CoDef

Lee, Soo Bum; Kang, Min Suk; Gligor, Virgil D.

doi:10.1145/2535372.2535398

Cited by 70 publications

(2 citation statements)

References 27 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In [42], the authors proposed a traffic-engineering model to track traffic source rate change but requires major changes in the SDN switches and detects only link flooding. Lee et al [43] proposed a collaborative traffic-engineering model to differentiate between low-rate attacks and legitimate traffic. In [44], the authors presented a traffic-engineering based analytical framework for defending link-flooding attacks.…”

Section: Reinforcing Anti-ddos Actions In Realtime (Radar)mentioning

confidence: 99%

On Distributed Denial of Service Current Defense Schemes

2019

View full text Add to dashboard Cite

Distributed denial of service (DDoS) attacks are a major threat to any network-based service provider. The ability of an attacker to harness the power of a lot of compromised devices to launch an attack makes it even more complex to handle. This complexity can increase even more when several attackers coordinate to launch an attack on one victim. Moreover, attackers these days do not need to be highly skilled to perpetrate an attack. Tools for orchestrating an attack can easily be found online and require little to no knowledge about attack scripts to initiate an attack. Studies have been done severally to develop defense mechanisms to detect and defend against DDoS attacks. As defense schemes are designed and developed, attackers are also on the move to evade these defense mechanisms and so there is a need for a continual study in developing defense mechanisms. This paper discusses the current DDoS defense mechanisms, their strengths and weaknesses.

show abstract

Section: Reinforcing Anti-ddos Actions In Realtime (Radar)mentioning

confidence: 99%

On Distributed Denial of Service Current Defense Schemes

2019

View full text Add to dashboard Cite

show abstract

“…In order to detect TLFA, several schemes have been proposed [3,4,5]. However, these schemes work after link congestion occurs.…”

Section: Introductionmentioning

confidence: 99%

Traceroute-based target link flooding attack detection scheme by analyzing hop count to the destination

et al. 2019

View full text Add to dashboard Cite

In this paper, we propose traceroute-based target link flooding attack (TLFA) detection scheme by analyzing hop count to the destination. Since the destinations of the attacker's traceroutes tend to be concentrated around a target link, classifying traceroutes by hop count can highlight attacker's traceroute. Thus, the proposed scheme can detect the attack even if an attacker slowly executes traceroutes and the ratio of legitimate user's traceroutes is high. By computer simulations, we show our scheme has more robustness compared with the conventional scheme.

show abstract

CLEF: Limiting the Damage Caused by Large Flows in the Internet Core

Hsiao

Asoni

et al. 2018

Cryptology and Network Security

View full text Add to dashboard Cite

2[0000−0002−5100−1519] , Hsu-Chun Hsiao 3[0000−0001−9592−6911] , Daniele E. Asoni 4[0000−0001−5699−9237] , Simon Scherrer 4[0000−0001−9557−1700] , Adrian Perrig 4[0000−0002−5280−5412] , and Yih-Chun Hu 1[0000−0002−7829−3929]Abstract. The detection of network flows that send excessive amounts of traffic is of increasing importance to enforce QoS and to counter DDoS attacks. Large-flow detection has been previously explored, but the proposed approaches can be used on high-capacity core routers only at the cost of significantly reduced accuracy, due to their otherwise too high memory and processing overhead. We propose CLEF, a new large-flow detection scheme with low memory requirements, which maintains high accuracy under the strict conditions of high-capacity core routers. We compare our scheme with previous proposals through extensive theoretical analysis, and with an evaluation based on worst-case-scenario attack traffic. We show that CLEF outperforms previously proposed systems in settings with limited memory.Keywords: Large-flow detection, damage metric, memory and computation efficiency 5 As in prior literature [15,42], the term large flow denotes a flow that sends more than its allocated bandwidth. arXiv:1807.05652v1 [cs.NI] 16 Jul 2018 (2) * c 168.6 63.75 31.92 26.56 21.96 10.68 7.59 * Time unit is second.

show abstract

CoDef

Cited by 70 publications

References 27 publications

On Distributed Denial of Service Current Defense Schemes

On Distributed Denial of Service Current Defense Schemes

Traceroute-based target link flooding attack detection scheme by analyzing hop count to the destination

CLEF: Limiting the Damage Caused by Large Flows in the Internet Core

Contact Info

Product

Resources

About