Defense against bandwidth attacks with traffic resource management

Hongli Luo, Mei-Ling Shyu

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

In this paper, a framework is proposed to defend against Internet bandwidth attacks with traffic resource management to provide service for legitimate users. Denial of Service (DoS) is one of the major bandwidth attacks in the Internet. A DoS attack generates a large volume of traffic to consume the network bandwidth and degrade the service that legitimate users can obtain. Incoming traffic to the server is monitored and features are extracted for each connection. Anomaly detection technique is used to detect the abnormal traffic. Based on the outcome of the anomaly detection technique, the proposed resource management approach allocates suitable bandwidth. With the early detection of DoS, the attack traffic can be isolated. The bandwidth occupied by the attack can be reduced and protected for the legitimate users. Performances are compared under different attack loads with and without resource management. Simulation results show that bandwidth can be greatly saved from an attack and the service for the legitimate users can be protected during an attack.

Original languageEnglish
Title of host publication2007 IEEE International Conference on Information Reuse and Integration, IEEE IRI-2007
Pages190-195
Number of pages6
DOIs
StatePublished - Dec 1 2007
Event2007 IEEE International Conference on Information Reuse and Integration, IEEE IRI-2007 - Las Vegas, NV, United States
Duration: Aug 13 2007Aug 15 2007

Other

Other2007 IEEE International Conference on Information Reuse and Integration, IEEE IRI-2007
CountryUnited States
CityLas Vegas, NV
Period8/13/078/15/07

Fingerprint

Telecommunication traffic
Bandwidth
Internet
Attack
Resource management
Servers
Denial

ASJC Scopus subject areas

  • Information Systems
  • Information Systems and Management
  • Electrical and Electronic Engineering

Cite this

Luo, H., & Shyu, M-L. (2007). Defense against bandwidth attacks with traffic resource management. In 2007 IEEE International Conference on Information Reuse and Integration, IEEE IRI-2007 (pp. 190-195). [4296619] https://doi.org/10.1109/IRI.2007.4296619

Defense against bandwidth attacks with traffic resource management. / Luo, Hongli; Shyu, Mei-Ling.

2007 IEEE International Conference on Information Reuse and Integration, IEEE IRI-2007. 2007. p. 190-195 4296619.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Luo, H & Shyu, M-L 2007, Defense against bandwidth attacks with traffic resource management. in 2007 IEEE International Conference on Information Reuse and Integration, IEEE IRI-2007., 4296619, pp. 190-195, 2007 IEEE International Conference on Information Reuse and Integration, IEEE IRI-2007, Las Vegas, NV, United States, 8/13/07. https://doi.org/10.1109/IRI.2007.4296619
Luo H, Shyu M-L. Defense against bandwidth attacks with traffic resource management. In 2007 IEEE International Conference on Information Reuse and Integration, IEEE IRI-2007. 2007. p. 190-195. 4296619 https://doi.org/10.1109/IRI.2007.4296619
Luo, Hongli ; Shyu, Mei-Ling. / Defense against bandwidth attacks with traffic resource management. 2007 IEEE International Conference on Information Reuse and Integration, IEEE IRI-2007. 2007. pp. 190-195
@inproceedings{33607841364a4485b5255dd5b1605408,
title = "Defense against bandwidth attacks with traffic resource management",
abstract = "In this paper, a framework is proposed to defend against Internet bandwidth attacks with traffic resource management to provide service for legitimate users. Denial of Service (DoS) is one of the major bandwidth attacks in the Internet. A DoS attack generates a large volume of traffic to consume the network bandwidth and degrade the service that legitimate users can obtain. Incoming traffic to the server is monitored and features are extracted for each connection. Anomaly detection technique is used to detect the abnormal traffic. Based on the outcome of the anomaly detection technique, the proposed resource management approach allocates suitable bandwidth. With the early detection of DoS, the attack traffic can be isolated. The bandwidth occupied by the attack can be reduced and protected for the legitimate users. Performances are compared under different attack loads with and without resource management. Simulation results show that bandwidth can be greatly saved from an attack and the service for the legitimate users can be protected during an attack.",
author = "Hongli Luo and Mei-Ling Shyu",
year = "2007",
month = "12",
day = "1",
doi = "10.1109/IRI.2007.4296619",
language = "English",
isbn = "1424414997",
pages = "190--195",
booktitle = "2007 IEEE International Conference on Information Reuse and Integration, IEEE IRI-2007",

}

TY - GEN

T1 - Defense against bandwidth attacks with traffic resource management

AU - Luo, Hongli

AU - Shyu, Mei-Ling

PY - 2007/12/1

Y1 - 2007/12/1

N2 - In this paper, a framework is proposed to defend against Internet bandwidth attacks with traffic resource management to provide service for legitimate users. Denial of Service (DoS) is one of the major bandwidth attacks in the Internet. A DoS attack generates a large volume of traffic to consume the network bandwidth and degrade the service that legitimate users can obtain. Incoming traffic to the server is monitored and features are extracted for each connection. Anomaly detection technique is used to detect the abnormal traffic. Based on the outcome of the anomaly detection technique, the proposed resource management approach allocates suitable bandwidth. With the early detection of DoS, the attack traffic can be isolated. The bandwidth occupied by the attack can be reduced and protected for the legitimate users. Performances are compared under different attack loads with and without resource management. Simulation results show that bandwidth can be greatly saved from an attack and the service for the legitimate users can be protected during an attack.

AB - In this paper, a framework is proposed to defend against Internet bandwidth attacks with traffic resource management to provide service for legitimate users. Denial of Service (DoS) is one of the major bandwidth attacks in the Internet. A DoS attack generates a large volume of traffic to consume the network bandwidth and degrade the service that legitimate users can obtain. Incoming traffic to the server is monitored and features are extracted for each connection. Anomaly detection technique is used to detect the abnormal traffic. Based on the outcome of the anomaly detection technique, the proposed resource management approach allocates suitable bandwidth. With the early detection of DoS, the attack traffic can be isolated. The bandwidth occupied by the attack can be reduced and protected for the legitimate users. Performances are compared under different attack loads with and without resource management. Simulation results show that bandwidth can be greatly saved from an attack and the service for the legitimate users can be protected during an attack.

UR - http://www.scopus.com/inward/record.url?scp=47949111558&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=47949111558&partnerID=8YFLogxK

U2 - 10.1109/IRI.2007.4296619

DO - 10.1109/IRI.2007.4296619

M3 - Conference contribution

SN - 1424414997

SN - 9781424414994

SP - 190

EP - 195

BT - 2007 IEEE International Conference on Information Reuse and Integration, IEEE IRI-2007

ER -