Multi-defense mechanism against DDoS in SDN based CDNi

Nishat-I-Mowla; Inshil Doh; Kijoon Chae

doi:10.1109/IMIS.2014.64

Multi-defense mechanism against DDoS in SDN based CDNi

Nishat-I-Mowla, Inshil Doh, Kijoon Chae

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

16 Scopus citations

Abstract

Lately enhancing the capability of network services automatically and dynamically through SDN and CDN/CDNi networks has become a recent topic of research. While, in one hand, these systems can be very beneficial to control and optimize the overall network services that studies the topology, traffic paths, packet handling and such others, on the other hand, the servers in such architectures can also be a potential target for DoS and/or DDoS attacks. We, therefore, propose a mechanism for the SDN based CDNi networks to securely deliver services with a multi-defense strategy against DDoS attacks. Addition of ALTO like servers in such architectures enables mapping a very big network to provide a bird's eye view. We propose an additional marking path map in the ALTO server to trace the request packets. The next defense is a protection switch to protect the main servers. A Management Information Base (MIB) is also proposed in the SDN controller to compare and assess the request traffic coming to the protection switches.

Original language	English
Title of host publication	Proceedings - 2014 8th International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing, IMIS 2014
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	447-451
Number of pages	5
ISBN (Electronic)	9781479943319
DOIs	https://doi.org/10.1109/IMIS.2014.64
State	Published - 2014
Event	8th International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing, IMIS 2014 - Birmingham, United Kingdom Duration: 2 Jul 2014 → 4 Jul 2014

Publication series

Name	Proceedings - 2014 8th International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing, IMIS 2014

Conference

Conference	8th International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing, IMIS 2014
Country/Territory	United Kingdom
City	Birmingham
Period	2/07/14 → 4/07/14

Bibliographical note

Publisher Copyright:
© 2014 IEEE.

Keywords

ALTO
CDN
CDNi
MIB
SDN

Access to Document

10.1109/IMIS.2014.64

Cite this

Nishat-I-Mowla, Doh, I., & Chae, K. (2014). Multi-defense mechanism against DDoS in SDN based CDNi. In Proceedings - 2014 8th International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing, IMIS 2014 (pp. 447-451). Article 6975504 (Proceedings - 2014 8th International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing, IMIS 2014). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/IMIS.2014.64

Nishat-I-Mowla, ; Doh, Inshil ; Chae, Kijoon. / Multi-defense mechanism against DDoS in SDN based CDNi. Proceedings - 2014 8th International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing, IMIS 2014. Institute of Electrical and Electronics Engineers Inc., 2014. pp. 447-451 (Proceedings - 2014 8th International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing, IMIS 2014).

@inproceedings{e8293a8ad95542c0ab58f05247ea2894,

title = "Multi-defense mechanism against DDoS in SDN based CDNi",

abstract = "Lately enhancing the capability of network services automatically and dynamically through SDN and CDN/CDNi networks has become a recent topic of research. While, in one hand, these systems can be very beneficial to control and optimize the overall network services that studies the topology, traffic paths, packet handling and such others, on the other hand, the servers in such architectures can also be a potential target for DoS and/or DDoS attacks. We, therefore, propose a mechanism for the SDN based CDNi networks to securely deliver services with a multi-defense strategy against DDoS attacks. Addition of ALTO like servers in such architectures enables mapping a very big network to provide a bird's eye view. We propose an additional marking path map in the ALTO server to trace the request packets. The next defense is a protection switch to protect the main servers. A Management Information Base (MIB) is also proposed in the SDN controller to compare and assess the request traffic coming to the protection switches.",

keywords = "ALTO, CDN, CDNi, MIB, SDN",

author = "Nishat-I-Mowla and Inshil Doh and Kijoon Chae",

note = "Publisher Copyright: {\textcopyright} 2014 IEEE.; 8th International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing, IMIS 2014 ; Conference date: 02-07-2014 Through 04-07-2014",

year = "2014",

doi = "10.1109/IMIS.2014.64",

language = "English",

series = "Proceedings - 2014 8th International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing, IMIS 2014",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "447--451",

booktitle = "Proceedings - 2014 8th International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing, IMIS 2014",

