STONE: a stream-based DDoS defense framework
| Data(s) |
2013
|
|---|---|
| Resumo |
An effective Distributed Denial of Service (DDoS) defense mechanism must guarantee legitimate users access to an Internet service masking the effects of possible attacks. That is, it must be able to detect threats and discard malicious packets in a online fashion. Given that emerging data streaming technology can enable such mitigation in an effective manner, in this paper we present STONE, a stream-based DDoS defense framework, which integrates anomaly-based DDoS detection and mitigation with scalable data streaming technology. With STONE, the traffic of potential targets is analyzed via continuous data streaming queries maintaining information used for both attack detection and mitigation. STONE provides minimal degradation of legitimate users traffic during DDoS attacks and it also faces effectively flash crowds. Our preliminary evaluation based on an implemented prototype and conducted with real legitimate and malicious traffic traces shows that STONE is able to provide fast detection and precise mitigation of DDoS attacks leveraging scalable data streaming technology. |
| Formato |
application/pdf |
| Identificador | |
| Idioma(s) |
eng |
| Publicador |
Facultad de Informática (UPM) |
| Relação |
http://oa.upm.es/29940/1/29940jimenezINVE_MEM_2013_166324.pdf http://dl.acm.org/citation.cfm?id=2480362.2480517 info:eu-repo/semantics/altIdentifier/doi/10.1145/2480362.2480517 |
| Direitos |
http://creativecommons.org/licenses/by-nc-nd/3.0/es/ info:eu-repo/semantics/openAccess |
| Fonte |
SAC'13: proceedings of the 28th Annual ACM Symposium on Applied Computing | 28th Annual ACM Symposium on Applied Computing (SAC'13) | 18-22 Mar 2013 | Coimbra, Portugal |
| Palavras-Chave | #Informática |
| Tipo |
info:eu-repo/semantics/conferenceObject Ponencia en Congreso o Jornada PeerReviewed |
