK SYSTEMS

Articles
Published 2025-12-16
  • Mikheil Donadze
  • Besik Beridze
Mikheil Donadze
Besik Beridze
pdf (Georgian)

How to Cite

Donadze, M., & Beridze, B. (2025). IP FRAGMENTATION–BASED ATTACKS AND PROTECTION MECHANISMS IN DISTRIBUTED AND HETEROGENEOUS NETWORK SYSTEMS . Transactions of the Adjara Autonomous Republic Regional Scientific Centre of the Georgian National Academy of Sciences, 11, 7-13. https://doi.org/10.52340/tgsa.2025.11.01
ACM ACS APA ABNT Chicago Harvard IEEE MLA Turabian Vancouver AMA

Download Citation

Endnote/Zotero/Mendeley (RIS) BibTeX
Crossref
Scopus
Google Scholar
Europe PMC

Abstract

In the context of the rapid advancement of corporate information networks and international telecommunication technologies, ensuring the security of distributed computing systems has become a critical challenge for government, administrative, and law enforcement agencies. Most modern Intrusion Detection Systems (IDS) and packet filtering technologies are unable to perform a comprehensive analysis of fragmented datagrams. This technical limitation significantly hinders the timely identification of cyberattacks and the blocking of malicious traffic, thereby creating a fertile ground for the execution of Denial of Service (DoS/DDoS) attacks distributed across multiple fragments.

This paper examines the tension between the demand for increased intrusion detection efficiency and the necessity of aggregating heterogeneous information-computing systems. This problem is further exacerbated by the technical possibility of concealing destructive actions within individual fragments.

The study analyzes specific threats, such as Tiny Fragment Attacks and Overlapping Fragment scenarios. The primary objective of the research is to conduct an in-depth analysis of IP fragmentation characteristics and to develop effective, dynamic protection mechanisms for scalable information-computing systems.

pdf (Georgian)

References

L. Aubard, J. Mazel, G. Guette, and P. Chifflier, „Overlapping IPv4, IPv6, and TCP data: exploring errors, test case context and multiple overlaps inside network stacks and NIDSes with PYROLYSE“, Aug. 2025

C. Hopps, „Aggregation and Fragmentation Mode for Encapsulating Security Payload (ESP) and Its Use for IP Traffic Flow Security (IP-TFS)“, RFC 9347, Jan. 2023

K. Fujiwara and P. Vixie, „IP Fragmentation Avoidance in DNS“, IETF Internet-Draft, Dec. 2023

A. Haggag, „Implementation and Evaluation of IPv6 with Compression and Fragmentation for Throughput Improvement of Internet of Things Networks over IEEE 802.15.4“, Wireless Pers. Commun., vol. 130, pp. 1449–1477, Mar. 2023

Y. Han, L. Zhang, Y. Wang, X. Deng, Z. Gu, and X. Zhang, „Research on the Security of IPv6 Communication Based on Petri Net under IoT“ Sensors, vol. 23, no. 11, Art. no. 5192, 2023

Tze Uei Chai1, Hock Guan Goh, Soung-Yue Liew,Vasaki Ponnusamy, „Protection Schemes for DDoS, ARP Spoofing, and IP Fragmentation Attacks in Smart Factory“, Systems, vol. 11, no. 4, Art. 211, Apr. 2023