Collaborative Agent-based Model for Distributed Defense against DDoS Attacks in ISP Networks

Authored by Karanbir Singh, Kanwalvir Singh Dhindsa, Bharat Bhushan

Date Published: 2017

DOI: 10.14257/ijsia.2017.11.8.01

Sponsors: No sponsors listed

Platforms: No platforms listed

Model Documentation: Other Narrative Flow charts

Model Code URLs: Model code not found

Abstract

The attacks like denial of service (DoS) and more specifically the distributed denial of service (DDoS) are one of the biggest threat to host and services of the Internet. There are many schemes available in the literature, which try to detect and defend these kinds of attacks, but many among them face numerous problems in providing an effective defense. Some of them are not practically possible to implement and others are not effective in handling these attacks. Hence, there is a need of defense mechanism which can effectively protect any infrastructure against DDoS attack. Instead of building an isolated defense method, we require a distributed defense framework, in which defense components can be deployed at various places on the internet. The proposed distributed defense model can defend DDoS attacks by placing defense agents and coordinator at different places over the Internet. The defense agents will be installed at edge routers and coordinator at core router of each stub domain. The defense agents and coordinator will securely communicate with each other to share the attack related information and the same will be shared with neighboring internet service providers. In order to provide efficient defense, the overall defense process is divided into various levels.

Tags

DDoS Dos Distributed defense Isp networks