DDoS attack isolation using moving target defense
Title | DDoS attack isolation using moving target defense |
Publication Type | Conference Paper |
Year of Publication | 2017 |
Authors | Kansal, V., Dave, M. |
Conference Name | 2017 International Conference on Computing, Communication and Automation (ICCCA) |
Keywords | Attack proxy, Automation, Bandwidth, Computational modeling, Computer architecture, Computer crime, Insider assisted DDoS attack, Metrics, moving target defense, MTD, pubcrawl, Resiliency, Servers, Shuffling |
Abstract | Among the several threats to cyber services Distributed denial-of-service (DDoS) attack is most prevailing nowadays. DDoS involves making an online service unavailable by flooding the bandwidth or resources of a targeted system. It is easier for an insider having legitimate access to the system to circumvent any security controls thus resulting in insider attack. To mitigate insider assisted DDoS attacks, this paper proposes a moving target defense mechanism that involves isolation of insiders from innocent clients by using attack proxies. Further using the concept of load balancing an effective algorithm to detect and handle insider attack is developed with the aim of maximizing attack isolation while minimizing the total number of proxies used. |
DOI | 10.1109/CCAA.2017.8229853 |
Citation Key | kansal_ddos_2017 |