TY - GEN
T1 - Protecting Resources Against Volumetric and Non-volumetric Network Attacks
AU - Biswas, Rajorshi
AU - Wu, Jie
N1 - Funding Information:
This research was supported by NSF grants CNS 2128378, CNS 2107014, CNS 1824440, CNS 1828363, CNS 1757533, CNS 1629746, and CNS 1651947.
Publisher Copyright:
© 2021 IEEE.
PY - 2021
Y1 - 2021
N2 - Cyber attacks are growing with the increase in internet usage. In a volumetric attack, the target resource is taken down with a huge amount of traffic. Distributed denial-of-service and link flooding attacks are examples of these types of attacks. In a non-volumetric attack, the attackers try to steal or get illegal authorization of some resources in a network. This type of attack can be severe even with a small amount of traffic. Non-volumetric attacks can be stopped by applying a moving target defense approach at the nodes on the attack path. An attack path is a series of steps and the attacker needs to succeed in all of those steps to gain access to the resources. In this paper, we propose an architecture to defend against both types of attacks. We formulate a problem to minimize the damage caused by the volumetric attack by using a limited number of blockage at some routers. This problem is NP-hard and we provide a greedy solution and provide an approximation ratio of it. We formulate another optimization problem to minimize the damage while securing the resources by deploying the minimum number of moving target defense methods. We provide a dynamic programming based solution to this problem. We conduct an extensive simulation to support our proposed models.
AB - Cyber attacks are growing with the increase in internet usage. In a volumetric attack, the target resource is taken down with a huge amount of traffic. Distributed denial-of-service and link flooding attacks are examples of these types of attacks. In a non-volumetric attack, the attackers try to steal or get illegal authorization of some resources in a network. This type of attack can be severe even with a small amount of traffic. Non-volumetric attacks can be stopped by applying a moving target defense approach at the nodes on the attack path. An attack path is a series of steps and the attacker needs to succeed in all of those steps to gain access to the resources. In this paper, we propose an architecture to defend against both types of attacks. We formulate a problem to minimize the damage caused by the volumetric attack by using a limited number of blockage at some routers. This problem is NP-hard and we provide a greedy solution and provide an approximation ratio of it. We formulate another optimization problem to minimize the damage while securing the resources by deploying the minimum number of moving target defense methods. We provide a dynamic programming based solution to this problem. We conduct an extensive simulation to support our proposed models.
UR - http://www.scopus.com/inward/record.url?scp=85129900916&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85129900916&partnerID=8YFLogxK
U2 - 10.1109/ICPADS53394.2021.00054
DO - 10.1109/ICPADS53394.2021.00054
M3 - Conference contribution
AN - SCOPUS:85129900916
T3 - Proceedings of the International Conference on Parallel and Distributed Systems - ICPADS
SP - 387
EP - 395
BT - Proceedings - 2021 IEEE 27th International Conference on Parallel and Distributed Systems, ICPADS 2021
PB - IEEE Computer Society
T2 - 27th IEEE International Conference on Parallel and Distributed Systems, ICPADS 2021
Y2 - 14 December 2021 through 16 December 2021
ER -