An adaptive approach to network resilience: Evolving challenge detection and mitigation

Yu, Yue; Fry, Michael; Schaeffer-Filho, Alberto; Smith, Paul J.; Hutchison, David

doi:10.1109/drcn.2011.6076900

Cited by 16 publications

(8 citation statements)

References 21 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Despite the multitude of mechanisms and techniques available, it is often not clear how these should be combined and coordinated in complex multi-service networks. We found that the published state-of-the-art in challenge detection and classification varies in the resources that are required, the timeliness and accuracy of their operation, and the challenges they can effectively operate with [12]. For example, localised detection in fluctuations of traffic volumes can give a rapid and relatively lightweight indication of the onset of challenges, such as DDoS attacks or flash crowd events, whereas a sophisticated classification system can yield more accurate information about the challenge, e.g., the identification of malicious flows, over a longer period of time.…”

Section: A Network Resiliencementioning

confidence: 97%

Management patterns: SDN-enabled network resilience management

Smith

Schaeffer-Filho

Hutchison

et al. 2014

2014 IEEE Network Operations and Management Symposium (NOMS)

Self Cite

View full text Add to dashboard Cite

Software-defined networking provides abstractions and a flexible architecture for the easy configuration of network devices, based on the decoupling of the data and control planes. This separation has the potential to considerably simplify the implementation of resilience functionality (e.g., traffic classification, anomaly detection, traffic shaping) in future networks. Although software-defined networking in general, and OpenFlow as its primary realisation, provide such abstractions, support is still needed for orchestrating a collection of OpenFlow-enabled services that must cooperate to implement network-wide resilience. In this paper, we describe a resilience management framework that can be readily applied to this problem. An important part of the framework are policy-controlled management patterns that describe how to orchestrate individual resilience services, implemented as OpenFlow applications.

show abstract

Section: A Network Resiliencementioning

confidence: 97%

Management patterns: SDN-enabled network resilience management

Smith

Schaeffer-Filho

Hutchison

et al. 2014

2014 IEEE Network Operations and Management Symposium (NOMS)

Self Cite

View full text Add to dashboard Cite

show abstract

“…The legitimate network traffics have the regular packet sizes from regular IP addresses on regular flow rates so that the entropy values are concentrated. The burst value of entropy represents the abnormal change of network traffics that leads detection of DDoS attack whenever it occurred [3] [4].…”

Section: Related Workmentioning

confidence: 99%

Visual Analytics Model for Intrusion Detection in Flood Attack

Zhang

Huang

2013

2013 12th IEEE International Conference on Trust, Security and Privacy in Computing and Communications

View full text Add to dashboard Cite

Flood attacks are common forms of Distributed Denial-of-Service (DDoS) attack threats on internet in nature. This has necessitated the need for visual analysis within an intrusion detection system to identify these attacks. The challenges are how to increase the accuracy of detection and how to visualize and present flood attacks in networks for early detection. In this paper, we introduce three coefficients, which not only classify the behaviors of flood attacks, but also measure the system performance under those flood attacks: a) attack-density that patterns the characters of flood attack; b) system workload which represents the system capability in handling flood attack and c) the scalability to classify the impact level of the flood attack at victim site. A visual clustered method is used to display the DDoS flood attacks. The experimentation results are presented to demonstrate our new model significantly improves the accuracy of the detection of DDoS attacks and provides a better understanding of the nature of flood attacks on networks.

show abstract

“…As shown in previous work [5], [6], [7] it is possible to adopt the behaviour of a system without the need to re-design and develop any of the functionality, and changes can be applied without the need to bring system to halt which is crucial for critical service point of view. However, there is still need to apply basic of policy refinement principals for autonomic management in cloud computing.…”

Section: Fig 1: Policy Refinement Stagesmentioning

confidence: 99%

Towards policy refinement for resilience management in cloud

Shirazi

Simpson

Syeda

et al. 2016

2016 8th International Workshop on Resilient Networks Design and Modeling (RNDM)

Self Cite

View full text Add to dashboard Cite

Abstract-Cloud computing is becoming increasingly important for provision of critical services because of potential cost saving, scalability and elasticity. Therefore, it is particularly important for clouds and cloud-based services to be resilient, i.e., they are able to operate correctly and continuously even in the presence of challenges. To do this, a number of resiliencesupporting mechanisms are needed at various levels in cloud infrastructure. It is non-trivial to manage these mechanisms and there is a need for flexible instruments which assist cloud providers in this complex task. Policy based management is an established instrument to manage resilience supporting mechanisms and they are useful if it allows not only high level description of abstract policy (e.g high level security and resilience requirements), but also enables such policy to be refined and eventually mapped into an appropriate low levels in cloud settings. This paper sheds light on basic concepts behind policy based management in cloud, more specifically it emphasizes the use of policy refinement which is the process of translating higher level requirements (such as security and resilience requirements) into the sequence of actions at lower levels that can implement them, in order to generate more refined policies that govern the behaviour of an overall cloud system when under challenge. We finally present two example scenarios on how policy refinement can work for the cloud to establish its relevance for the overall resilience management.

show abstract

An adaptive approach to network resilience: Evolving challenge detection and mitigation

Cited by 16 publications

References 21 publications

Management patterns: SDN-enabled network resilience management

Management patterns: SDN-enabled network resilience management

Visual Analytics Model for Intrusion Detection in Flood Attack

Towards policy refinement for resilience management in cloud

Contact Info

Product

Resources

About