Measurement Based Evaluation and Mitigation of Flood Attacks on a LAN Test-Bed

TytułMeasurement Based Evaluation and Mitigation of Flood Attacks on a LAN Test-Bed
Publication TypeConference Paper
Rok publikacji2023
AutorzyNasereddin M, Nakip M, Gelenbe E
Conference NameThe 48th IEEE Conference on Local Computer Networks
PublisherIEEE
Conference LocationDaytona Beach, Florida, USA
Słowa kluczoweCybersecurity, Internet of Things, Intrusion Detection and Mitigation, Local Area Networks, UDP Flood Attacks
Abstract

The IoT is vulnerable to network attacks, and Intrusion Detection Systems (IDS) can provide high attack detection accuracy and are easily installed in IoT Servers. However, IDS are seldom evaluated in operational conditions which are seriously impaired by attack overload. Thus a Local Area Network testbed is used to evaluate the impact of UDP Flood Attacks on an IoT Server, whose first line of defence is an accurate IDS. We show that attacks overload the multi-core Server and paralyze its IDS. Thus a mitigation scheme that detects attacks rapidly, and drops packets within milli-seconds after the attack begins, is proposed and experimentally evaluated.

DOI10.1109/LCN58197.2023.10223358

Plik PDF: 

Historia zmian

Data aktualizacji: 31/10/2023 - 15:10; autor zmian: Mohammed Nasereddin (mnasereddin@iitis.pl)