Paper Info
Title
CAAMP: Completely automated DDoS attack mitigation platform in hybrid clouds
Abstract
Distributed Denial of Service (DDoS) attacks are one of the main concerns for online service providers because of their impact on cost/revenue and reputation. This paper presents Completely Automated DDoS Attack Mitigation Platform (CAAMP), a novel platform to mitigate DDoS attacks on public cloud applications using capabilities of software defined infrastructure and network function virtualization techniques. When suspicious traffic is identified, CAAMP deploys a copy of the application's topology on-the-fly (a shark tank) on an isolated environment in a private cloud. It then creates a virtual network that will host the shark tank. Software defined networking (SDN) controller programs the virtual switches dynamically to redirect the suspicious traffic to the shark tank until final decision is made. If traffic is proved to be non-malicious, SDN controller installs flow rules on the switches to redirect the traffic back to the original application. Thus, CAAMP autonomically protects applications against potential DDoS threats and lowers the false positives associated with common detection mechanisms by leveraging resources from a private cloud.
Year
DOI
Venue
2016
10.1109/CNSM.2016.7818409
2016 12th International Conference on Network and Service Management (CNSM)
Keywords
Field
DocType
DDoS Attacks,Hybrid Cloud,Software Defined Networking,Network Virtualization
Virtual network,Denial-of-service attack,Computer science,Trinoo,Computer security,Computer network,Service provider,Software-defined networking,Software-defined data center,Application layer DDoS attack,Cloud computing
Conference
ISSN
ISBN
Citations 
2165-9605
978-1-5090-3236-5
0
PageRank 
References 
Authors
0.34
11
5
Name
Order
Citations
PageRank
Nasim Beigi Mohammadi172.55
Cornel Barna219514.28
Mark Shtern318018.51
Hamzeh Khazaei422317.82
Marin Litoiu52147128.80