Abstract

A Distributed Denial of Service attack is one of the top security threat in the Internet. Many security dedicated devices have been developed to mitigate those DDoS attacks. Those devices always need to be improved to handle various and up-to-date schemes of DDoS attacks and exhaust of those traffics. In the mobile cloud environment, each mobile node may become a source of these attacks when it is infected with virus or worms, then the attacks are arisen in the mobile network or the edge between mobile and cloud networks. These attacks are hard to defend at a single heavy protection point, such as a firewall, like current Internet environment. A thin and wide spread protection architecture is expected. In this paper, we propose a mitigation mechanism built into the network infrastructure using OpenFlow. OpenFlow achieves centralized and flexible network management by decoupling the data plane and control plane. The behavior of packets is decided by the controller software which distinguishes them using header information from Layer 1 to Layer 4. The proposed mechanism uses TCP SYN Authentication method to mitigate TCP SYN Flood Attacks. We describe the design and implementation of the mechanism, then show the result of preliminary evaluation.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.