STONE: a stream-based DDoS defense framework

Callau-Zori, Mar and Jiménez-Peris, Ricardo and Gulisano, Vincenzo Massimiliano and Papatriantafilou, Marina and Fu, Zhang and Patiño-Martínez, Marta (2013). STONE: a stream-based DDoS defense framework. In: "28th Annual ACM Symposium on Applied Computing (SAC'13)", 18-22 Mar 2013, Coimbra, Portugal. ISBN 978-1-4503-1656-9. https://doi.org/10.1145/2480362.2480517.

Description

Title: STONE: a stream-based DDoS defense framework
Author/s:
  • Callau-Zori, Mar
  • Jiménez-Peris, Ricardo
  • Gulisano, Vincenzo Massimiliano
  • Papatriantafilou, Marina
  • Fu, Zhang
  • Patiño-Martínez, Marta
Item Type: Presentation at Congress or Conference (Unspecified)
Event Title: 28th Annual ACM Symposium on Applied Computing (SAC'13)
Event Dates: 18-22 Mar 2013
Event Location: Coimbra, Portugal
Title of Book: SAC'13: proceedings of the 28th Annual ACM Symposium on Applied Computing
Date: 2013
ISBN: 978-1-4503-1656-9
Subjects:
Freetext Keywords: DDoS - Detection and mitigation - Data streaming
Faculty: Facultad de Informática (UPM)
Department: Lenguajes y Sistemas Informáticos e Ingeniería del Software
Creative Commons Licenses: Recognition - No derivative works - Non commercial

Full text

[img]
Preview
PDF - Requires a PDF viewer, such as GSview, Xpdf or Adobe Acrobat Reader
Download (826kB) | Preview

Abstract

An effective Distributed Denial of Service (DDoS) defense mechanism must guarantee legitimate users access to an Internet service masking the effects of possible attacks. That is, it must be able to detect threats and discard malicious packets in a online fashion. Given that emerging data streaming technology can enable such mitigation in an effective manner, in this paper we present STONE, a stream-based DDoS defense framework, which integrates anomaly-based DDoS detection and mitigation with scalable data streaming technology. With STONE, the traffic of potential targets is analyzed via continuous data streaming queries maintaining information used for both attack detection and mitigation. STONE provides minimal degradation of legitimate users traffic during DDoS attacks and it also faces effectively flash crowds. Our preliminary evaluation based on an implemented prototype and conducted with real legitimate and malicious traffic traces shows that STONE is able to provide fast detection and precise mitigation of DDoS attacks leveraging scalable data streaming technology.

More information

Item ID: 29940
DC Identifier: http://oa.upm.es/29940/
OAI Identifier: oai:oa.upm.es:29940
DOI: 10.1145/2480362.2480517
Official URL: http://dl.acm.org/citation.cfm?id=2480362.2480517
Deposited by: Memoria Investigacion
Deposited on: 26 Jun 2014 13:27
Last Modified: 23 Nov 2017 10:24
  • Logo InvestigaM (UPM)
  • Logo GEOUP4
  • Logo Open Access
  • Open Access
  • Logo Sherpa/Romeo
    Check whether the anglo-saxon journal in which you have published an article allows you to also publish it under open access.
  • Logo Dulcinea
    Check whether the spanish journal in which you have published an article allows you to also publish it under open access.
  • Logo de Recolecta
  • Logo del Observatorio I+D+i UPM
  • Logo de OpenCourseWare UPM