SDN-Assisted Network-Based Mitigation of Slow DDoS Attacks

Beitrag in einem Sammelwerk


Details zur Publikation

Autorinnen und Autoren: Lukaseder T, Maile L, Erb B, Kargl F
Herausgeber: Beyah Raheem, Chang Bing, Li Yingjiu, Zhu Sencun
Titel Sammelwerk: SecureComm 2018: Security and Privacy in Communication Networks
Verlag: Springer International Publishing
Verlagsort: Cham
Jahr der Veröffentlichung: 2018
Band: abs/1804.06750
Seitenbereich: 102--121
ISBN: 978-3-030-01704-0
Sprache: Englisch


Abstract

Slow-running attacks against network applications are often not easy to detect, as the attackers behave according to the specification. The servers of many network applications are not prepared for such attacks, either due to missing countermeasures or because their default configurations ignores such attacks. The pressure to secure network services against such attacks is shifting more and more from the service operators to the network operators of the servers under attack. Recent technologies such as software-defined networking offer the flexibility and extensibility to analyze and influence network flows without the assistance of the target operator. Based on our previous work on a network-based mitigation, we have extended a framework to detect and mitigate slow-running DDoS attacks within the network infrastructure, but without requiring access to servers under attack. We developed and evaluated several identification schemes to identify attackers in the network solely based on network traffic information. We showed that by measuring the packet rate and the uniformity of the packet distances, a reliable identificator can be built, given a training period of the deployment network.


FAU-Autorinnen und Autoren / FAU-Herausgeberinnen und Herausgeber

Maile, Lisa
Lehrstuhl für Informatik 7 (Rechnernetze und Kommunikationssysteme)


Einrichtungen weiterer Autorinnen und Autoren

Universität Ulm


Zitierweisen

APA:
Lukaseder, T., Maile, L., Erb, B., & Kargl, F. (2018). SDN-Assisted Network-Based Mitigation of Slow DDoS Attacks. In Beyah Raheem, Chang Bing, Li Yingjiu, Zhu Sencun (Eds.), SecureComm 2018: Security and Privacy in Communication Networks. (pp. 102--121). Cham: Springer International Publishing.

MLA:
Lukaseder, Thomas, et al. "SDN-Assisted Network-Based Mitigation of Slow DDoS Attacks." SecureComm 2018: Security and Privacy in Communication Networks. Ed. Beyah Raheem, Chang Bing, Li Yingjiu, Zhu Sencun, Cham: Springer International Publishing, 2018. 102--121.

BibTeX: 

Zuletzt aktualisiert 2019-15-01 um 19:10