Skip navigation

Defending against Denial of Service in a self-aware network: a practical approach

Defending against Denial of Service in a self-aware network: a practical approach

Loukas, George ORCID logoORCID: https://orcid.org/0000-0003-3559-5182, Oke, Gulay and Gelenbe, Erol (2008) Defending against Denial of Service in a self-aware network: a practical approach. In: RTO Information Systems and Technology Panel (IST) Symposium on Information Assurance for Emerging and Future Military Systems, Ljubljana, Slovenia, 13-14 October 2008. North Atlantic Treaty Organization (NATO), Research and Technology Organization (RTO) Science and Technology Organization (STO), Brussels, Belgium.

Full text not available from this repository.

Abstract

In recent years, Denial of Service attacks have evolved into a predominant network security threat. Motivated by an impressive variety of reasons and directed against an equally impressive variety of targets, DoS attacks are not as di±cult to launch as one would expect. Protection against them is, however, disproportionately difficult. Recognising the fact that the networks of the near future will feature self-awareness and online monitoring, we present a comprehensive system for DoS defence that is specifically designed for such self-aware networks. The incoming tra±c at each node is monitored with a detection mechanism that is based on maximum likelihood estimation. In response to high probability of attack, the traffic is then prioritised and rate-limited according to the measured probability. Since in a Self-Aware Network, packet routing is dynamic and depends on current network metrics, both detection and response must run individually on each network node, since the nodes through which the attack traffic will pass, may change continuously. We present the experimental results that we obtained using this DoS defence system applied on a real networking testbed that runs the Self-Aware CPN routing protocol.

Item Type: Conference Proceedings
Title of Proceedings: RTO Information Systems and Technology Panel (IST) Symposium on Information Assurance for Emerging and Future Military Systems, Ljubljana, Slovenia, 13-14 October 2008
Additional Information: [1] This paper was presented at the NATO RTO Information Systems and Technology Panel (IST) Symposium on Information Assurance for Emerging and Future Military Systems held from October 13-14, 2008 in Ljubljana, Slovenia. [2] Activity Reference: IST-076 [3] Originator's Reference: RTO-MP-IST-076 AC/323(IST-076)TP/238
Uncontrolled Keywords: denial of service, DoS, self-aware network, SAN
Subjects: Q Science > Q Science (General)
Pre-2014 Departments: School of Computing & Mathematical Sciences
Related URLs:
Last Modified: 21 Oct 2020 08:00
URI: http://gala.gre.ac.uk/id/eprint/9250

Actions (login required)

View Item View Item