Abstract | ||
---|---|---|
Distributed Denial of Service (DDoS) attacks are one of the main concerns for online service providers because of their impact on cost/revenue and reputation. This paper presents Completely Automated DDoS Attack Mitigation Platform (CAAMP), a novel platform to mitigate DDoS attacks on public cloud applications using capabilities of software defined infrastructure and network function virtualization techniques. When suspicious traffic is identified, CAAMP deploys a copy of the application's topology on-the-fly (a shark tank) on an isolated environment in a private cloud. It then creates a virtual network that will host the shark tank. Software defined networking (SDN) controller programs the virtual switches dynamically to redirect the suspicious traffic to the shark tank until final decision is made. If traffic is proved to be non-malicious, SDN controller installs flow rules on the switches to redirect the traffic back to the original application. Thus, CAAMP autonomically protects applications against potential DDoS threats and lowers the false positives associated with common detection mechanisms by leveraging resources from a private cloud. |
Year | DOI | Venue |
---|---|---|
2016 | 10.1109/CNSM.2016.7818409 | 2016 12th International Conference on Network and Service Management (CNSM) |
Keywords | Field | DocType |
DDoS Attacks,Hybrid Cloud,Software Defined Networking,Network Virtualization | Virtual network,Denial-of-service attack,Computer science,Trinoo,Computer security,Computer network,Service provider,Software-defined networking,Software-defined data center,Application layer DDoS attack,Cloud computing | Conference |
ISSN | ISBN | Citations |
2165-9605 | 978-1-5090-3236-5 | 0 |
PageRank | References | Authors |
0.34 | 11 | 5 |
Name | Order | Citations | PageRank |
---|---|---|---|
Nasim Beigi Mohammadi | 1 | 7 | 2.55 |
Cornel Barna | 2 | 195 | 14.28 |
Mark Shtern | 3 | 180 | 18.51 |
Hamzeh Khazaei | 4 | 223 | 17.82 |
Marin Litoiu | 5 | 2147 | 128.80 |