Cornstarch effect: intensifying flow resistance for increasing DDoS attacks in autonomous overlays

Overlay networks are vital to the continued evolution of web services and content distribution. We propose a reactive mechanism to mitigate flooding attacks in overlay networks. Our approach enhances detection and filtering capability in accordance to the size of an attack. As the DDoS traffic flow increases, we intensify detection and scrubbing in a decentralized manner. Flow resistance increases to minimize penetration and attack flows from reaching their destination. We demonstrate their effectiveness in simulations.

[1]  Yong Wang,et al.  The Comprehensive Trust Model in P2P Based on Improved EigenTrust Algorithm , 2010, 2010 International Conference on Measuring Technology and Mechatronics Automation.

[2]  Kouichi Sakurai,et al.  A Design of History Based Traffic Filtering with Probabilistic Packet Marking against DoS Attacks , 2010, 2010 10th IEEE/IPSJ International Symposium on Applications and the Internet.

[3]  Wei Xiong,et al.  A Novel Distributed Detection Scheme against DDoS Attack , 2009, J. Networks.

[4]  Shui Yu,et al.  CBF: A Packet Filtering Method for DDoS Attack Defense in Cloud Environment , 2011, 2011 IEEE Ninth International Conference on Dependable, Autonomic and Secure Computing.

[5]  Mauro Conti,et al.  Poseidon: Mitigating interest flooding DDoS attacks in Named Data Networking , 2013, 38th Annual IEEE Conference on Local Computer Networks.