BACKWARD: A Victim-Centric DDoS Detection and Mitigation Scheme in Programmable Data Plane

Seoyul Oh; Sol Han; Hochan Lee; Sangheon Pack

doi:10.1109/CCNC51644.2023.10059724

BACKWARD: A Victim-Centric DDoS Detection and Mitigation Scheme in Programmable Data Plane

Seoyul Oh, Sol Han, Hochan Lee, Sangheon Pack

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

2 Citations (Scopus)

Abstract

Most current volumetric DDoS detection and mitigation schemes utilizing data plane programmability are source-based, yet it is challenging to identify an attacker through source analysis because a large number of widespread sources are exploited by the attacker. In this paper, we propose BACKWARD, a victim-centric DDoS attack detection and mitigation scheme that first identifies the victim of the DDoS attack and then only blocks sources that contacted the victim. We implement BACKWARD using the P4 language and present experimental results, which show that BACKWARD is able to achieve higher accuracy in identifying and blocking the attackers compared to the source-based scheme.

Original language	English
Title of host publication	2023 IEEE 20th Consumer Communications and Networking Conference, CCNC 2023
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	989-990
Number of pages	2
ISBN (Electronic)	9781665497343
DOIs	https://doi.org/10.1109/CCNC51644.2023.10059724
Publication status	Published - 2023
Event	20th IEEE Consumer Communications and Networking Conference, CCNC 2023 - Las Vegas, United States Duration: 2023 Jan 8 → 2023 Jan 11

Publication series

Name	Proceedings - IEEE Consumer Communications and Networking Conference, CCNC
Volume	2023-January
ISSN (Print)	2331-9860

Conference

Conference	20th IEEE Consumer Communications and Networking Conference, CCNC 2023
Country/Territory	United States
City	Las Vegas
Period	23/1/8 → 23/1/11

Bibliographical note

Funding Information:
ACKNOWLEDGMENT This research was supported by the MSIT(Ministry of Science and ICT), Korea, under the ITRC(Information Technology Research Center) support program(IITP-2022-2021-0-01810) supervised by the IITP(Institute for Information Communications Technology Planning Evaluation) and in part by National Research Foundation (NRF) of Korea Grant funded by the Korean Government (MSIT) (No. 2020R1A2C3006786).

Publisher Copyright:
© 2023 IEEE.

Keywords

DDoS Attack
Network Security
P4
Programmable Data Planes

ASJC Scopus subject areas

Artificial Intelligence
Computer Networks and Communications
Computer Vision and Pattern Recognition
Electrical and Electronic Engineering

Access to Document

10.1109/CCNC51644.2023.10059724

Cite this

Oh, S., Han, S., Lee, H., & Pack, S. (2023). BACKWARD: A Victim-Centric DDoS Detection and Mitigation Scheme in Programmable Data Plane. In 2023 IEEE 20th Consumer Communications and Networking Conference, CCNC 2023 (pp. 989-990). (Proceedings - IEEE Consumer Communications and Networking Conference, CCNC; Vol. 2023-January). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/CCNC51644.2023.10059724

BACKWARD: A Victim-Centric DDoS Detection and Mitigation Scheme in Programmable Data Plane. / Oh, Seoyul; Han, Sol; Lee, Hochan et al.
2023 IEEE 20th Consumer Communications and Networking Conference, CCNC 2023. Institute of Electrical and Electronics Engineers Inc., 2023. p. 989-990 (Proceedings - IEEE Consumer Communications and Networking Conference, CCNC; Vol. 2023-January).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Oh, S, Han, S, Lee, H & Pack, S 2023, BACKWARD: A Victim-Centric DDoS Detection and Mitigation Scheme in Programmable Data Plane. in 2023 IEEE 20th Consumer Communications and Networking Conference, CCNC 2023. Proceedings - IEEE Consumer Communications and Networking Conference, CCNC, vol. 2023-January, Institute of Electrical and Electronics Engineers Inc., pp. 989-990, 20th IEEE Consumer Communications and Networking Conference, CCNC 2023, Las Vegas, United States, 23/1/8. https://doi.org/10.1109/CCNC51644.2023.10059724

Oh S, Han S, Lee H, Pack S. BACKWARD: A Victim-Centric DDoS Detection and Mitigation Scheme in Programmable Data Plane. In 2023 IEEE 20th Consumer Communications and Networking Conference, CCNC 2023. Institute of Electrical and Electronics Engineers Inc. 2023. p. 989-990. (Proceedings - IEEE Consumer Communications and Networking Conference, CCNC). doi: 10.1109/CCNC51644.2023.10059724

