Title :
Achieving DDoS resiliency in a software defined network by intelligent risk assessment based on neural networks and danger theory
Author :
Mihai-Gabriel, Ionita ; Victor-Valeriu, Patriciu
Author_Institution :
Mil. Tech. Acad., Bucharest, Romania
Abstract :
Distributed Denial of Service (DDoS) attacks are becoming a very versatile weapon. Unfortunately, they are becoming very popular amongst cyber criminals, and they are also getting cheaper. As the interest grows for such weapons on the black market, their scale reaches unimaginable proportions. As is the case of the Spamhaus attack, which was mitigated by CloudFlare through null-routing techniques. This paper presents a way of mitigating DDoS attacks in a Software Defined Network (SDN) environment, by assessing risk through the means of a cyber-defense system based on neural networks and the biological danger theory. In addition to mitigating attacks the demo platform can also perform full packet capture in the SDN, if the central command component deems it necessary. These packet captures can be used later for forensic analysis and identification of the attacker.
Keywords :
computer network security; digital forensics; neural nets; risk management; software defined networking; CloudFlare; DDoS attack mitigation; DDoS resiliency; SDN environment; Spamhaus attack; attacker identification; biological danger theory; cyber criminals; cyber-defense system; distributed denial of service attacks; forensic analysis; full packet capture; intelligent risk assessment; neural networks; null-routing technique; software defined network; Computer crime; Control systems; Delays; Monitoring; Neural networks; Servers;
Conference_Titel :
Computational Intelligence and Informatics (CINTI), 2014 IEEE 15th International Symposium on
Conference_Location :
Budapest
DOI :
10.1109/CINTI.2014.7028696
