Visible to the public Biblio

Filters: Author is Kimiyama, H.  [Clear All Filters]
2018-02-14
Kimiyama, H., Yonezaki, N., Tsutsumi, T., Sano, K., Yamaki, H., Ueno, Y., Sasaki, R., Kobayashi, H..  2017.  Autonomous and distributed internet security (AIS) infrastructure for safe internet. 2017 8th International Conference on the Network of the Future (NOF). :106–113.

Cyber attacks, (e.g., DDoS), on computers connected to the Internet occur everyday. A DDoS attack in 2016 that used “Mirai botnet” generated over 600 Gbit/s traffic, which was twice as that of last year. In view of this situation, we can no longer adequately protect our computers using current end-point security solutions and must therefore introduce a new method of protection that uses distributed nodes, e.g., routers. We propose an Autonomous and Distributed Internet Security (AIS) infrastructure that provides two key functions: first, filtering source address spoofing packets (proactive filter), and second, filtering malicious packets that are observed at the end point (reactive filter) at the closest malicious packets origins. We also propose three types of Multi-Layer Binding Routers (MLBRs) to realize these functions. We implemented the MLBRs and constructed experimental systems to simulate DDoS attacks. Results showed that all malicious packets could be filtered by using the AIS infrastructure.