SDN/NFV-based moving target DDoS defense mechanism

Chien Chang Liu, Bo Sheng Huang, Chia Wei Tseng, Yao Tsung Yang, Li Der Chou

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

15 Scopus citations

Abstract

The rapid development of internet technology makes the hacker’s attack more mature and diversified. One of the most serious security problems is distributed denial of service (DDoS) attack. In order to cope with information security issues, a new form of defensive thinking, moving target defense (MTD), has been proposed. The emergence of new network architecture software defined network (SDN) and network function virtualization (NFV) - has also changed the future of network security schemes. In this paper, an SDN/NFV-based moving target DDoS defense mechanism using multiple fuzzy systems and a proxy virtual network function (VNF) is proposed to achieve DDoS detection and mitigation. The experimental results show that the proposed mechanism can redirect suspicious traffic and quarantine it, thereby shifting the attack surface.

Original languageEnglish
Title of host publicationRecent Trends in Data Science and Soft Computing - Proceedings of the 3rd International Conference of Reliable Information and Communication Technology IRICT 2018
EditorsFathey Mohammed, Faisal Saeed, Nadhmi Gazem, Abdelsalam Busalim
PublisherSpringer Verlag
Pages548-556
Number of pages9
ISBN (Print)9783319990064
DOIs
StatePublished - 2019
Event3rd International Conference of Reliable Information and Communication Technology, IRICT 2018 - Kuala Lumpur, Malaysia
Duration: 23 Jun 201824 Jun 2018

Publication series

NameAdvances in Intelligent Systems and Computing
Volume843
ISSN (Print)2194-5357

Conference

Conference3rd International Conference of Reliable Information and Communication Technology, IRICT 2018
Country/TerritoryMalaysia
CityKuala Lumpur
Period23/06/1824/06/18

Keywords

  • Distributed denial of service
  • Fuzzy logic
  • Moving target defense
  • Network function virtualization
  • Software defined network

Fingerprint

Dive into the research topics of 'SDN/NFV-based moving target DDoS defense mechanism'. Together they form a unique fingerprint.

Cite this