Simulation of internet DDoS attacks and defense

Authors:
Igor Kotenko;Alexander Ulanov
Affiliations:
St. Petersburg Institute for Informatics and Automation (SPIIRAS), St.-Petersburg, Russia;St. Petersburg Institute for Informatics and Automation (SPIIRAS), St.-Petersburg, Russia
Venue:
ISC'06 Proceedings of the 9th international conference on Information Security
Year:
2006

Citing 9
Cited 5

On the effectiveness of route-based packet filtering for distributed DoS attack prevention in power-law internets

Proceedings of the 2001 conference on Applications, technologies, architectures, and protocols for computer communications
Controlling high bandwidth aggregates in the network

ACM SIGCOMM Computer Communication Review
Towards Heterogeneous Agent Teams

EASSS '01 Selected Tutorial Papers from the 9th ECCAI Advanced Course ACAI 2001 and Agent Link's 3rd European Agent Systems Summer School on Multi-Agent Systems and Applications
An Evaluation of Different IP Traceback Approaches

ICICS '02 Proceedings of the 4th International Conference on Information and Communications Security
Hop-count filtering: an effective defense against spoofed DDoS traffic

Proceedings of the 10th ACM conference on Computer and communications security
Internet Denial of Service: Attack and Defense Mechanisms (Radia Perlman Computer Networking and Security)

Internet Denial of Service: Attack and Defense Mechanisms (Radia Perlman Computer Networking and Security)
Perimeter-Based Defense against High Bandwidth DDoS Attacks

IEEE Transactions on Parallel and Distributed Systems
MULTOPS: a data-structure for bandwidth attack detection

SSYM'01 Proceedings of the 10th conference on USENIX Security Symposium - Volume 10
Towards flexible teamwork

Journal of Artificial Intelligence Research

Realistic simulation environments for IP-based networks

Proceedings of the 1st international conference on Simulation tools and techniques for communications, networks and systems & workshops
Large-scale evaluation of distributed attack detection

Proceedings of the 2nd International Conference on Simulation Tools and Techniques
Multi-agent framework for simulation of adaptive cooperative defense against internet attacks

AIS-ADM'07 Proceedings of the 2nd international conference on Autonomous intelligent systems: agents and data mining
Simulative evaluation of distributed attack detection in large-scale realistic environments

Simulation
Towards a bayesian network game framework for evaluating DDoS attacks and defense

Proceedings of the 2012 ACM conference on Computer and communications security

Quantified Score

Hi-index	0.00

Visualization

Abstract

The paper considers the software simulation tool DDoSSim which has been developed for comprehensive investigation of Internet DDoS attacks and defense mechanisms. This tool can be characterized by three main peculiarities: agent-oriented approach to simulation, packet-based imitation of network security processes, and open library of different DDoS attacks and defense mechanisms. DDoSSim allows deeply investigating various attacks and defense methods and generating valuable recommendations on choosing the best defense. In the paper the agent-oriented approach suggested is considered. The taxonomy of input and output parameters for simulation is outlined. The main DDoSSim components are specified. One of the experiments on protection against DDoS attacks demonstrates some DDoSSim possibilities. We consider different phases of defense operations – learning, decision making and protection, including adaptation to the actions of malefactors.