An enhanced SOS architecture for DDoS attack defense using active network technology

Chi Hyung In, Choong Seon Hong, Jiang Wei, Koji Okamura

Research output: Chapter in Book/Report/Conference proceedingConference contribution

3 Citations (Scopus)

Abstract

After a long time study in DDoS attack, we find the Secure Overlay Services (SOS) architecture is one of the best ways to protect our service. There is no other reason but the ability to provide reliable communication between authorized clients and a protected target under on-going DDoS attacks. The SOS architecture defines a set of overlay nodes arranged in four function groups that controls access to the protected target. Although, the architecture is novel and works well under simple congestion based attacks, we observe that when the attacker uses same malicious traffic raid the SOS nodes with some kind of sleight, the SOS system can not response this kind of trick, and somehow it has already threaten the reliability of the Secure overlay Service. We propose a scheme to enhance the secure overlay services (SOS) against the intelligent DDoS attack both from the mechanisms and detection algorithm.

Original languageEnglish
Title of host publicationProceedings - Advanced Industrial Conference on Telecommunications/Service Assurance with Partial and Intermittent Resources Conference/E-Learning on Telecommunications Workshop AICT/SAPIR/ELETE 2005
Pages90-97
Number of pages8
Volume2005
DOIs
Publication statusPublished - 2005
EventAdvanced Industrial Conference on Telecommunications/Service Assurance with Partial and Intermittent Resources Conference/E-Learning on Telecommunications Workshop AICT/SAPIR/ELETE 2005 - Lisbon, Portugal
Duration: Jul 17 2005Jul 20 2005

Other

OtherAdvanced Industrial Conference on Telecommunications/Service Assurance with Partial and Intermittent Resources Conference/E-Learning on Telecommunications Workshop AICT/SAPIR/ELETE 2005
CountryPortugal
CityLisbon
Period7/17/057/20/05

Fingerprint

Active networks
Time and motion study
Access control
Communication

All Science Journal Classification (ASJC) codes

  • Engineering(all)

Cite this

In, C. H., Hong, C. S., Wei, J., & Okamura, K. (2005). An enhanced SOS architecture for DDoS attack defense using active network technology. In Proceedings - Advanced Industrial Conference on Telecommunications/Service Assurance with Partial and Intermittent Resources Conference/E-Learning on Telecommunications Workshop AICT/SAPIR/ELETE 2005 (Vol. 2005, pp. 90-97). [1517611] https://doi.org/10.1109/AICT.2005.22

An enhanced SOS architecture for DDoS attack defense using active network technology. / In, Chi Hyung; Hong, Choong Seon; Wei, Jiang; Okamura, Koji.

Proceedings - Advanced Industrial Conference on Telecommunications/Service Assurance with Partial and Intermittent Resources Conference/E-Learning on Telecommunications Workshop AICT/SAPIR/ELETE 2005. Vol. 2005 2005. p. 90-97 1517611.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

