Title :
Random flow network modeling and simulations for DDoS attack mitigation
Author :
Kong, Jiejun ; Mirza, Mansoor ; Shu, James ; Yoedhana, Christian ; Gerla, Mario ; Lu, Songwu
Author_Institution :
Dept. of Comput. Sci., California Univ., Los Angeles, CA, USA
Abstract :
Recent events show that distributed denial-of-service (DDoS) attack imposes great threat to availability of Internet services. In this paper, we study and evaluate DDoS attacks in a random flow network model, a novel and general approach to DDoS attack prevention and tolerance. The model can be used to evaluate the effectiveness of a DDoS countermeasure framework. Following the random flow network model and state-of-art Internet topology and traffic models, our simulation reveals that general relationship among several metrics derived from the model. Based on the simulation results, we suggest to build a more complete and effective DDoS countermeasure framework using complementary solutions to achieve DDoS attack detection, prevention, and tolerance at same time.
Keywords :
Internet; telecommunication network routing; telecommunication security; telecommunication services; telecommunication traffic; Internet services; Internet topology; attack prevention; countermeasure framework; distributed denial-of-service attack mitigation; network topology; random flow network modeling; traffic modeling; Computational modeling; Computer crime; Computer science; Computer simulation; Discrete event simulation; IP networks; Network topology; Telecommunication traffic; Traffic control; Web and internet services;
Conference_Titel :
Communications, 2003. ICC '03. IEEE International Conference on
Print_ISBN :
0-7803-7802-4
DOI :
10.1109/ICC.2003.1204224
