Abstract
Distributed large-scale cyber attacks targeting the availability of computing and network resources still remain a serious threat. To limit the effects caused by those attacks and to provide a proactive defense, mitigation should move to the networks of Internet Service Providers (ISPs). In this context, this thesis focuses on a development of a collaborative, automated approach to mitigate the effects of Distributed Denial of Service (DDoS) attacks at Internet Scale. This thesis has the following contributions: i) a systematic and multifaceted study on mitigation of large-scale cyber attacks at ISPs. ii) A detailed guidance selecting an exchange format and protocol suitable to use to disseminate threat information. iii) To overcome the shortcomings of missing flow-based interoperability of current exchange formats, a development of the exchange format Flow-based Event Exchange Format (FLEX). iv) A communication process to facilitate the automated defense in response to ongoing network-based attacks, v) a model to select and perform a semi-automatic deployment of suitable response actions. vi) An investigation of the effectiveness of the defense techniques moving-target using Software Defined Networking (SDN) and their applicability in context of large-scale cyber attacks and the networks of ISPs. Finally, a trust model that determines a trust and a knowledge level of a security event to deploy semi-automated remediations and facilitate the dissemination of security event information using the exchange format FLEX in context of ISP networks.
Original language | English |
---|---|
Title of host publication | 2020 IEEE/IFIP Network Operations and Management Symposium (NOMS 2020) |
Subtitle of host publication | Management in the Age of Softwarization and Artificial Intelligence, NOMS 2020 |
Place of Publication | Piscataway, NJ |
Publisher | IEEE |
Number of pages | 6 |
ISBN (Electronic) | 978-1-7281-4973-8 |
ISBN (Print) | 978-1-7281-4974-5 |
DOIs | |
Publication status | Published - Apr 2020 |
Event | 17th IEEE/IFIP Network Operations and Management Symposium, NOMS 2020: Management in the Age of Softwarization and Artificial Intelligence - Virtual conference, Budapest, Hungary Duration: 20 Apr 2020 → 24 Apr 2020 Conference number: 17 https://noms2020.ieee-noms.org/ (Conference) |
Publication series
Name | Proceedings of IEEE/IFIP Network Operations and Management Symposium 2020: Management in the Age of Softwarization and Artificial Intelligence, NOMS 2020 |
---|
Conference
Conference | 17th IEEE/IFIP Network Operations and Management Symposium, NOMS 2020 |
---|---|
Abbreviated title | NOMS |
Country/Territory | Hungary |
City | Budapest |
Period | 20/04/20 → 24/04/20 |
Internet address |
|
Keywords
- DDoS
- Dissemination
- Mitigation
- Reaction
- attack intensities
- future attacks
- 22/3 OA procedure