Testing a distributed denial of service defence mechanism using red teaming

Author

Rastegari, Samaneh ; Hingston, Philip ; Chiou-Peng Lam ; Brand, Murray

Author_Institution

Sch. of Comput. & Security Sci., Edith Cowan Univ., Joondalup, WA, Australia

fYear

2013

fDate

16-19 April 2013

Firstpage

23

Lastpage

29

Abstract

The increased number of security threats against the Internet has made communications more vulnerable to attacks. Despite much research and improvement in network security, the number of denial of service (DoS) attacks has rapidly grown in frequency, severity, and sophistication in recent years. Thus, serious attention needs to be paid to network security. However, to create a secure network that can stay ahead of all threats, detection and response features are real challenges. In this paper, we look at the the interaction between the attacker and the defender in a Red Team/Blue Team exercise. We also propose a quantitative decision framework which is able to provide optimal solutions to defend against well-organized and sophisticated attacks. A large number of possible scenarios for testing of DoS defences will be examined through this framework in order to help experts to improve decisions regarding optimal solutions to defend against DoS threats.

Keywords

Internet; computer network security; DoS attacks; DoS defence testing; Internet; detection features; distributed denial of service defence mechanism testing; network security; quantitative decision framework; red team-blue team exercise; response features; security threats; Computer crime; Detectors; IP networks; Internet; Limiting; Testing;

fLanguage

English

Publisher

ieee

Conference_Titel

Computational Intelligence for Security and Defense Applications (CISDA), 2013 IEEE Symposium on

Conference_Location

Singapore

Type

conf

DOI

10.1109/CISDA.2013.6595423

Filename

6595423