TY - GEN
T1 - D-RNA
T2 - 22nd International Conference on Computer Applications in Industry and Engineering 2009, CAINE 2009
AU - Husain, Mohammad Iftekhar
AU - Sridhar, Ramalingam
PY - 2009
Y1 - 2009
N2 - Distributed Denial of Service (DDoS) attack is a constant threat to the availability of network based services. Although a DDoS attack often has a distinctive pattern, a rigorous structural analysis of it as a preventive measure to address such attack is limited in the literature. In particular, the fact that a node's structural position in the physical network topology might add to its DDoS susceptibility is not well explored. In this paper, we use Social Network Analysis (SNA) based metrics to analyze the structure of a DDoS attack. For each node in the DDoS attack scenario, we measure three SNA based metrics: "Betweenness", "Hub and Authority" and "Maximum Similarity-based Hierarchical Clustering". Using these metrics, we develop an algorithm to structurally analyze any given network topology for DDoS susceptibility as well as node exploitability to a DDoS attack. Our simulation of DDoS attacks on NSFNET backbone network topology validates the practicality and effectiveness of the proposed analysis. This model can be used to re-examine existing network architectures and take necessary steps such as re-positioning a DDoS susceptible service-critical node to make the network more DDoS resistant.
AB - Distributed Denial of Service (DDoS) attack is a constant threat to the availability of network based services. Although a DDoS attack often has a distinctive pattern, a rigorous structural analysis of it as a preventive measure to address such attack is limited in the literature. In particular, the fact that a node's structural position in the physical network topology might add to its DDoS susceptibility is not well explored. In this paper, we use Social Network Analysis (SNA) based metrics to analyze the structure of a DDoS attack. For each node in the DDoS attack scenario, we measure three SNA based metrics: "Betweenness", "Hub and Authority" and "Maximum Similarity-based Hierarchical Clustering". Using these metrics, we develop an algorithm to structurally analyze any given network topology for DDoS susceptibility as well as node exploitability to a DDoS attack. Our simulation of DDoS attacks on NSFNET backbone network topology validates the practicality and effectiveness of the proposed analysis. This model can be used to re-examine existing network architectures and take necessary steps such as re-positioning a DDoS susceptible service-critical node to make the network more DDoS resistant.
KW - Distributed Denial of Service (DDoS) Attack
KW - Network topology
KW - NSFNET
KW - Social Network Analysis (SNA)
UR - https://www.scopus.com/pages/publications/84883669093
M3 - Conference contribution
AN - SCOPUS:84883669093
SN - 9781615676668
T3 - 22nd International Conference on Computer Applications in Industry and Engineering 2009, CAINE 2009
SP - 69
EP - 74
BT - 22nd International Conference on Computer Applications in Industry and Engineering 2009, CAINE 2009
Y2 - 4 November 2009 through 6 November 2009
ER -