An enhanced SOS architecture for DDoS attack defense using active network technology

Chi Hyung In, Choong Seon Hong, Jiang Wei, Koji Okamura

    Research output: Chapter in Book/Report/Conference proceedingConference contribution

    3 Citations (Scopus)

    Abstract

    After a long time study in DDoS attack, we find the Secure Overlay Services (SOS) architecture is one of the best ways to protect our service. There is no other reason but the ability to provide reliable communication between authorized clients and a protected target under on-going DDoS attacks. The SOS architecture defines a set of overlay nodes arranged in four function groups that controls access to the protected target. Although, the architecture is novel and works well under simple congestion based attacks, we observe that when the attacker uses same malicious traffic raid the SOS nodes with some kind of sleight, the SOS system can not response this kind of trick, and somehow it has already threaten the reliability of the Secure overlay Service. We propose a scheme to enhance the secure overlay services (SOS) against the intelligent DDoS attack both from the mechanisms and detection algorithm.

    Original languageEnglish
    Title of host publicationProceedings - Advanced Industrial Conference on Telecommunications/Service Assurance with Partial and Intermittent Resources Conference/E-Learning on Telecommunications Workshop AICT/SAPIR/ELETE 2005
    Pages90-97
    Number of pages8
    DOIs
    Publication statusPublished - Dec 1 2005
    EventAdvanced Industrial Conference on Telecommunications/Service Assurance with Partial and Intermittent Resources Conference/E-Learning on Telecommunications Workshop AICT/SAPIR/ELETE 2005 - Lisbon, Portugal
    Duration: Jul 17 2005Jul 20 2005

    Publication series

    NameProceedings - Advanced Industrial Conference on Telecommunications/Service Assurance with Partial and Intermittent Resources Conference/E-Learning on Telecommunications Workshop AICT/SAPIR/ELETE 2005
    Volume2005

    Other

    OtherAdvanced Industrial Conference on Telecommunications/Service Assurance with Partial and Intermittent Resources Conference/E-Learning on Telecommunications Workshop AICT/SAPIR/ELETE 2005
    CountryPortugal
    CityLisbon
    Period7/17/057/20/05

    All Science Journal Classification (ASJC) codes

    • Engineering(all)

    Fingerprint Dive into the research topics of 'An enhanced SOS architecture for DDoS attack defense using active network technology'. Together they form a unique fingerprint.

    Cite this