Leveraging the SIP load balancer to detect and mitigate DDos attacks

Akbar, Abdullah; Basha, S. Mahaboob; Sattar, Syed Abdul

doi:10.1109/icgciot.2015.7380646

Cited by 8 publications

(3 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…But this method creates an additional overhead problem to the server. Researchers pay more attention on security threats introduced by the load balancer [31][32][33]. Kim et al [31] investigated the performance of SSL protocol for providing secure service in a clusterbased application server and proposed a backend forwarding method for improving server performance through better load balance.…”

Section: Related Workmentioning

confidence: 99%

“…Kim et al [31] investigated the performance of SSL protocol for providing secure service in a clusterbased application server and proposed a backend forwarding method for improving server performance through better load balance. The authors [32] implemented a Distributed Denial of Service (DDoS) detection scheme in the load balancer. Here, the dispatcher module of Kamailio server acts as load balancer.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

A Secured Load Mitigation and Distribution Scheme for Securing SIP Server

Vennila¹,

Manikandan²

2017

Security and Communication Networks

View full text Add to dashboard Cite

Managing the performance of the Session Initiation Protocol (SIP) server under heavy load conditions is a critical task in a Voice over Internet Protocol (VoIP) network. In this paper, a two-tier model is proposed for the security, load mitigation, and distribution issues of the SIP server. In the first tier, the proposed handler segregates and drops the malicious traffic. The second tier provides a uniform load of distribution, using the least session termination time (LSTT) algorithm. Besides, the mean session termination time is minimized by reducing the waiting time of the SIP messages. Efficiency of the LSTT algorithm is evaluated through the experimental test bed by considering with and without a handler. The experimental results establish that the proposed two-tier model improves the throughput and the CPU utilization. It also reduces the response time and error rate while preserving the quality of multimedia session delivery. This two-tier model provides robust security, dynamic load distribution, appropriate server selection, and session synchronization.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

A Secured Load Mitigation and Distribution Scheme for Securing SIP Server

Vennila¹,

Manikandan²

2017

Security and Communication Networks

View full text Add to dashboard Cite

show abstract

“…Akbar et al [18] also leverage Helliger Distance to low rate and multi-attributes DDoS attack. In Golait and Hubballi's work [19], the authors also detect the anomaly by generating the normal profile of SIP messages as a probability distribution.…”

Section: Related Workmentioning

confidence: 99%

Detect and Prevent SIP Flooding Attacks in VoLTE by Utilizing a Two-Tier PFilter Design

Ruan

Wang

et al. 2017

IEICE Trans. Inf. & Syst.

View full text Add to dashboard Cite

SUMMARYAs a new generation voice service, Voice over LTE (VoLTE) has attracted worldwide attentions in both the academia and industry. Different from the traditional voice call based on circuit-switched (CS), VoLTE evolves into the packet-switched (PS) field, which has long been open to the public. Though designed rigorously, similar to VoIP services, VoLTE also suffers from SIP (Session Initiation Protocal) flooding attacks. Due to the high performance requirement, the SIP flooding attacks in VoLTE is more difficult to defend than that in traditional VoIP service. In this paper, enlightened by Counting Bloom Filter (CBF), we design a versatile CBF-like structure, PFilter, to detect the flooding anomalies. Compared with previous relevant works, our scheme gains advantages in many aspects including detection of low-rate flooding attack and stealthy flooding attack. Moreover, not only can our scheme detect the attacks with high accuracy, but also find out the attackers to ensure normal operation of VoLTE by eliminating their negative effects. Extensive experiments are performed to well evaluate the performance of the proposed scheme.

show abstract

Distributed frameworks for detecting distributed denial of service attacks: A comprehensive review, challenges and future directions

Patil

Krishna

Kumar

2021

Concurrency and Computation

View full text Add to dashboard Cite

A distributed denial of service (DDoS) attack is a significant threat to web‐based applications and hindering legitimate traffic (denies access to benign users) by overwhelming the victim system or its infrastructure (service, bandwidth, networking devices, etc.) with a large volume of attack traffic. It leads to a delay in responses or sometimes a crash victim system. Even a few moments of pause in web‐based applications lead to a huge monetary loss and a bad reputation in the market. Several approaches available in the literature to protect websites from different types of DDoS attacks. However, incidents and volume sizes of DDoS attacks are growing quarter by quarter. Further, various challenges in the traditional framework based defense mechanisms: itself becoming a victim of attacks while analyzing a massive amount of traffic, require more time for detection process, no coordination among the modules, etc. This paper presents a comprehensive DDoS defense deployment taxonomy and critically reviewed existing distributed frameworks based DDoS attack detection systems. Further, characterized several existing distributed processing frameworks to select an appropriate one for deploying DDoS attack detection mechanisms. Finally, several evaluation metrics, open issues, discussion on available datasets including their limitations, and future directions are presented.

show abstract

Leveraging the SIP load balancer to detect and mitigate DDos attacks

Cited by 8 publications

References 11 publications

A Secured Load Mitigation and Distribution Scheme for Securing SIP Server

A Secured Load Mitigation and Distribution Scheme for Securing SIP Server

Detect and Prevent SIP Flooding Attacks in VoLTE by Utilizing a Two-Tier PFilter Design

Distributed frameworks for detecting distributed denial of service attacks: A comprehensive review, challenges and future directions

Contact Info

Product

Resources

About