A Defense Mechanism for Distributed Denial of Service Attack in Software-Defined Networks

Distributed Denial of Service (DDoS) attack is a major threat to Internet based killer applications, such as independent news web sites, e-business and online games. Detecting and blocking such clever attacks has become difficult. Software-Defined Networks (SDN) has emerged as a future communication...

Full description

Saved in:
Bibliographic Details
Published inInternational Conference on Frontier of Computer Science and Technology (Print) pp. 325 - 329
Main Authors Shibo Luo, Jun Wu, Jianhua Li, Bei Pei
Format Conference Proceeding
LanguageEnglish
Published IEEE 01.08.2015
Subjects
Central Control
Computer crime
Control systems
Distributed Denial of Service
Floods
IP networks
Ports (Computers)
Programmability
Protocols
Software-Defined Networks
Online AccessGet full text
ISSN2159-6301
DOI10.1109/FCST.2015.11

Cover

More Information
Summary:Distributed Denial of Service (DDoS) attack is a major threat to Internet based killer applications, such as independent news web sites, e-business and online games. Detecting and blocking such clever attacks has become difficult. Software-Defined Networks (SDN) has emerged as a future communication network architecture which decouples network control and forwarding. It has some particular features such as central control and programmability to combat against DDoS attack. In this paper, we survey DDoS attacks and existing defense mechanisms, and draw a conclusion of the needs of defense mechanism for successful combating against DDoS. Then, we analyze the particular features of SDN and conclude it is conducive to countermeasure DDoS attack. According the analysis, we construct a defense mechanism for DDoS in SDN. At last, we illustrate how this mechanism could combat against DDoS attacks through a working example.
ISSN:2159-6301
DOI:10.1109/FCST.2015.11