SDN-based Detection and Mitigation System for DNS Amplification Attacks

Kaan Ozdincer, Haci Ali Mantar

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

9 Citations (Scopus)

Abstract

DNS amplification is a type of reflection-based DDoS attacks, and they are very hazardous for the reliability of victims within the network. To prevent or mitigate such attacks, a significant amount of work is being done both on conventional networks and on SDN-based networks. This study aimed to detect and reduce the effects of DNS amplification attacks in SDN-based with the developed system. This system aims to monitor the variations in the amplification factor and TTL header to initiate mitigation and sustain the victim's life. It also ensures that legitimate packets are not suspected in the process. In doing so, it is aimed to generate alarms and mitigation by using the central management feature of SDN, by writing the metrics into a time series database immediately. Experimental results show that this system can be used SDN-based networks and prevent an attack in reactively. It has also been observed that it can be used not only for DNS amplification attacks but also for other UDP-based amplification/reflection attacks.

Original languageEnglish
Title of host publication3rd International Symposium on Multidisciplinary Studies and Innovative Technologies, ISMSIT 2019 - Proceedings
PublisherInstitute of Electrical and Electronics Engineers Inc.
ISBN (Electronic)9781728137896
DOIs
Publication statusPublished - Oct 2019
Externally publishedYes
Event3rd International Symposium on Multidisciplinary Studies and Innovative Technologies, ISMSIT 2019 - Ankara, Turkey
Duration: 11 Oct 201913 Oct 2019

Publication series

Name3rd International Symposium on Multidisciplinary Studies and Innovative Technologies, ISMSIT 2019 - Proceedings

Conference

Conference3rd International Symposium on Multidisciplinary Studies and Innovative Technologies, ISMSIT 2019
Country/TerritoryTurkey
CityAnkara
Period11/10/1913/10/19

Bibliographical note

Publisher Copyright:
© 2019 IEEE.

Keywords

  • Amplifi-cation Factor
  • DDoS
  • DNS Amplification
  • SDN
  • TTL

Fingerprint

Dive into the research topics of 'SDN-based Detection and Mitigation System for DNS Amplification Attacks'. Together they form a unique fingerprint.

Cite this