Authors:
Mujahid shah,ShahbazQadar Khattak,Muhammad Farooq,Sadeeq Jan,MehtabEjaz Qureshi,Naveed Jan,Sheeraz Ahmed,DOI NO:
https://doi.org/10.26782/jmcms.2019.12.00075Keywords:
DDoS attack,Application Layer Attack,Attack detection,botnet,DDoS framework,,Abstract
DDoS attacks are initiated from various locations around the world and can be started very easily. This can be achieved by thwarting access to virtually anything: servers, devices, services, networks, applications, and even specific transactions within applications. In a DoS attack, its one system that is sending the malicious data or requests; a DDoS attack comes from multiple systems. Generally, these attacks work by drowning a system with requests for data. This could be sending a web server so many requests to serve a page that it crashes under the demand, or it could be a database being hit with a high volume of queries. The result is available internet bandwidth, CPU and RAM capacity becomes overwhelmed. Distinguishing between attack traffic and normal traffic is difficult, especially in the case of a application layer attack such as a botnet performing a HTTP Flood attack against a victim’s server. Because each bot in a botnet makes seemingly legitimate network requests the traffic is not spoofed and may appear “normal” in origin. In this research propose DDoS attack mitigation framework, the framework composed two parts proactive approach and reactive approach, proactive approach further contain four components Secure software development life cycle, application load test application stress test and ddos incident response plan, while reactive approach contain eighth components bandwidth management, perimeter firewall, intrusion detection and prevention system, web application firewall, load balancer, endpoint security firewall, Dedicated DDoS mitigation device and monitoring, collectively this framework will help as to design such infrastructure which will be stopping DDoS attack enough so that they attacker cannot be easily breakdown and unavailability of the services should accessible.Refference:
I. Aamir, Muhammad, and Syed Mustafa Ali Zaidi. “Clustering based semisupervised
machine learning for DDoS attack classification.” Journal of
King Saud University-Computer and Information Sciences (2019).
II. Aamir, Muhammad, and Syed Mustafa Ali Zaidi. “DDoS attack detection
with feature engineering and machine learning: the framework and
performance evaluation.” International Journal of Information
Security (2019): 1-25.
III. Alanazi, Sultan T., Mohammed Anbar, Shankar Karuppayah, Ahmed K.
Al-Ani, and Yousef K. Sanjalawe. “Detection Techniques for DDoS
Attacks in Cloud Environment.” In Intelligent and Interactive Computing,
pp. 337-354. Springer, Singapore, 2019.
IV. Amjad, Aroosh, Tahir Alyas, Umer Farooq, and Muhammad Arslan Tariq.
“Detection and mitigation of DDoS attack in cloud computing using
machine learning algorithm.” (2019).
V. Bawany, NarmeenZakaria, and Jawwad A. Shamsi. “SEAL: SDN based
secure and agile framework for protecting smart city applications from
DDoS attacks.” Journal of Network and Computer Applications 145
(2019): 102381.
VI. Chen, Jinyin, Yi-tao Yang, Ke-ke Hu, Hai-bin Zheng, and Zhen Wang.
“DAD-MCNN: DDoS Attack Detection via Multi-channel CNN.”
In Proceedings of the 2019 11th International Conference on Machine
Learning and Computing, pp. 484-488. ACM, 2019.
VII. Cui, Jie, Mingjun Wang, Yonglong Luo, and Hong Zhong. “DDoS
detection and defense mechanism based on cognitive-inspired computing
in SDN.” Future Generation Computer Systems 97 (2019): 275-283.
VIII. Dayanandam, G., T. V. Rao, D. BujjiBabu, and S. Nalini Durga. “DDoS
Attacks—Analysis and Prevention.” In Innovations in Computer Science
and Engineering, pp. 1-10. Springer, Singapore, 2019.
IX. Demir, Kubilay, Ferdaus Nayyer, and Neeraj Suri. “MPTCP-H: A DDoS
attack resilient transport protocol to secure wide area measurement
systems.” International Journal of Critical Infrastructure Protection 25
(2019): 84-101.