}

Nishat-I-Mowla, , Doh, I & Chae, K 2014, Multi-defense mechanism against DDoS in SDN based CDNi. in Proceedings - 2014 8th International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing, IMIS 2014., 6975504, Proceedings - 2014 8th International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing, IMIS 2014, Institute of Electrical and Electronics Engineers Inc., pp. 447-451, 8th International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing, IMIS 2014, Birmingham, United Kingdom, 2/07/14. https://doi.org/10.1109/IMIS.2014.64

Multi-defense mechanism against DDoS in SDN based CDNi. / Nishat-I-Mowla, ; Doh, Inshil; Chae, Kijoon.
Proceedings - 2014 8th International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing, IMIS 2014. Institute of Electrical and Electronics Engineers Inc., 2014. p. 447-451 6975504 (Proceedings - 2014 8th International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing, IMIS 2014).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Multi-defense mechanism against DDoS in SDN based CDNi

AU - Nishat-I-Mowla,

AU - Doh, Inshil

AU - Chae, Kijoon

PY - 2014

Y1 - 2014

N2 - Lately enhancing the capability of network services automatically and dynamically through SDN and CDN/CDNi networks has become a recent topic of research. While, in one hand, these systems can be very beneficial to control and optimize the overall network services that studies the topology, traffic paths, packet handling and such others, on the other hand, the servers in such architectures can also be a potential target for DoS and/or DDoS attacks. We, therefore, propose a mechanism for the SDN based CDNi networks to securely deliver services with a multi-defense strategy against DDoS attacks. Addition of ALTO like servers in such architectures enables mapping a very big network to provide a bird's eye view. We propose an additional marking path map in the ALTO server to trace the request packets. The next defense is a protection switch to protect the main servers. A Management Information Base (MIB) is also proposed in the SDN controller to compare and assess the request traffic coming to the protection switches.

AB - Lately enhancing the capability of network services automatically and dynamically through SDN and CDN/CDNi networks has become a recent topic of research. While, in one hand, these systems can be very beneficial to control and optimize the overall network services that studies the topology, traffic paths, packet handling and such others, on the other hand, the servers in such architectures can also be a potential target for DoS and/or DDoS attacks. We, therefore, propose a mechanism for the SDN based CDNi networks to securely deliver services with a multi-defense strategy against DDoS attacks. Addition of ALTO like servers in such architectures enables mapping a very big network to provide a bird's eye view. We propose an additional marking path map in the ALTO server to trace the request packets. The next defense is a protection switch to protect the main servers. A Management Information Base (MIB) is also proposed in the SDN controller to compare and assess the request traffic coming to the protection switches.

KW - ALTO

KW - CDN

KW - CDNi

KW - MIB

KW - SDN

UR - http://www.scopus.com/inward/record.url?scp=84938684294&partnerID=8YFLogxK

U2 - 10.1109/IMIS.2014.64

DO - 10.1109/IMIS.2014.64

M3 - Conference contribution

AN - SCOPUS:84938684294

T3 - Proceedings - 2014 8th International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing, IMIS 2014

SP - 447

EP - 451

BT - Proceedings - 2014 8th International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing, IMIS 2014

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 8th International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing, IMIS 2014

Y2 - 2 July 2014 through 4 July 2014

ER -

Nishat-I-Mowla , Doh I, Chae K. Multi-defense mechanism against DDoS in SDN based CDNi. In Proceedings - 2014 8th International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing, IMIS 2014. Institute of Electrical and Electronics Engineers Inc. 2014. p. 447-451. 6975504. (Proceedings - 2014 8th International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing, IMIS 2014). doi: 10.1109/IMIS.2014.64

Multi-defense mechanism against DDoS in SDN based CDNi

Abstract

Publication series

Conference

Bibliographical note

Keywords

Access to Document

Fingerprint

Cite this