Collaborative peer to peer defense mechanism for DDoS attacks

Usman Tariq; Yasir Malik; Bessam Abdulrazak; Man Pyo Hong

doi:10.1016/j.procs.2011.07.022

Collaborative peer to peer defense mechanism for DDoS attacks

Usman Tariq, Yasir Malik, Bessam Abdulrazak, Man Pyo Hong

Research output: Contribution to journal › Conference article › peer-review

16 Scopus citations

Abstract

Distributed Denial of Service (DDoS) attacks are the most common and easiest attacks to propagate over internet. It causes a high degree of destruction to the network and systems resources. The destructive nature of DDoS attacks force security engineers to design defense solutions which can detect and take counter actions to defend against such attacks. In this paper, we investigated the packet flood attacks and presented a collaborative peer to peer defense mechanism. The proposed solution detects the attack at victim edge router and sends the alert messages to its neighboring nodes which allow them to proactively defend themselves. Simulation results shows the efficiency of the solution with less false positives at victim edge router and less damage to the network due to proactive defense approach.

Original language	English
Pages (from-to)	157-164
Number of pages	8
Journal	Procedia Computer Science
Volume	5
DOIs	https://doi.org/10.1016/j.procs.2011.07.022
State	Published - 2011
Externally published	Yes
Event	2nd International Conference on Ambient Systems, Networks and Technologies, ANT-2011 and 8th International Conference on Mobile Web Information Systems, MobiWIS 2011 - Niagara Falls, ON, Canada Duration: 19 Sep 2011 → 21 Sep 2011

Keywords

DDoS
Defense
Measurement
Network
Peer to Peer
Security

Access to Document

10.1016/j.procs.2011.07.022

Cite this

@article{86563db3d7f645a4b62b99c7f6e2081f,

title = "Collaborative peer to peer defense mechanism for DDoS attacks",

abstract = "Distributed Denial of Service (DDoS) attacks are the most common and easiest attacks to propagate over internet. It causes a high degree of destruction to the network and systems resources. The destructive nature of DDoS attacks force security engineers to design defense solutions which can detect and take counter actions to defend against such attacks. In this paper, we investigated the packet flood attacks and presented a collaborative peer to peer defense mechanism. The proposed solution detects the attack at victim edge router and sends the alert messages to its neighboring nodes which allow them to proactively defend themselves. Simulation results shows the efficiency of the solution with less false positives at victim edge router and less damage to the network due to proactive defense approach.",

keywords = "DDoS, Defense, Measurement, Network, Peer to Peer, Security",

author = "Usman Tariq and Yasir Malik and Bessam Abdulrazak and Hong, \{Man Pyo\}",

year = "2011",

doi = "10.1016/j.procs.2011.07.022",

language = "English",

volume = "5",

pages = "157--164",

journal = "Procedia Computer Science",

issn = "1877-0509",

publisher = "Elsevier B.V.",

note = "2nd International Conference on Ambient Systems, Networks and Technologies, ANT-2011 and 8th International Conference on Mobile Web Information Systems, MobiWIS 2011 ; Conference date: 19-09-2011 Through 21-09-2011",

}

TY - JOUR

T1 - Collaborative peer to peer defense mechanism for DDoS attacks

AU - Tariq, Usman

AU - Malik, Yasir

AU - Abdulrazak, Bessam

AU - Hong, Man Pyo

PY - 2011

Y1 - 2011

N2 - Distributed Denial of Service (DDoS) attacks are the most common and easiest attacks to propagate over internet. It causes a high degree of destruction to the network and systems resources. The destructive nature of DDoS attacks force security engineers to design defense solutions which can detect and take counter actions to defend against such attacks. In this paper, we investigated the packet flood attacks and presented a collaborative peer to peer defense mechanism. The proposed solution detects the attack at victim edge router and sends the alert messages to its neighboring nodes which allow them to proactively defend themselves. Simulation results shows the efficiency of the solution with less false positives at victim edge router and less damage to the network due to proactive defense approach.

AB - Distributed Denial of Service (DDoS) attacks are the most common and easiest attacks to propagate over internet. It causes a high degree of destruction to the network and systems resources. The destructive nature of DDoS attacks force security engineers to design defense solutions which can detect and take counter actions to defend against such attacks. In this paper, we investigated the packet flood attacks and presented a collaborative peer to peer defense mechanism. The proposed solution detects the attack at victim edge router and sends the alert messages to its neighboring nodes which allow them to proactively defend themselves. Simulation results shows the efficiency of the solution with less false positives at victim edge router and less damage to the network due to proactive defense approach.

KW - DDoS

KW - Defense

KW - Measurement

KW - Network

KW - Peer to Peer

KW - Security

UR - http://www.scopus.com/inward/record.url?scp=84856479963&partnerID=8YFLogxK

U2 - 10.1016/j.procs.2011.07.022

DO - 10.1016/j.procs.2011.07.022

M3 - Conference article

AN - SCOPUS:84856479963

SN - 1877-0509

VL - 5

SP - 157

EP - 164

JO - Procedia Computer Science

JF - Procedia Computer Science

T2 - 2nd International Conference on Ambient Systems, Networks and Technologies, ANT-2011 and 8th International Conference on Mobile Web Information Systems, MobiWIS 2011

Y2 - 19 September 2011 through 21 September 2011

ER -

Collaborative peer to peer defense mechanism for DDoS attacks

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this