Dynamic game based security framework in SDN-enabled cloud networking environments

Ankur Chowdhary, Adel Alshamrani, Sandeep Pisharody, Dijiang Huang

Research output: Chapter in Book/Report/Conference proceedingConference contribution

9 Scopus citations

Abstract

SDN provides a way to manage complex networks by introducing programmability and abstraction of the control plane. All networks suffer from attacks to critical infrastructure and services such as DDoS attacks. We make use of the programmability provided by the SDN environment to provide a game theoretic attack analysis and countermeasure selection model in this research work. The model is based on reward and punishment in a dynamic game with multiple players. The network bandwidth of attackers is downgraded for a certain period of time, and restored to normal when the player resumes cooperation. The presented solution is based on Nash Folk Theorem, which is used to implement a punishment mechanism for attackers who are part of DDoS traffic, and reward for players who cooperate, in effect enforcing desired outcome for the network administrator.

Original languageEnglish (US)
Title of host publicationSDN-NFVSec 2017 - Proceedings of the ACM International Workshop on Security in Software Defined Networks and Network Function Virtualization, co-located with CODASPY 2017
PublisherAssociation for Computing Machinery, Inc
Pages53-58
Number of pages6
ISBN (Electronic)9781450349086
DOIs
Publication statusPublished - Mar 24 2017
Event2017 ACM International Workshop on Security in Software Defined Networks and Network Function Virtualization, SDN-NFVSec 2017 - Scottsdale, United States
Duration: Mar 24 2017 → …

Other

Other2017 ACM International Workshop on Security in Software Defined Networks and Network Function Virtualization, SDN-NFVSec 2017
CountryUnited States
CityScottsdale
Period3/24/17 → …

    Fingerprint

Keywords

  • Cloud systems
  • Distributed Denial of Service (DDoS)
  • Game theory
  • Moving Target Defense (MTD)
  • Software Defined Networking (SDN)

ASJC Scopus subject areas

  • Software
  • Computer Science Applications
  • Information Systems

Cite this

Chowdhary, A., Alshamrani, A., Pisharody, S., & Huang, D. (2017). Dynamic game based security framework in SDN-enabled cloud networking environments. In SDN-NFVSec 2017 - Proceedings of the ACM International Workshop on Security in Software Defined Networks and Network Function Virtualization, co-located with CODASPY 2017 (pp. 53-58). Association for Computing Machinery, Inc. https://doi.org/10.1145/3040992.3040998