Design and Implementation of an OpenFlow-Based TCP SYN Flood Mitigation

Ryosuke, Nagai; Kurihara, Wataru; Higuchi, Shun; Hirotsu, Toshio

doi:10.1109/mobilecloud.2018.00014

Cited by 11 publications

(3 citation statements)

References 3 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Gambar 1. Proses TCP three-way handshake Sementara itu, serangan SYN flood terjadi ketika klien mengirimkan sejumlah besar paket SYN ke tiap port mesin target dan tidak merespons paket SYN-ACK server dengan ACK [13]. Akibatnya, server terus menunggu paket ACK yang akhirnya menyebabkan koneksi setengah terbuka (halfopen connection) antara klien dan server.…”

Section: B Serangan Syn Floodunclassified

Analisis Perbedaan Pengaruh Penggunaan Iptables Chains dalam Mencegah Denial of Service (DoS) pada Jaringan IoT

Nida,

Adrian

2023

JISE

View full text Add to dashboard Cite

Peningkatan penggunaan perangkat Internet of Things (IoT) rumahan dibarengi dengan berkembangnya berbagai kerentanan keamanan pada jaringan rumah. Keterbatasan sumber daya yang dimiliki perangkat IoT menjadikannya target ideal untuk diluncurkan serangan Denial of Service (DoS), termasuk SYN flood. Serangan ini cenderung menargetkan sumber daya IoT yang krusial, termasuk CPU. Apabila dilakukan secara terus menerus, serangan ini mampu menguras sumber daya IoT dan membuatnya kehilangan fungsionalitasnya. Penerapan iptables pada Raspberry Pi mampu meminimalkan dampak serangan SYN flood. Iptables memiliki berbagai chains dan tables dengan kemampuan dan fungsi yang berbeda. Penelitian ini bertujuan untuk menganalisis perbedaan pengaruh penggunaan iptables chains terhadap penggunaan CPU Raspberry Pi. Penggunaan CPU yang semakin rendah memperkecil kemungkinan terjadinya DoS. Hasil penelitian ini kemudian akan dibandingkan dengan penggunaan CPU ketika aturan iptables pada penelitian terdahulu diterapkan. Hasilnya, kedua aturan mengonsumsi CPU dalam persentase yang hampir sama.

show abstract

Section: B Serangan Syn Floodunclassified

Analisis Perbedaan Pengaruh Penggunaan Iptables Chains dalam Mencegah Denial of Service (DoS) pada Jaringan IoT

Nida,

Adrian

2023

JISE

View full text Add to dashboard Cite

show abstract

“…Developers can design and distribute applications. However this flexibility as a way of innovation can be constrained if an adversary decides to launch a malicious application with rogue intentions [25]. Figure 1a shows the threat that leverages the inability of the controller to completely identify the various network applications that make changes to network in the SDN architecture.…”

Section: System Callmentioning

confidence: 99%

A trust management framework for Software Defined Network (SDN) controller and network applications

et al. 2020

View full text Add to dashboard Cite

“…That is to say the ability to implement "TCP SYN Checking" will almost certainly result in an attack on the network. Thus, we have a special case in which an attack surface has been established [12]. The TCP SYN checking function, as a result, can protect the transmission from TCP state-based attacks [13].…”

Section: Introductionmentioning

confidence: 99%

Predicting Attack Surface Effects on Attack Vectors in an Open Congested Network Transmission Session by Machine Learning

Aljojo

2021

Int. J. Onl. Eng.

View full text Add to dashboard Cite

<p>This paper examined the impact of a network attack on a congested transmission session. The research is motivated by the fact that the previous research community has neglected to evaluate security issues related to network congestion environments, and has instead concentrated on resolving congestion issues only. At any point in time, attackers can take advantage of the congestion problem, exploit the attack surface, and inject attack vectors. In order to circumvent this issue, a machine learning algorithm is trained to correlate attack vectors from the attack surface in a network congestion signals environment with the value of decisions over time in order to maximise expected attack vectors from the attack surface. Experimental scenario that dwell on transmission rate overwhelming transmission session, resulting in a standing queue was used. The experiment produced a dataset in which a TCP transmission through bursting transmission were capture. The data was acquired using a variety of experimental scenarios. Nave Bayes, and K-Nearest Neighbours prediction analyses demonstrate strong prediction performance. As a result, this study re-establishes the association between attack surface and vectors with network attack prediction. </p>

show abstract

Design and Implementation of an OpenFlow-Based TCP SYN Flood Mitigation

Cited by 11 publications

References 3 publications

Analisis Perbedaan Pengaruh Penggunaan Iptables Chains dalam Mencegah Denial of Service (DoS) pada Jaringan IoT

Analisis Perbedaan Pengaruh Penggunaan Iptables Chains dalam Mencegah Denial of Service (DoS) pada Jaringan IoT

A trust management framework for Software Defined Network (SDN) controller and network applications

Predicting Attack Surface Effects on Attack Vectors in an Open Congested Network Transmission Session by Machine Learning

Contact Info

Product

Resources

About