A Reactive Defense Against Bandwidth Attacks Using Learning Automata
| Title | A Reactive Defense Against Bandwidth Attacks Using Learning Automata |
| Publication Type | Conference Paper |
| Year of Publication | 2018 |
| Authors | Kahani, Nafiseh, Fallah, Mehran S. |
| Conference Name | Proceedings of the 13th International Conference on Availability, Reliability and Security |
| Publisher | ACM |
| Conference Location | New York, NY, USA |
| ISBN Number | 978-1-4503-6448-5 |
| Keywords | Bandwidth Attacks, Distributed Denial of Service (DDoS), Distributed Packet Filtering, IP Traceback, learning automata, Metrics, pubcrawl, resilience, Resiliency, Router Systems Security |
| Abstract | This paper proposes a new adaptively distributed packet filtering mechanism to mitigate the DDoS attacks targeted at the victim's bandwidth. The mechanism employs IP traceback as a means of distinguishing attacks from legitimate traffic, and continuous action reinforcement learning automata, with an improved learning function, to compute effective filtering probabilities at filtering routers. The solution is evaluated through a number of experiments based on actual Internet data. The results show that the proposed solution achieves a high throughput of surviving legitimate traffic as a result of its high convergence speed, and can save the victim's bandwidth even in case of varying and intense attacks. |
| URL | https://dl.acm.org/citation.cfm?doid=3230833.3230844 |
| DOI | 10.1145/3230833.3230844 |
| Citation Key | kahani_reactive_2018 |