Publication detail

Scalable DDoS Mitigation System for Data Centers

MARTINÁSEK, Z.

Original Title

Scalable DDoS Mitigation System for Data Centers

Czech Title

Škálovatelná DDoS ochrana pro datová centra

English Title

Scalable DDoS Mitigation System for Data Centers

Type

journal article

Language

en

Original Abstract

Distributed Denial of Service attacks (DDoS) have been used by attackers for over two decades because of their effectiveness. This type of the cyber-attack is one of the most destructive attacks in the Internet. In recent years, the intensity of DDoS attacks has been rapidly increasing and the attackers combine more often different techniques of DDoS to bypass the protection. Therefore, the main goal of our research is to propose a DDoS solution that allows to increase the filtering capacity linearly and allows to protect against the combination of attacks. The main idea is to develop the DDoS defense system in the form of a portable software image that can be installed on the reserve hardware capacities. During a DDoS attack, these servers will be used as filters of this DDoS attack. Our solution is suitable for data centers and eliminates some lacks of commercial solutions. The system employs modular DDoS filters in the form of special grids containing specific protocol parameters and conditions.

Czech abstract

Rizika kybernetických útoků na počítačové systémy české státní správy, komerčních firem i běžných koncových uživatelů jsou v dnešní době reálná a nepředstavují pouze teoretickou hrozbu. Nejčastěji používanou technikou kybernetických útoku jsou útoky DoS (Denial of Service), které představují odepření služby popřípadě DDoS (Distributed Denial of Service), což jsou DoS útoky vedené z více zdrojů. Článek popisuje modulární softwarové řešení ochrany proti DDoS útokům, které odstraňuje nevýhody komerčních řešení. Hlavní myšlenka je postavena na redundantní dostupnosti hardwarových tedy výpočetních zdrojů, které mohou být efektivně použity pro eliminování DDoS útoků.

English abstract

Distributed Denial of Service attacks (DDoS) have been used by attackers for over two decades because of their effectiveness. This type of the cyber-attack is one of the most destructive attacks in the Internet. In recent years, the intensity of DDoS attacks has been rapidly increasing and the attackers combine more often different techniques of DDoS to bypass the protection. Therefore, the main goal of our research is to propose a DDoS solution that allows to increase the filtering capacity linearly and allows to protect against the combination of attacks. The main idea is to develop the DDoS defense system in the form of a portable software image that can be installed on the reserve hardware capacities. During a DDoS attack, these servers will be used as filters of this DDoS attack. Our solution is suitable for data centers and eliminates some lacks of commercial solutions. The system employs modular DDoS filters in the form of special grids containing specific protocol parameters and conditions.

Keywords

DDoS, protection, data center.

RIV year

2015

Released

29.11.2015

Pages from

1

Pages to

6

Pages count

6

URL

BibTex


@article{BUT117846,
  author="Zdeněk {Martinásek}",
  title="Scalable DDoS Mitigation System for Data Centers",
  annote="Distributed Denial of Service attacks (DDoS) have been used by attackers for over two decades because of their effectiveness.
This type of the cyber-attack is one of the most destructive attacks in the Internet.
In recent years, the intensity of DDoS attacks has been rapidly increasing and the attackers combine more often different techniques of DDoS to bypass the protection.
Therefore, the main goal of our research is to propose a DDoS solution that allows to increase the filtering capacity linearly and allows to protect against the combination of attacks.
The main idea is to develop the DDoS defense system in the form of a portable software image that can be installed on the reserve hardware capacities.
During a DDoS attack, these servers will be used as filters of this DDoS attack.
Our solution is suitable for data centers and eliminates some lacks of commercial solutions.
The system employs modular DDoS filters in the form of special grids containing specific protocol parameters and conditions.",
  chapter="117846",
  doi="10.15598/aeee.v13i4.1531",
  howpublished="online",
  number="3",
  volume="13",
  year="2015",
  month="november",
  pages="1--6",
  type="journal article"
}