Skip to Main content Skip to Navigation
Conference papers

Towards autonomic DDoS mitigation using Software Defined Networking

Abstract : Distributed Denial of Service attacks (DDoS) have remained as one of the most destructive attacks in the Internet for over two decades. Despite tremendous efforts on the design of DDoS defense strategies, few of them have been considered for widespread deployment due to strong design assumptions on the Internet infrastructure, prohibitive operational costs and complexity. Recently, the emergence of Software Defined Networking (SDN) has offered a solution to reduce network management complexity. It is also believed to facilitate security management thanks to its programmability. To explore the advantages of using SDN to mitigate DDoS attacks, we propose a distributed collaborative framework that allows the customers to request DDoS mitigation service from ISPs. Upon request, ISPs can change the label of the anomalous traffic and redirect them to security middleboxes, while attack detection and analysis modules are deployed at customer side, avoiding privacy leakage and other legal concerns. Our preliminary analysis demonstrates that SDN has promising potential to enable autonomic mitigation of DDoS attacks, as well as other large-scale attacks
Document type :
Conference papers
Complete list of metadata

Cited literature [35 references]  Display  Hide  Download

https://hal.archives-ouvertes.fr/hal-01257899
Contributor : Médiathèque Télécom Sudparis & Institut Mines-Télécom Business School Connect in order to contact the contributor
Submitted on : Monday, January 18, 2016 - 1:53:33 PM
Last modification on : Monday, September 20, 2021 - 11:38:25 AM
Long-term archiving on: : Friday, November 11, 2016 - 9:54:53 AM

File

01_3_2.pdf
Publisher files allowed on an open archive

Identifiers

Citation

Rishikesh Sahay, Gregory Blanc, Zonghua Zhang, Hervé Debar. Towards autonomic DDoS mitigation using Software Defined Networking. SENT 2015 : NDSS Workshop on Security of Emerging Networking Technologies, Feb 2015, San Diego, Ca, United States. ⟨10.14722/sent.2015.23004⟩. ⟨hal-01257899⟩

Share

Metrics

Les métriques sont temporairement indisponibles