skip to main content
Idioma:
Primo Search
Clear Search Box
Search in: Busca Geral
Busca Avançada
Busca por Índices
Tipo de recurso Mostra resultados com: Mostra resultados com: Índice

DDoS attack protection in the era of cloud computing and Software-Defined Networking

Wang, Bing ; Zheng, Yao ; Lou, Wenjing ; Hou, Y. Thomas

Computer networks (Amsterdam, Netherlands : 1999), 2015-04, Vol.81, p.308-319 [Periódico revisado por pares]

Amsterdam: Elsevier B.V

Texto completo disponível

Citações Citado por
  • Título:
    DDoS attack protection in the era of cloud computing and Software-Defined Networking
  • Autor: Wang, Bing ; Zheng, Yao ; Lou, Wenjing ; Hou, Y. Thomas
  • Assuntos: Architecture ; Cloud computing ; Computer architecture ; Computer information security ; DDoS mitigation ; Denial of service attacks ; Graphical model ; Information technology ; Marketing ; Network security ; Networks ; Software ; Software-Defined Networking ; Studies ; Trends
  • É parte de: Computer networks (Amsterdam, Netherlands : 1999), 2015-04, Vol.81, p.308-319
  • Notas: ObjectType-Article-1
    SourceType-Scholarly Journals-1
    ObjectType-Feature-2
  • Descrição: Cloud computing has become the real trend of enterprise IT service model that offers cost-effective and scalable processing. Meanwhile, Software-Defined Networking (SDN) is gaining popularity in enterprise networks for flexibility in network management service and reduced operational cost. There seems a trend for the two technologies to go hand-in-hand in providing an enterprise’s IT services. However, the new challenges brought by the marriage of cloud computing and SDN, particularly the implications on enterprise network security, have not been well understood. This paper sets to address this important problem. We start by examining the security impact, in particular, the impact on DDoS attack defense mechanisms, in an enterprise network where both technologies are adopted. We find that SDN technology can actually help enterprises to defend against DDoS attacks if the defense architecture is designed properly. To that end, we propose a DDoS attack mitigation architecture that integrates a highly programmable network monitoring to enable attack detection and a flexible control structure to allow fast and specific attack reaction. To cope with the new architecture, we propose a graphic model based attack detection system that can deal with the dataset shift problem. The simulation results show that our architecture can effectively and efficiently address the security challenges brought by the new network paradigm and our attack detection system can effectively report various attacks using real-world network traffic.
  • Editor: Amsterdam: Elsevier B.V
  • Idioma: Inglês
Voltar para lista de resultados

  • Realização: ABCD-USP USP   Logos de Redes Sociais: Freepik

Buscando em bases de dados remotas. Favor aguardar.