AID: A global anti-DoS service

Chen, Shigang; Ling, Yibei; Chow, Randy; Xia, Ye

doi:10.1016/j.comnet.2007.05.005

Cited by 4 publications

(1 citation statement)

References 26 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The idea proposed in the mechanism is to have a buffer and a filter greater than the size of the bandwidth, so that the even if the entire bandwidth is accommodated, the buffer could identify the incoming traffic and the DDoS flooding attack could easily be detected. Chen et al (2007) proposed an Anti-DoS (AID) scheme, which creates the overlay network for treating legitimate traffic, and attack traffic is another part of the overlay which requires special filtering treatment. So, the legitimate traffic is processed quickly, but the attack traffic is pre-processed at the overlay network.…”

Section: Surviving Techniquesmentioning

confidence: 99%

A multilevel thrust filtration defending mechanism against DDoS attacks in cloud computing environment

Iyengar

Ganapathy

Kumar

et al. 2014

IJGUC

View full text Add to dashboard Cite

Cloud computing is a technology which not only gained advantages from ascendant technologies, but also suffered from its security breaches, of which availability is the most serious security issue. Distributed Denial of Service (DDoS) is a kind of resource-availabilityrelated attack launched with the aim of subverting the Data Centre (DC) for resource unavailability to the legitimate clients. In this paper, we propose 'Multilevel Thrust Filtration (MTF) mechanism' as a solution, which authenticates the incoming requesters and detects the different types of DDoS attacks at different levels to detect the most intensive attack at an early stage to prevent the unnecessary traffic reaching the DC. A hybrid solution is proposed to detect four different kinds of attacks that have been taken into consideration. Profit analysis proved that the proposed mechanism is deployable at an attack-prone DC for resource protection, which would eventually result in beneficial service at slenderised revenue.

show abstract

Section: Surviving Techniquesmentioning

confidence: 99%

A multilevel thrust filtration defending mechanism against DDoS attacks in cloud computing environment

Iyengar

Ganapathy

Kumar

et al. 2014

IJGUC

View full text Add to dashboard Cite

show abstract

A Virtual Firewall Mechanism Using Army Nodes to Protect Cloud Infrastructure from DDoS Attacks

Jeyanthi

Mogankumar

2014

Cybernetics and Information Technologies

View full text Add to dashboard Cite

Cloud is not exempted from the vulnerability of Distributed Denial of Service (DDoS) attack, a serious threat to any distributed network and has considerably less effective solutions to deploy in the network. This paper introduces a novel mechanism to protect and prevent the cloud from the spurious packets targeting the depletion of server resources. The army nodes called “Cloud DDoS Attack Protection” (CDAP) nodes are installed at the cloud server farm/ Datacenter (DC). These army nodes act as virtual firewall without destroying the Cloud Infrastructure and improve the availability of DC, even at the time of DDoS attack. By continuously monitoring the incoming packets, CDAP filters the attack packets intruding the Cloud DC. Availability is further improved by handing over the threat detection and attack mitigation to CDAP nodes and by redirecting the malicious user requests to the dump network. The simulation results prove that the introduction of CDAP nodes improve the availability and reduce the response time and the cost incurred.

show abstract