A Sliding Window Based Monitoring Scheme to Detect and Prevent DDoS Attack in Data Center Networks in a Dynamic Traffic Environment

2018 IEEE 39th Sarnoff Symposium Pub Date : 2018-09-01 DOI:10.1109/SARNOF.2018.8720399

M. Maswood, M. Mamun, Dijiang Huang, D. Medhi

{"title":"A Sliding Window Based Monitoring Scheme to Detect and Prevent DDoS Attack in Data Center Networks in a Dynamic Traffic Environment","authors":"M. Maswood, M. Mamun, Dijiang Huang, D. Medhi","doi":"10.1109/SARNOF.2018.8720399","DOIUrl":null,"url":null,"abstract":"Distributed Denial of Service (DDoS) attack is the most common type of attack faced by today's data centers (DC). Such attacks can have a devastating impact on the system as it consumes resources like network bandwidth, hard disk storage, and CPU processing resources. As a consequence, the legitimate customers face more service blocking due to a major portion of the resources being occupied by the illegitimate traffic generated by the attackers. In this paper, we proposed a novel monitoring scheme based on the sliding window to detect and prevent the DDoS attack in DCs that serve enterprise customers that has low computational complexity. Compared to a benchmark scheme (without attack monitoring and preventing), our scheme ensures service provisioning for the legitimate customers with no false alarm. We also measure the robustness of our scheme in terms of the time taken to detect and prevent attack traffic by varying the traffic intensities of illegitimate traffic. Simulation results show that our scheme can successfully detect the attack even if the attack traffic intensity is not too much higher than the projected legitimate traffic intensity.","PeriodicalId":430928,"journal":{"name":"2018 IEEE 39th Sarnoff Symposium","volume":"84 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2018-09-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"4","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2018 IEEE 39th Sarnoff Symposium","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SARNOF.2018.8720399","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 4

Abstract

Distributed Denial of Service (DDoS) attack is the most common type of attack faced by today's data centers (DC). Such attacks can have a devastating impact on the system as it consumes resources like network bandwidth, hard disk storage, and CPU processing resources. As a consequence, the legitimate customers face more service blocking due to a major portion of the resources being occupied by the illegitimate traffic generated by the attackers. In this paper, we proposed a novel monitoring scheme based on the sliding window to detect and prevent the DDoS attack in DCs that serve enterprise customers that has low computational complexity. Compared to a benchmark scheme (without attack monitoring and preventing), our scheme ensures service provisioning for the legitimate customers with no false alarm. We also measure the robustness of our scheme in terms of the time taken to detect and prevent attack traffic by varying the traffic intensities of illegitimate traffic. Simulation results show that our scheme can successfully detect the attack even if the attack traffic intensity is not too much higher than the projected legitimate traffic intensity.

查看原文本刊更多论文

基于滑动窗口的动态流量环境下数据中心网络DDoS攻击检测与防范方案

分布式拒绝服务(DDoS)攻击是当今数据中心(DC)面临的最常见的攻击类型。这种攻击会消耗网络带宽、硬盘存储和CPU处理资源，对系统造成毁灭性的影响。因此，由于攻击者产生的非法流量占用了大部分资源，合法客户面临更多的服务阻塞。本文提出了一种基于滑动窗口的新型监控方案，用于检测和防范计算复杂度较低的服务于企业客户的数据中心的DDoS攻击。相对于基准方案(没有攻击监控和防范)，我们的方案保证了合法客户的服务供应，没有误报。我们还通过改变非法流量的流量强度来检测和防止攻击流量所花费的时间来衡量我们方案的鲁棒性。仿真结果表明，即使攻击流量强度不高于预计的合法流量强度，该方案也能成功检测到攻击。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2018 IEEE 39th Sarnoff Symposium

自引率

0.00%

发文量