Towards a bayesian network game framework for evaluating DDoS attacks and defense

Authors:
Guanhua Yan;Ritchie Lee;Alex Kent;David Wolpert
Affiliations:
Los Alamos National Laboratory, Los Alamos, NM, USA;Carnegie Mellon University Silicon Valley, Moffett Field, CA, USA;Los Alamos National Laboratory, Los Alamos, NM, USA;Los Alamos National Laboratory, Los Alamos, NM, USA
Venue:
Proceedings of the 2012 ACM conference on Computer and communications security
Year:
2012

Citing 16
Cited 0

Latency-rate servers: a general model for analysis of traffic scheduling algorithms

IEEE/ACM Transactions on Networking (TON)
Controlling high bandwidth aggregates in the network

ACM SIGCOMM Computer Communication Review
Sustaining Availability of Web Services under Distributed Denial of Service Attacks

IEEE Transactions on Computers
A taxonomy of DDoS attack and DDoS defense mechanisms

ACM SIGCOMM Computer Communication Review
Survey of network-based defense mechanisms countering the DoS and DDoS problems

ACM Computing Surveys (CSUR)
A Game-Theoretic Framework for Bandwidth Attacks and Statistical Defenses

LCN '07 Proceedings of the 32nd IEEE Conference on Local Computer Networks
Game-Theoretical Effectiveness Evaluation of DDoS Defense

ICN '08 Proceedings of the Seventh International Conference on Networking
Simulation and Analysis of DDoS in Active Defense Environment

Computational Intelligence and Security
A Puzzle-Based Defense Strategy Against Flooding Attacks Using Game Theory

IEEE Transactions on Dependable and Secure Computing
A Survey of Game Theory as Applied to Network Security

HICSS '10 Proceedings of the 2010 43rd Hawaii International Conference on System Sciences
DDoS mitigation in non-cooperative environments

NETWORKING'08 Proceedings of the 7th international IFIP-TC6 networking conference on AdHoc and sensor networks, wireless networks, next generation internet
Probabilistic Graphical Models: Principles and Techniques - Adaptive Computation and Machine Learning

Probabilistic Graphical Models: Principles and Techniques - Adaptive Computation and Machine Learning
On modeling and simulation of game theory-based defense mechanisms against DoS and DDoS attacks

SpringSim '10 Proceedings of the 2010 Spring Simulation Multiconference
Simulation of internet DDoS attacks and defense

ISC'06 Proceedings of the 9th international conference on Information Security
It's all about the benjamins: an empirical study on incentivizing users to ignore security advice

FC'11 Proceedings of the 15th international conference on Financial Cryptography and Data Security
Methodologies for evaluating game theoretic defense against DDoS attacks

Proceedings of the Winter Simulation Conference

Quantified Score

Hi-index	0.00

Visualization

Abstract

With a long history of compromising Internet security, Distributed Denial-of-Service (DDoS) attacks have been intensively investigated and numerous countermeasures have been proposed to defend against them. In this work, we propose a non-standard game-theoretic framework that facilitates evaluation of DDoS attacks and defense. Our framework can be used to study diverse DDoS attack scenarios where multiple layers of protection are deployed and a number of uncertain factors affect the decision making of the players, and it also allows us to model different sophistication levels of reasoning by both the attacker and the defender. We conduct a variety of experiments to evaluate DDoS attack and defense scenarios where one or more layers of defense mechanisms are deployed, and demonstrate that our framework sheds light on the interplay between decision makings of both the attacker and the defender, as well as how they affect the outcomes of DDoS attack and defense games.