A Complete Detection and Mitigation Framework to Protect a Network from DDoS Attacks

被引:5
|
作者
Baishya, Ram Charan [1 ]
Bhattacharyya, D. K. [1 ]
机构
[1] Tezpur Univ, Comp Sci & Engn Dept, Napaam, India
来源
IETE JOURNAL OF RESEARCH | 2022年 / 68卷 / 01期
关键词
DDoS; DDoS defense; Victim end DDoS defense; Anti-spoofing DDoS defense;
D O I
10.1080/03772063.2019.1604173
中图分类号
TM [电工技术]; TN [电子技术、通信技术];
学科分类号
0808 ; 0809 ;
摘要
In this paper we present a complete framework for detection and mitigation of different types of commonly seen deadly DDoS attacks. The system assumes bi-directional traffic information at an edge router to detect and mitigate the attacks. A router might not always see the outgoing traffic corresponding to the incoming traffic carried by the router and which has always been a problem for other approaches which assume bi-directionality of the traffic in the monitoring point. We introduce an agent-based technique which enables each edge router to validate the bi-directional nature of effectiveness of our detection and mitigation the incoming traffic passing through them. We present several experiments demonstrating the system. Also, we introduce a packet marking scheme called as XORID, which can be used to defend against spoofing based DDoS attacks.
引用
收藏
页码:315 / 332
页数:18
相关论文
共 50 条
  • [1] A SECURED AND ENHANCED MITIGATION FRAMEWORK FOR DDOS ATTACKS
    Shah, Mujahid
    Khattak, ShahbazQadar
    Farooq, Muhammad
    Jan, Sadeeq
    Qureshi, MehtabEjaz
    Jan, Naveed
    Ahmed, Sheeraz
    JOURNAL OF MECHANICS OF CONTINUA AND MATHEMATICAL SCIENCES, 2019, 14 (06): : 985 - 1004
  • [2] Protect grids from DDoS attacks
    Xiang, Y
    Zhou, WL
    GRID AND COOPERATIVE COMPUTING GCC 2004, PROCEEDINGS, 2004, 3251 : 309 - 316
  • [3] Mitigation and Detection of DDoS Attacks in Software Defined Networks
    Murtuza, Shariq
    Asawa, Krishna
    2018 ELEVENTH INTERNATIONAL CONFERENCE ON CONTEMPORARY COMPUTING (IC3), 2018, : 389 - 391
  • [4] One-Dimensional Convolutional Neural Network for Detection and Mitigation of DDoS Attacks in SDN
    Alshra'a, Abdullah
    Jochen, Seitz
    MACHINE LEARNING FOR NETWORKING, MLN 2021, 2022, 13175 : 11 - 28
  • [5] Neural Network-Based Approach for Detection and Mitigation of DDoS Attacks in SDN Environments
    Hannache, Oussama
    Batouche, Mohamed Chaouki
    INTERNATIONAL JOURNAL OF INFORMATION SECURITY AND PRIVACY, 2020, 14 (03) : 50 - 71
  • [6] An Integrated Framework for Proactive Mitigation, Characterization and Traceback of DDoS Attacks
    Gandhi, Bhavana
    Joshi, R. C.
    INTERNATIONAL JOURNAL OF COMPUTER SCIENCE AND NETWORK SECURITY, 2007, 7 (03): : 274 - 282
  • [7] DDoS Attacks Detection and Mitigation in SDN using Machine Learning
    Rahman, Obaid
    Quraishi, Mohammad Ali Gauhar
    Lung, Chung-Horng
    2019 IEEE WORLD CONGRESS ON SERVICES (IEEE SERVICES 2019), 2019, : 184 - 189
  • [8] DDoS attacks in VoIP: a brief review of detection and mitigation techniques
    Narayanan, Sambath
    Manickam, Selvakumar
    Leau, Yu-Beng
    INTERNATIONAL JOURNAL OF ADVANCED AND APPLIED SCIENCES, 2016, 3 (09): : 90 - 96
  • [9] A comprehensive detection and mitigation mechanism to protect SD-IoV systems against controller-targeted DDoS attacks
    Alemu, Behaylu Tadele
    Muhammed, Alemu Jorgi
    Belachew, Habtamu Molla
    Beyene, Mulatu Yirga
    CLUSTER COMPUTING-THE JOURNAL OF NETWORKS SOFTWARE TOOLS AND APPLICATIONS, 2024, 27 (10): : 14295 - 14313
  • [10] Mitigation of DDoS Attacks in Cloud Computing
    Daffu, Preeti
    Kaur, Amanpreet
    2016 5TH INTERNATIONAL CONFERENCE ON WIRELESS NETWORKS AND EMBEDDED SYSTEMS (WECON), 2016, : 209 - 213
12345