A sliding window based monitoring scheme to detect and prevent ddos attack in data center networks in a dynamic traffic environment

Mirza Mohd Shahriar Maswood, Md Mainul Islam Mamun, Dijiang Huang, Deep Medhi

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

Distributed Denial of Service (DDoS) attack is the most common type of attack faced by today's data centers (DC). Such attacks can have a devastating impact on the system as it consumes resources like network bandwidth, hard disk storage, and CPU processing resources. As a consequence, the legitimate customers face more service blocking due to a major portion of the resources being occupied by the illegitimate traffic generated by the attackers. In this paper, we proposed a novel monitoring scheme based on the sliding window to detect and prevent the DDoS attack in DCs that serve enterprise customers that has low computational complexity. Compared to a benchmark scheme (without attack monitoring and preventing), our scheme ensures service provisioning for the legitimate customers with no false alarm. We also measure the robustness of our scheme in terms of the time taken to detect and prevent attack traffic by varying the traffic intensities of illegitimate traffic. Simulation results show that our scheme can successfully detect the attack even if the attack traffic intensity is not too much higher than the projected legitimate traffic intensity.

Original languageEnglish (US)
Title of host publication2018 IEEE 39th Sarnoff Symposium, Sarnoff 2018
PublisherInstitute of Electrical and Electronics Engineers Inc.
ISBN (Electronic)9781538661543
DOIs
StatePublished - May 22 2019
Event39th IEEE Sarnoff Symposium, Sarnoff 2018 - Newark, United States
Duration: Sep 24 2018Sep 25 2018

Publication series

Name2018 IEEE 39th Sarnoff Symposium, Sarnoff 2018

Conference

Conference39th IEEE Sarnoff Symposium, Sarnoff 2018
CountryUnited States
CityNewark
Period9/24/189/25/18

Keywords

  • Data Center Networks
  • Distributed Denial of Service Attack
  • Dynamic Traffic Engineering
  • Service Blocking

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Hardware and Architecture
  • Information Systems and Management
  • Safety, Risk, Reliability and Quality

Fingerprint Dive into the research topics of 'A sliding window based monitoring scheme to detect and prevent ddos attack in data center networks in a dynamic traffic environment'. Together they form a unique fingerprint.

  • Cite this

    Maswood, M. M. S., Mamun, M. M. I., Huang, D., & Medhi, D. (2019). A sliding window based monitoring scheme to detect and prevent ddos attack in data center networks in a dynamic traffic environment. In 2018 IEEE 39th Sarnoff Symposium, Sarnoff 2018 [8720399] (2018 IEEE 39th Sarnoff Symposium, Sarnoff 2018). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/SARNOF.2018.8720399