Defending against Denial of Service in a self-aware network: a practical approach
Tools
Tools
Loukas, George 
ORCID: 0000-0003-3559-5182, Oke, Gulay and Gelenbe, Erol
(2008)
Defending against Denial of Service in a self-aware network: a practical approach.
In: RTO Information Systems and Technology Panel (IST) Symposium on Information Assurance for Emerging and Future Military Systems, Ljubljana, Slovenia, 13-14 October 2008.
North Atlantic Treaty Organization (NATO), Research and Technology Organization (RTO) Science and Technology Organization (STO), Brussels, Belgium.
Abstract
In recent years, Denial of Service attacks have evolved into a predominant network security threat. Motivated by an impressive variety of reasons and directed against an equally impressive variety of targets, DoS attacks are not as di±cult to launch as one would expect. Protection against them is, however, disproportionately difficult. Recognising the fact that the networks of the near future will feature self-awareness and online monitoring, we present a comprehensive system for DoS defence that is specifically designed for such self-aware networks. The incoming tra±c at each node is monitored with a detection mechanism that is based on maximum likelihood estimation. In response to high probability of attack, the traffic is then prioritised and rate-limited according to the measured probability. Since in a Self-Aware Network, packet routing is dynamic and depends on current network metrics, both detection and response must run individually on each network node, since the nodes through which the attack traffic will pass, may change continuously. We present the experimental results that we obtained using this DoS defence system applied on a real networking testbed that runs the Self-Aware CPN routing protocol.
| Item Type: | Conference Proceedings |
|---|---|
| Title of Proceedings: | RTO Information Systems and Technology Panel (IST) Symposium on Information Assurance for Emerging and Future Military Systems, Ljubljana, Slovenia, 13-14 October 2008 |
| Additional Information: | [1] This paper was presented at the NATO RTO Information Systems and Technology Panel (IST) Symposium on Information Assurance for Emerging and Future Military Systems held from October 13-14, 2008 in Ljubljana, Slovenia. [2] Activity Reference: IST-076 [3] Originator's Reference: RTO-MP-IST-076 AC/323(IST-076)TP/238 |
| Uncontrolled Keywords: | denial of service, DoS, self-aware network, SAN |
| Subjects: | Q Science > Q Science (General) |
| Pre-2014 Departments: | School of Computing & Mathematical Sciences |
| Related URLs: | |
| Last Modified: | 21 Oct 2020 08:00 |
| URI: | http://gala.gre.ac.uk/id/eprint/9250 |
Actions (login required)
 |
View Item |