ARDefense:基于NFV和SDN的DDoS检测和防御

2020 12th International Congress on Ultra Modern Telecommunications and Control Systems and Workshops (ICUMT) Pub Date : 2020-10-01 DOI:10.1109/ICUMT51630.2020.9222443

A. Singh, R. Jaiswal, A. Khakimov, A. Muthanna

{"title":"ARDefense:基于NFV和SDN的DDoS检测和防御","authors":"A. Singh, R. Jaiswal, A. Khakimov, A. Muthanna","doi":"10.1109/ICUMT51630.2020.9222443","DOIUrl":null,"url":null,"abstract":"Network Function Virtualization or NFV gives numerous advantages over the conventional networking techniques by incorporating distinctive features of a network over the virtual machine (VM). It decreases capital and operational costs to give more noteworthy adaptability and flexibility. But all of these advantages come at the expense of the intrinsic system vulnerabilities because of specific sorts of cyber attacks like the Distributed Denial of Service (DDoS) attack. With the increased number of layers in NFV, it becomes easier for an attacker to execute DDoS attack. This study indicates a new model for mitigating the effects of DDoS attacks on NFV. The model has been designed specifically for the individual users especially gamers and online streamers who become victim of DDoS attack on adaily basis. However, the method can be used for a online service like a website in general as well after making certain changes which have been discussed in detail. ARDefense usually performs server migration and IP spoofing when it detects a DDoS attack on the application layer. Effectiveness of ARDefense was tested by measuring load migration and IP spoofing processing time.","PeriodicalId":170847,"journal":{"name":"2020 12th International Congress on Ultra Modern Telecommunications and Control Systems and Workshops (ICUMT)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2020-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"5","resultStr":"{\"title\":\"ARDefense: DDoS detection and prevention using NFV and SDN\",\"authors\":\"A. Singh, R. Jaiswal, A. Khakimov, A. Muthanna\",\"doi\":\"10.1109/ICUMT51630.2020.9222443\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Network Function Virtualization or NFV gives numerous advantages over the conventional networking techniques by incorporating distinctive features of a network over the virtual machine (VM). It decreases capital and operational costs to give more noteworthy adaptability and flexibility. But all of these advantages come at the expense of the intrinsic system vulnerabilities because of specific sorts of cyber attacks like the Distributed Denial of Service (DDoS) attack. With the increased number of layers in NFV, it becomes easier for an attacker to execute DDoS attack. This study indicates a new model for mitigating the effects of DDoS attacks on NFV. The model has been designed specifically for the individual users especially gamers and online streamers who become victim of DDoS attack on adaily basis. However, the method can be used for a online service like a website in general as well after making certain changes which have been discussed in detail. ARDefense usually performs server migration and IP spoofing when it detects a DDoS attack on the application layer. Effectiveness of ARDefense was tested by measuring load migration and IP spoofing processing time.\",\"PeriodicalId\":170847,\"journal\":{\"name\":\"2020 12th International Congress on Ultra Modern Telecommunications and Control Systems and Workshops (ICUMT)\",\"volume\":\"1 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2020-10-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"5\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2020 12th International Congress on Ultra Modern Telecommunications and Control Systems and Workshops (ICUMT)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICUMT51630.2020.9222443\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2020 12th International Congress on Ultra Modern Telecommunications and Control Systems and Workshops (ICUMT)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICUMT51630.2020.9222443","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 5

摘要

网络功能虚拟化或NFV通过在虚拟机(VM)上集成网络的独特特性，提供了许多优于传统网络技术的优势。它降低了资本和运营成本，提供了更多值得注意的适应性和灵活性。但是，所有这些优势都是以牺牲固有的系统漏洞为代价的，因为诸如分布式拒绝服务(DDoS)攻击之类的特定类型的网络攻击。随着NFV层数的增加，攻击者更容易实施DDoS攻击。本研究提出了一种减轻DDoS攻击对NFV影响的新模型。该模型是专门为个人用户设计的，特别是游戏玩家和在线流媒体，他们每天都成为DDoS攻击的受害者。然而，该方法可以用于像网站这样的在线服务，也可以在进行了详细讨论的某些更改后使用。当检测到应用层的DDoS攻击时，通常会进行服务器迁移和IP欺骗。通过测量负载迁移和IP欺骗处理时间来测试ARDefense的有效性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

ARDefense: DDoS detection and prevention using NFV and SDN

Network Function Virtualization or NFV gives numerous advantages over the conventional networking techniques by incorporating distinctive features of a network over the virtual machine (VM). It decreases capital and operational costs to give more noteworthy adaptability and flexibility. But all of these advantages come at the expense of the intrinsic system vulnerabilities because of specific sorts of cyber attacks like the Distributed Denial of Service (DDoS) attack. With the increased number of layers in NFV, it becomes easier for an attacker to execute DDoS attack. This study indicates a new model for mitigating the effects of DDoS attacks on NFV. The model has been designed specifically for the individual users especially gamers and online streamers who become victim of DDoS attack on adaily basis. However, the method can be used for a online service like a website in general as well after making certain changes which have been discussed in detail. ARDefense usually performs server migration and IP spoofing when it detects a DDoS attack on the application layer. Effectiveness of ARDefense was tested by measuring load migration and IP spoofing processing time.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2020 12th International Congress on Ultra Modern Telecommunications and Control Systems and Workshops (ICUMT)

自引率

0.00%

发文量