Visualization of actionable knowledge to mitigate DRDoS attacks

Research output: Chapter in Book/Report/Conference proceedingConference contribution

9 Citations (Scopus)

Abstract

Distributed Reflective Denial of Service attacks (DRDoS) represent an ever growing security threat. These attacks are characterized by spoofed UDP traffic that is sent to genuine machines, called amplifiers, whose response to the spoofed IP, i.e. the victim machine, is amplified and could be 500 times larger in size than the originating request. In this paper, we provide a method and a tool for Internet Service Providers (ISPs) to assess and visualize the amount of traffic that enters and leaves their network in case it contains innocent amplifiers. We show that amplified traffic usually goes undetected and can consume a significant bandwidth, even when a small number of amplifiers is present. The tool also enables ISPs to simulate various rule-based mitigation strategies and estimate their impact, based on real-world data obtained from amplification honeypots.

Original languageEnglish
Title of host publication2016 IEEE Symposium on Visualization for Cyber Security, VizSec 2016
PublisherInstitute of Electrical and Electronics Engineers Inc.
ISBN (Electronic)9781509016051
DOIs
Publication statusPublished - 8 Nov 2016
Event2016 IEEE Symposium on Visualization for Cyber Security, VizSec 2016 - Baltimore, United States
Duration: 24 Oct 2016 → …

Other

Other2016 IEEE Symposium on Visualization for Cyber Security, VizSec 2016
CountryUnited States
CityBaltimore
Period24/10/16 → …

    Fingerprint

Keywords

  • C.2.0 [Computer Systems Organization]: Computer Communication Networks-Security and Protection
  • K.6.m [Computing Milieux]: Miscellaneous-Security

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Media Technology
  • Modelling and Simulation

Cite this

Aupetit, M., Zhauniarovich, Y., Vasiliadis, G., Dacier, M., & Boshmaf, Y. (2016). Visualization of actionable knowledge to mitigate DRDoS attacks. In 2016 IEEE Symposium on Visualization for Cyber Security, VizSec 2016 [7739577] Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/VIZSEC.2016.7739577