A detection and filter system for use against large-scale DDoS attacks in the internet backbone
IWAN'04 Proceedings of the 6th IFIP TC6 international working conference on Active networks
| Hi-index | 0.00 |
Securing communication networks can no longer be ensuredby singular and isolated security technologies likeInternet firewalls or intrusion detection systems but rathercalls for a combination of existing and emerging detectionand response mechanisms, e.g. DDoS response mechanisms,anomaly detection, honey pots, etc. Today, mostcurrent systems prove to be too static to provide an adequateplatform for a constructive teamwork of different securitytechnologies. Therefore, we developed the FIDRANframework for flexible intrusion dection and response that isbased on an underlying active networking environment andthat allows to dynamically combine existing and emergingsecurity technologies.FIDRAN follows a highly modular approach that allowsto extend the functionality of the framework by the integrationof new security modules which are implemented asactive networking services, making use of next generationnetworks capabilities like dynamic distribution and deploymentof services on active network nodes. A further advantageof the realization of FIDRAN on top of an active networkingenvironment is the simplification and automationof maintenance work and configuration tasks.