In, CH, Hong, CS, Wei, J & Okamura, K 2005, An enhanced SOS architecture for DDoS attack defense using active network technology. in Proceedings - Advanced Industrial Conference on Telecommunications/Service Assurance with Partial and Intermittent Resources Conference/E-Learning on Telecommunications Workshop AICT/SAPIR/ELETE 2005. vol. 2005, 1517611, pp. 90-97, Advanced Industrial Conference on Telecommunications/Service Assurance with Partial and Intermittent Resources Conference/E-Learning on Telecommunications Workshop AICT/SAPIR/ELETE 2005, Lisbon, Portugal, 7/17/05. https://doi.org/10.1109/AICT.2005.22
In CH, Hong CS, Wei J, Okamura K. An enhanced SOS architecture for DDoS attack defense using active network technology. In Proceedings - Advanced Industrial Conference on Telecommunications/Service Assurance with Partial and Intermittent Resources Conference/E-Learning on Telecommunications Workshop AICT/SAPIR/ELETE 2005. Vol. 2005. 2005. p. 90-97. 1517611 https://doi.org/10.1109/AICT.2005.22
In, Chi Hyung ; Hong, Choong Seon ; Wei, Jiang ; Okamura, Koji. / An enhanced SOS architecture for DDoS attack defense using active network technology. Proceedings - Advanced Industrial Conference on Telecommunications/Service Assurance with Partial and Intermittent Resources Conference/E-Learning on Telecommunications Workshop AICT/SAPIR/ELETE 2005. Vol. 2005 2005. pp. 90-97
@inproceedings{f3207786e96f4ff6a1831b5188b67644,
title = "An enhanced SOS architecture for DDoS attack defense using active network technology",
abstract = "After a long time study in DDoS attack, we find the Secure Overlay Services (SOS) architecture is one of the best ways to protect our service. There is no other reason but the ability to provide reliable communication between authorized clients and a protected target under on-going DDoS attacks. The SOS architecture defines a set of overlay nodes arranged in four function groups that controls access to the protected target. Although, the architecture is novel and works well under simple congestion based attacks, we observe that when the attacker uses same malicious traffic raid the SOS nodes with some kind of sleight, the SOS system can not response this kind of trick, and somehow it has already threaten the reliability of the Secure overlay Service. We propose a scheme to enhance the secure overlay services (SOS) against the intelligent DDoS attack both from the mechanisms and detection algorithm.",
author = "In, {Chi Hyung} and Hong, {Choong Seon} and Jiang Wei and Koji Okamura",
year = "2005",
doi = "10.1109/AICT.2005.22",
language = "English",
isbn = "0769523889",
volume = "2005",
pages = "90--97",
booktitle = "Proceedings - Advanced Industrial Conference on Telecommunications/Service Assurance with Partial and Intermittent Resources Conference/E-Learning on Telecommunications Workshop AICT/SAPIR/ELETE 2005",

}

TY - GEN

T1 - An enhanced SOS architecture for DDoS attack defense using active network technology

AU - In, Chi Hyung

AU - Hong, Choong Seon

AU - Wei, Jiang

AU - Okamura, Koji

PY - 2005

Y1 - 2005

N2 - After a long time study in DDoS attack, we find the Secure Overlay Services (SOS) architecture is one of the best ways to protect our service. There is no other reason but the ability to provide reliable communication between authorized clients and a protected target under on-going DDoS attacks. The SOS architecture defines a set of overlay nodes arranged in four function groups that controls access to the protected target. Although, the architecture is novel and works well under simple congestion based attacks, we observe that when the attacker uses same malicious traffic raid the SOS nodes with some kind of sleight, the SOS system can not response this kind of trick, and somehow it has already threaten the reliability of the Secure overlay Service. We propose a scheme to enhance the secure overlay services (SOS) against the intelligent DDoS attack both from the mechanisms and detection algorithm.

AB - After a long time study in DDoS attack, we find the Secure Overlay Services (SOS) architecture is one of the best ways to protect our service. There is no other reason but the ability to provide reliable communication between authorized clients and a protected target under on-going DDoS attacks. The SOS architecture defines a set of overlay nodes arranged in four function groups that controls access to the protected target. Although, the architecture is novel and works well under simple congestion based attacks, we observe that when the attacker uses same malicious traffic raid the SOS nodes with some kind of sleight, the SOS system can not response this kind of trick, and somehow it has already threaten the reliability of the Secure overlay Service. We propose a scheme to enhance the secure overlay services (SOS) against the intelligent DDoS attack both from the mechanisms and detection algorithm.

UR - http://www.scopus.com/inward/record.url?scp=33751013008&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=33751013008&partnerID=8YFLogxK

U2 - 10.1109/AICT.2005.22

DO - 10.1109/AICT.2005.22

M3 - Conference contribution

AN - SCOPUS:33751013008

SN - 0769523889

SN - 9780769523880

VL - 2005

SP - 90

EP - 97

BT - Proceedings - Advanced Industrial Conference on Telecommunications/Service Assurance with Partial and Intermittent Resources Conference/E-Learning on Telecommunications Workshop AICT/SAPIR/ELETE 2005

ER -