• DocumentCode
    2004973
  • Title

    Towards an autonomous resilience strategy the implementation of a self evolving rate limiter

  • Author

    Ali, Ahmad ; Hutchison, David ; Angelov, Plamen ; Smith, Paul

  • Author_Institution
    Sch. of Comput. & Commun., Lancaster Univ., Lancaster, UK
  • fYear
    2013
  • fDate
    9-11 Sept. 2013
  • Firstpage
    299
  • Lastpage
    304
  • Abstract
    Distributed Denial of Service (DDoS) attacks on network infrastructure are one of the major challenges facing network service providers. Despite the recent rise of low-volume application-level attacks, volume-based DDoS attacks still dominate, with peak traffic rates of 80Gbps being observed recently. This prompts the need for more efficient ways to deal with them. Meanwhile, service providers are struggling to acquire the right technology, resources and expertise to offer more resilient and reliable services. One of the solutions to help address this issue is to adopt an autonomous resilience strategy that systematically coordinates resilience related activities such as detecting and mitigating attacks. In this paper, we study an implementation of an autonomous traffic rate limiter - a function that can be used to mitigate DDoS attacks - that capitalises on the AnYa algorithm, an autonomous learning systems (ALS) algorithm that provides advanced features that are crucial to support an autonomous resilience strategy. These features include self-structuring and support for online learning. In our study, we experimentally show how remediation and recovery processes can be realized autonomously, in response to changes in the operational policy.
  • Keywords
    computer network security; learning (artificial intelligence); ALS algorithm; AnYa algorithm; autonomous learning systems algorithm; autonomous resilience strategy; autonomous traffic rate limiter; distributed denial-of-service attacks; low-volume application-level attacks; network service providers; online learning; operational policy; recovery process; remediation process; self-evolving rate limiter; volume-based DDoS attacks; Algorithm design and analysis; Business; Computer crime; Internet; Limiting; Mathematical model; Resilience; Autonomous Learning Systems; Controller; Distributed Denial of Service Attack; Resilience Strategy;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Computational Intelligence (UKCI), 2013 13th UK Workshop on
  • Conference_Location
    Guildford
  • Print_ISBN
    978-1-4799-1566-8
  • Type

    conf

  • DOI
    10.1109/UKCI.2013.6651320
  • Filename
    6651320