X. Dimolianis, Marinos, Adam Pavlidis, Dimitris Kalogeras, and Vasilis
Maglaris. “Mitigation of Multi-vector Network Attacks via Orchestration
of Distributed Rule Placement.” In 2019 IFIP/IEEE Symposium on
Integrated Network and Service Management (IM), pp. 162-170. IEEE,
2019.
XI. Dong, Shi, Khushnood Abbas, and Raj Jain. “A Survey on Distributed
Denial of Service (DDoS) Attacks in SDN and Cloud Computing
Environments.” IEEE Access 7 (2019): 80813-80828.
XII. DORON, Ehud, B. E. N. Yotam, and David Aviv. “System and method
for out of path ddos attack detection.” U.S. Patent Application 16/212,042,
filed June 13, 2019.
XIII. Doron, Ehud, David Aviv, B. E. N. Yotam, and Lev Medvedovsky.
“Multi-tiered network architecture for mitigation of cyber-attacks.” U.S.
Patent Application 16/164,260, filed February 14, 2019.
XIV. Imran, Muhammad, Muhammad HanifDurad, Farrukh Aslam Khan, and
AbdelouahidDerhab. “Toward an optimal solution against denial of
service attacks in software defined networks.” Future Generation
Computer Systems 92 (2019): 444-453.
XV. Jaafar, Ghafar A., Shahidan M. Abdullah, and Saifuladli Ismail. “Review
of Recent Detection Methods for HTTP DDoS Attack.” Journal of
Computer Networks and Communications 2019 (2019).
XVI. Jing, Xuyang, Zheng Yan, Xueqin Jiang, and Witold Pedrycz. “Network
traffic fusion and analysis against DDoS flooding attacks with a novel
reversible sketch.” Information Fusion 51 (2019): 100-113.
XVII. Khalimonenko, Alexander A., Anton V. Tikhomirov, and Sergey V.
Konoplev. “System and method of determining ddos attacks.” U.S. Patent
Application 15/910,616, filed January 17, 2019.
XVIII. Ko, Ili, Desmond Chambers, and Enda Barrett. “Feature dynamic deep
learning approach for DDoS mitigation within the ISP
domain.” International Journal of Information Security (2019): 1-18.
XIX. Lopez, Alma D., Asha P. Mohan, and Sukumaran Nair. “Network Traffic
Behavioral Analytics for Detection of DDoS Attacks.” SMU Data Science
Review 2, no. 1 (2019): 14.
XX. Rahman, Obaid, Mohammad Ali GauharQuraishi, and Chung-Horng
Lung. “DDoS Attacks Detection and Mitigation in SDN Using Machine
Learning.” In 2019 IEEE World Congress on Services (SERVICES), vol.
2642, pp. 184-189. IEEE, 2019.
XXI. Reddy, Tirumaleswar, Daniel Wing, and Prashanth Patil. “Short term
certificate management during distributed denial of service attacks.” U.S.
Patent Application 10/104,119, filed October 16, 2018.
XXII. Saharan, Shail, and Vishal Gupta. “Prevention and Mitigation of DNS
based DDoS attacks in SDN Environment.” In 2019 11th International
Conference on Communication Systems & Networks (COMSNETS), pp.
571-573. IEEE, 2019.
XXIII. Sen, Sajib, Kishor Datta Gupta, and Md Manjurul Ahsan. “Leveraging
Machine Learning Approach to Setup Software-Defined Network (SDN)
Controller Rules During DDoS Attack.” In Proceedings of International
Joint Conference on Computational Intelligence, pp. 49-60. Springer,
Singapore, 2020.
XXIV. Swami, Rochak, Mayank Dave, and Virender Ranga. “Software-defined
Networking-based DDoS Defense Mechanisms.” ACM Computing
Surveys (CSUR) 52, no. 2 (2019): 28.