Abstract

Distributed Denial of Service (DDoS) attack prevention research is mostly focused upon attack detection. Early attack detection facilitates the network administrator to quickly manage these attacks with least impact on the legitimate users. The approach generally used to manage/mitigate the DDoS attacks is to start dropping the attack/suspicious flows at the location of detection, which affects the communication of legitimate users of the network as well. This paper is focused on comparing the DDoS attack mitigation approaches, as well as, the location of mitigation in the network that will impose the least impact on the legitimate users in the network, resulting in least network performance degradation. A mathematical analysis of packet filtering, rate limiting and controller/server migration techniques for mitigation of DDoS attacks is done, followed by Mininet implementation with realistic traffic. It provides a detailed insight of the pros and cons of respective techniques w.r.t. various network requirements. Further, the identification of appropriate location to deploy desired mitigation technique is done.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
DDoS ATTACK MITIGATION WITH INTRUSION DETECTION SYSTEM (IDS) USING TELEGRAM BOTS
Mohammad Taufan Asri Zaen ... Ahmad Tantoni
JISA(Jurnal Informatika dan Sains) | VOL. 4
Mohammad Taufan Asri Zaen, et. al.Mohammad Taufan Asri Zaen ... Ahmad Tantoni
26 Dec 2021
Leveraging datasets for effective mitigation of DDoS attacks in software-defined networking: significance and challenges
Hema Dhadhal ... Paresh Kotak
Radioelectronic and Computer Systems | VOL. 2024
Hema Dhadhal, et. al.Hema Dhadhal ... Paresh Kotak
23 Apr 2024
DARAC: DDoS Mitigation Using DDoS Aware Resource Allocation in Cloud
Gaurav Somani ... Utkarsh Pyne
-
Gaurav Somani, et. al.Gaurav Somani ... Utkarsh Pyne
01 Jan 2015
Collaborative Blockchain Based Distributed Denial of Service Attack Mitigation Approach with IP Reputation System
Darshi Patel ... Dhiren Patel
-
Darshi Patel, et. al.Darshi Patel ... Dhiren Patel
01 Jan 2021
View more papers

More From: Computers & Security

Paper Title
Journal
Date
Author
Navigating Challenging Terrain Surrounding DoD Response to Homeland Attacks on Critical Infrastructure: Case Studies of Prior Incidents Utilizing an Extended Taxonomy of Cyber Harms
Louis Nolan ... Deanna House
Computers & Security | VOL. -
Louis Nolan, et. al.Louis Nolan ... Deanna House
01 Nov 2024
Covert timing channel detection based on isolated binary trees
Yuwei Lin ... Xiaolong Zhuang
Computers & Security | VOL. -
Yuwei Lin, et. al.Yuwei Lin ... Xiaolong Zhuang
01 Nov 2024
RanSMAP: Open dataset of Ransomware Storage and Memory Access Patterns for creating deep learning based ransomware detectors
Manabu Hirano ... Ryotaro Kobayashi
Computers & Security | VOL. -
Manabu Hirano, et. al.Manabu Hirano ... Ryotaro Kobayashi
01 Nov 2024
Trust my IDS: An explainable AI integrated deep learning-based transparent threat detection system for industrial networks
Shifa Shoukat ... Muhammad Adil
Computers & Security | VOL. -
Shifa Shoukat, et. al.Shifa Shoukat ... Muhammad Adil
01 Nov 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.