@inproceedings{905d9376132742d3ba27fb7826bfc8ca,

title = "BACKWARD: A Victim-Centric DDoS Detection and Mitigation Scheme in Programmable Data Plane",

abstract = "Most current volumetric DDoS detection and mitigation schemes utilizing data plane programmability are source-based, yet it is challenging to identify an attacker through source analysis because a large number of widespread sources are exploited by the attacker. In this paper, we propose BACKWARD, a victim-centric DDoS attack detection and mitigation scheme that first identifies the victim of the DDoS attack and then only blocks sources that contacted the victim. We implement BACKWARD using the P4 language and present experimental results, which show that BACKWARD is able to achieve higher accuracy in identifying and blocking the attackers compared to the source-based scheme.",

keywords = "DDoS Attack, Network Security, P4, Programmable Data Planes",

author = "Seoyul Oh and Sol Han and Hochan Lee and Sangheon Pack",

note = "Funding Information: ACKNOWLEDGMENT This research was supported by the MSIT(Ministry of Science and ICT), Korea, under the ITRC(Information Technology Research Center) support program(IITP-2022-2021-0-01810) supervised by the IITP(Institute for Information Communications Technology Planning Evaluation) and in part by National Research Foundation (NRF) of Korea Grant funded by the Korean Government (MSIT) (No. 2020R1A2C3006786). Publisher Copyright: {\textcopyright} 2023 IEEE.; 20th IEEE Consumer Communications and Networking Conference, CCNC 2023 ; Conference date: 08-01-2023 Through 11-01-2023",

year = "2023",

doi = "10.1109/CCNC51644.2023.10059724",

language = "English",

series = "Proceedings - IEEE Consumer Communications and Networking Conference, CCNC",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "989--990",

booktitle = "2023 IEEE 20th Consumer Communications and Networking Conference, CCNC 2023",

}

TY - GEN

T1 - BACKWARD

T2 - 20th IEEE Consumer Communications and Networking Conference, CCNC 2023

AU - Oh, Seoyul

AU - Han, Sol

AU - Lee, Hochan

AU - Pack, Sangheon

N1 - Funding Information: ACKNOWLEDGMENT This research was supported by the MSIT(Ministry of Science and ICT), Korea, under the ITRC(Information Technology Research Center) support program(IITP-2022-2021-0-01810) supervised by the IITP(Institute for Information Communications Technology Planning Evaluation) and in part by National Research Foundation (NRF) of Korea Grant funded by the Korean Government (MSIT) (No. 2020R1A2C3006786). Publisher Copyright: © 2023 IEEE.

PY - 2023

Y1 - 2023

N2 - Most current volumetric DDoS detection and mitigation schemes utilizing data plane programmability are source-based, yet it is challenging to identify an attacker through source analysis because a large number of widespread sources are exploited by the attacker. In this paper, we propose BACKWARD, a victim-centric DDoS attack detection and mitigation scheme that first identifies the victim of the DDoS attack and then only blocks sources that contacted the victim. We implement BACKWARD using the P4 language and present experimental results, which show that BACKWARD is able to achieve higher accuracy in identifying and blocking the attackers compared to the source-based scheme.

AB - Most current volumetric DDoS detection and mitigation schemes utilizing data plane programmability are source-based, yet it is challenging to identify an attacker through source analysis because a large number of widespread sources are exploited by the attacker. In this paper, we propose BACKWARD, a victim-centric DDoS attack detection and mitigation scheme that first identifies the victim of the DDoS attack and then only blocks sources that contacted the victim. We implement BACKWARD using the P4 language and present experimental results, which show that BACKWARD is able to achieve higher accuracy in identifying and blocking the attackers compared to the source-based scheme.

KW - DDoS Attack

KW - Network Security

KW - P4

KW - Programmable Data Planes

UR - https://www.scopus.com/pages/publications/85150633957

U2 - 10.1109/CCNC51644.2023.10059724

DO - 10.1109/CCNC51644.2023.10059724

M3 - Conference contribution

AN - SCOPUS:85150633957

T3 - Proceedings - IEEE Consumer Communications and Networking Conference, CCNC

SP - 989

EP - 990

BT - 2023 IEEE 20th Consumer Communications and Networking Conference, CCNC 2023

PB - Institute of Electrical and Electronics Engineers Inc.

Y2 - 8 January 2023 through 11 January 2023

ER -

BACKWARD: A Victim-Centric DDoS Detection and Mitigation Scheme in Programmable Data Plane

Abstract

Publication series

Conference

Bibliographical note

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this