A Cost-Effective MTD Approach for DDoS Attacks in Software-Defined Networks

Javadpour, Amir; Ja’fari, Forough; Taleb, Tarik; Shojafar, Mohammad

doi:10.1109/globecom48099.2022.10000603

Cited by 7 publications

(3 citation statements)

References 18 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Launching a Denial of Service (DoS) or a Distributed DoS (DDoS) attack on GC, the adversaries may target the availability of the crypto components. As a result, a detailed security analysis must be conducted to demonstrate the resiliency of an EaaS platform against DoS/DDoS attacks [64].…”

Section: A General Challengesmentioning

confidence: 99%

Encryption as a Service for IoT: Opportunities, Challenges, and Solutions

Javadpour,

Ja’fari,

Taleb

et al. 2024

IEEE Internet Things J.

Self Cite

View full text Add to dashboard Cite

The widespread adoption of Internet of Things (IoT) technology has introduced new cybersecurity challenges. Encryption services are being offloaded to cloud and fog platforms to mitigate these risks. Encryption as a Service (EaaS) emerges as a remedy, offering cryptographic solutions tailored to the resource constraints of IoT devices. This study thoroughly examines existing EaaS platforms, categorizing them based on encryption algorithms and service offerings. Additionally, we outline various EaaS architecture types depending on the placement of key components. Practical implementations of these platforms are explored through different testbeds. A key focus lies in dissecting the challenges that EaaS faces, particularly in the context of IoT, while suggesting potential remedies. This work stands out as an all-encompassing exploration, bridging the gap left by previous surveys.

show abstract

Section: A General Challengesmentioning

confidence: 99%

Encryption as a Service for IoT: Opportunities, Challenges, and Solutions

Javadpour,

Ja’fari,

Taleb

et al. 2024

IEEE Internet Things J.

Self Cite

View full text Add to dashboard Cite

show abstract

“…When the adversary performs a Dos/DDoS attack against the substrate nodes, all the mapped slices on that substrate node will be affected. Since all the virtual nodes of a request must collaborate, losing one of them leads to the failure of the whole request [3,24]. As a result, a good mapping solution must map the virtual nodes so that attacking one of the substrate nodes causes the lowest possible number of slices to be unavailable.…”

Section: Ddos Damagementioning

confidence: 99%

Enhancing 5G Network Slicing: Slice Isolation Via Actor-Critic Reinforcement Learning with Optimal Graph Features

Javadpour,

Ja'fari,

Taleb

et al. 2023

GLOBECOM 2023 - 2023 IEEE Global Communications Conference

Self Cite

View full text Add to dashboard Cite

Network slicing within 5G networks encounters two significant challenges: catering to a maximum number of requests while ensuring slice isolation. To address these challenges, we present an innovative actor-critic Reinforcement Learning (RL) model named 'Slice Isolation based on RL' (SIRL). This model employs five optimal graph features to construct the problem environment, the structure of which is adapted using a ranking scheme. This scheme effectively reduces feature dimensionality and enhances learning performance. SIRL was assessed through a comparative analysis with nine state-of-the-art RL models, utilizing four evaluation metrics. The average results demonstrate that SIRL outperforms other models with a 70% higher coverage rate of requests and an 8% reduction in damage resulting from DoS/DDoS attacks.

show abstract

“…A Distributed Denial of Service (DDoS) attack is launched against one of the critical servers in this network [9]. Among those who have connected with this server, some are legal nodes, and others are bots [10,11,12]. The state-of-the-art botnet detection techniques first detect the bots and then block them.…”

Section: Introductionmentioning

confidence: 99%

Cybersecurity Fusion: Leveraging Mafia Game Tactics and Reinforcement Learning for Botnet Detection

Javadpour,

Ja'fari,

Taleb

et al. 2023

GLOBECOM 2023 - 2023 IEEE Global Communications Conference

Self Cite

View full text Add to dashboard Cite

Mafia, also known as Werewolf, is a game of uncertainty between two teams, which aims to eliminate the other team's players from the game. The similarities between detecting the Mafia members in this game and botnet detection in a computer network motivate us to solve the botnet detection problem using this game's winning strategies. None of the stateof-the-art researches have used the Mafia game strategies to detect the network's malicious nodes. In this paper, we first propose the Mafia detection strategies, which are applied using linear relation and reinforcement learning techniques. We then use the suggested strategies in a network infected by the Mirai botnet, using Mininet, to evaluate the performance of botnet detection. The average results show that the suggested strategies are 11% more accurate than the existing ones for the Mafia game. Additionally, the true positive and true negative detection rates of a network modeled by the proposed Mafia game are 71% and 91%, respectively.

show abstract

A Cost-Effective MTD Approach for DDoS Attacks in Software-Defined Networks

Cited by 7 publications

References 18 publications

Encryption as a Service for IoT: Opportunities, Challenges, and Solutions

Encryption as a Service for IoT: Opportunities, Challenges, and Solutions

Enhancing 5G Network Slicing: Slice Isolation Via Actor-Critic Reinforcement Learning with Optimal Graph Features

Cybersecurity Fusion: Leveraging Mafia Game Tactics and Reinforcement Learning for Botnet Detection

Contact Info

Product

Resources

About