A Complete Detection and Mitigation Framework to Protect a Network from DDoS Attacks

被引:5
|
作者
Baishya, Ram Charan [1 ]
Bhattacharyya, D. K. [1 ]
机构
[1] Tezpur Univ, Comp Sci & Engn Dept, Napaam, India
来源
IETE JOURNAL OF RESEARCH | 2022年 / 68卷 / 01期
关键词
DDoS; DDoS defense; Victim end DDoS defense; Anti-spoofing DDoS defense;
D O I
10.1080/03772063.2019.1604173
中图分类号
TM [电工技术]; TN [电子技术、通信技术];
学科分类号
0808 ; 0809 ;
摘要
In this paper we present a complete framework for detection and mitigation of different types of commonly seen deadly DDoS attacks. The system assumes bi-directional traffic information at an edge router to detect and mitigate the attacks. A router might not always see the outgoing traffic corresponding to the incoming traffic carried by the router and which has always been a problem for other approaches which assume bi-directionality of the traffic in the monitoring point. We introduce an agent-based technique which enables each edge router to validate the bi-directional nature of effectiveness of our detection and mitigation the incoming traffic passing through them. We present several experiments demonstrating the system. Also, we introduce a packet marking scheme called as XORID, which can be used to defend against spoofing based DDoS attacks.
引用
收藏
页码:315 / 332
页数:18
相关论文
共 50 条
  • [31] Towards a Unified In-Network DDoS Detection and Mitigation Strategy
    Friday, Kurt
    Kfoury, Elie
    Bou-Harb, Elias
    Crichigno, Jorge
    PROCEEDINGS OF THE 2020 6TH IEEE CONFERENCE ON NETWORK SOFTWARIZATION (NETSOFT 2020): BRIDGING THE GAP BETWEEN AI AND NETWORK SOFTWARIZATION, 2020, : 218 - 226
  • [32] A Novel Framework for DDoS Attacks Detection Using Hybrid LSTM Techniques
    Thangasamy A.
    Sundan B.
    Govindaraj L.
    Computer Systems Science and Engineering, 2023, 45 (03): : 2553 - 2567
  • [33] An integrated SDN framework for early detection of DDoS attacks in cloud computing
    Songa, Asha Varma
    Karri, Ganesh Reddy
    JOURNAL OF CLOUD COMPUTING-ADVANCES SYSTEMS AND APPLICATIONS, 2024, 13 (01):
  • [34] A learning-based hybrid framework for detection and defence of DDoS attacks
    Subbulakshmi T.
    Subbulakshmi, T. (research.subbulakshmi@gmail.com), 2017, Inderscience Enterprises Ltd., 29, route de Pre-Bois, Case Postale 856, CH-1215 Geneva 15, CH-1215, Switzerland (10) : 51 - 60
  • [35] An integrated SDN framework for early detection of DDoS attacks in cloud computing
    Asha Varma Songa
    Ganesh Reddy Karri
    Journal of Cloud Computing, 13
  • [36] Net-Police: A network patrolling service for effective mitigation of volumetric DDoS attacks
    Karapoola, Sareena
    Vairam, Prasanna Karthik
    Raman, Shankar
    Kamakoti, V.
    COMPUTER COMMUNICATIONS, 2020, 150 : 438 - 454
  • [37] DDoS Attacks Detection with AutoEncoder
    Yang, Kun
    Zhang, Junjie
    Xu, Yang
    Chao, Jonathan
    NOMS 2020 - PROCEEDINGS OF THE 2020 IEEE/IFIP NETWORK OPERATIONS AND MANAGEMENT SYMPOSIUM 2020: MANAGEMENT IN THE AGE OF SOFTWARIZATION AND ARTIFICIAL INTELLIGENCE, 2020,
  • [38] E-Had: A distributed and collaborative detection framework for early detection of DDoS attacks
    Patil, Nilesh Vishwasrao
    Krishna, C. Rama
    Kumar, Krishan
    Behal, Sunny
    JOURNAL OF KING SAUD UNIVERSITY-COMPUTER AND INFORMATION SCIENCES, 2022, 34 (04) : 1373 - 1387
  • [39] Detection and mitigation of DDoS in SDN
    Pande, Bhavika
    Bhagat, Gargi
    Priya, Shanu
    Agrawal, Himanshu
    2018 ELEVENTH INTERNATIONAL CONFERENCE ON CONTEMPORARY COMPUTING (IC3), 2018, : 371 - 373
  • [40] Detection and Mitigation of DDoS Attacks Using Conditional Entropy in Software-defined Networking
    Xuanyuan, Ming
    Ramsurrun, Visham
    Seeam, Amar
    2019 11TH INTERNATIONAL CONFERENCE ON ADVANCED COMPUTING (ICOAC 2019), 2019, : 66 - 71
12345