Analyzing Interaction Between Distributed Denial of Service Attacks And Mitigation Technologies
نویسندگان
چکیده
Under sponsorship of the Defense Advanced Research Projects Agency’s (DARPA) Fault Tolerant Networks (FTN) program, The Johns Hopkins University Applied Physics Laboratory (JHU/APL) has been conducting the Distributed Denial of Service Defense Attack Tradeoff Analysis (DDOS-DATA). DDOS-DATA’s goal is to analyze Distributed Denial of Service (DDOS) attacks and mitigation technologies to develop an understanding of how well mitigation technologies perform and how they can be combined to limit the potential attack space. This paper provides an overview of the DDOS-DATA project and discusses analysis results for the Proof of Work, Rate Limiting, and Active Monitor mitigation technologies considered both individually and when deployed in combinations.
منابع مشابه
HF-Blocker: Detection of Distributed Denial of Service Attacks Based On Botnets
Abstract—Today, botnets have become a serious threat to enterprise networks. By creation of network of bots, they launch several attacks, distributed denial of service attacks (DDoS) on networks is a sample of such attacks. Such attacks with the occupation of system resources, have proven to be an effective method of denying network services. Botnets that launch HTTP packet flood attacks agains...
متن کاملDevelopments in DoS Research and Mitigating Technologies
This paper is a survey on the problem of denial of service attacks and the proposed ways to defend against them. Of particular concern are the distributed attacks that an adversary can carry out by recruiting innocent targets to aid the attack. Since attacks come in many forms and shapes and are generally easy to carry out given the free availability of tools such as Trinoo, defense is difficul...
متن کاملNeural Network Based Protection of Software Defined Network Controller against Distributed Denial of Service Attacks
Software Defined Network (SDN) is a new architecture for network management and its main concept is centralizing network management in the network control level that has an overview of the network and determines the forwarding rules for switches and routers (the data level). Although this centralized control is the main advantage of SDN, it is also a single point of failure. If this main contro...
متن کاملMulti-domain DDoS Mitigation Based on Blockchains
The exponential increase of the traffic volume makes Distributed Denial-of-Service (DDoS) attacks a top security threat to service providers. Existing DDoS defense mechanisms lack resources and flexibility to cope with attacks by themselves, and by utilizing other’s companies resources, the burden of the mitigation can be shared. Technologies as blockchain and smart contracts allow distributing...
متن کاملA Blockchain-Based Architecture for Collaborative DDoS Mitigation with Smart Contracts
The rapid growth in the number of insecure portable and stationary devices and the exponential increase of traffic volume makes Distributed Denial-of-Service (DDoS) attacks a top security threat to services provisioning. Existing defense mechanisms lack resources and flexibility to cope with attacks by themselves, and by utilizing other’s companies resources, the burden of the mitigation can be...
متن کامل