Abstract
DNS amplification is a type of reflection-based DDoS attacks, and they are very hazardous for the reliability of victims within the network. To prevent or mitigate such attacks, a significant amount of work is being done both on conventional networks and on SDN-based networks. This study aimed to detect and reduce the effects of DNS amplification attacks in SDN-based with the developed system. This system aims to monitor the variations in the amplification factor and TTL header to initiate mitigation and sustain the victim's life. It also ensures that legitimate packets are not suspected in the process. In doing so, it is aimed to generate alarms and mitigation by using the central management feature of SDN, by writing the metrics into a time series database immediately. Experimental results show that this system can be used SDN-based networks and prevent an attack in reactively. It has also been observed that it can be used not only for DNS amplification attacks but also for other UDP-based amplification/reflection attacks.
Original language | English |
---|---|
Title of host publication | 3rd International Symposium on Multidisciplinary Studies and Innovative Technologies, ISMSIT 2019 - Proceedings |
Publisher | Institute of Electrical and Electronics Engineers Inc. |
ISBN (Electronic) | 9781728137896 |
DOIs | |
Publication status | Published - Oct 2019 |
Externally published | Yes |
Event | 3rd International Symposium on Multidisciplinary Studies and Innovative Technologies, ISMSIT 2019 - Ankara, Turkey Duration: 11 Oct 2019 → 13 Oct 2019 |
Publication series
Name | 3rd International Symposium on Multidisciplinary Studies and Innovative Technologies, ISMSIT 2019 - Proceedings |
---|
Conference
Conference | 3rd International Symposium on Multidisciplinary Studies and Innovative Technologies, ISMSIT 2019 |
---|---|
Country/Territory | Turkey |
City | Ankara |
Period | 11/10/19 → 13/10/19 |
Bibliographical note
Publisher Copyright:© 2019 IEEE.
Keywords
- Amplifi-cation Factor
- DDoS
- DNS Amplification
- SDN
- TTL