Visible to the public DDoS attack isolation using moving target defense

TitleDDoS attack isolation using moving target defense
Publication TypeConference Paper
Year of Publication2017
AuthorsKansal, V., Dave, M.
Conference Name2017 International Conference on Computing, Communication and Automation (ICCCA)
KeywordsAttack proxy, Automation, Bandwidth, Computational modeling, Computer architecture, Computer crime, Insider assisted DDoS attack, Metrics, moving target defense, MTD, pubcrawl, Resiliency, Servers, Shuffling
Abstract

Among the several threats to cyber services Distributed denial-of-service (DDoS) attack is most prevailing nowadays. DDoS involves making an online service unavailable by flooding the bandwidth or resources of a targeted system. It is easier for an insider having legitimate access to the system to circumvent any security controls thus resulting in insider attack. To mitigate insider assisted DDoS attacks, this paper proposes a moving target defense mechanism that involves isolation of insiders from innocent clients by using attack proxies. Further using the concept of load balancing an effective algorithm to detect and handle insider attack is developed with the aim of maximizing attack isolation while minimizing the total number of proxies used.

DOI10.1109/CCAA.2017.8229853
Citation Keykansal_ddos_2017