Header

UZH-Logo

Maintenance Infos

Deciphering DDoS Attacks Through a Global Lens


Brunner, Jonas; Rodrigues, Bruno; Müller, Katharina O E; Kanhere, Salil S; Stiller, Burkhard (2023). Deciphering DDoS Attacks Through a Global Lens. In: 2023 19th International Conference on Network and Service Management (CNSM), Niagara Falls, ON, Canada, 30 October 2023 - 2 November 2023, Institute of Electrical and Electronics Engineers.

Abstract

With a rising frequency and scale, Distributed Denial-of-Service (DDoS) attacks persist as a critical cybersecurity issue. While shared attack fingerprints aid many intrusion detection systems in identifying threats, their application for DDoS attacks remains limited due to their distinct nature. However, fingerprints observed from multiple locations can provide valuable insights. This paper presents Reassembler, a novel platform for achieving a global DDoS attack analysis using attack fingerprints recorded from various locations. Reassembler consolidates these fingerprints into a unified view allowing to obtain a global overview of DDoS attacks. The evaluation, conducted on four simulated scenarios, demonstrates Reassembler's ability to extract novel properties, such as the count of intermediate nodes and the estimated percentage of spoofed IPs.

Abstract

With a rising frequency and scale, Distributed Denial-of-Service (DDoS) attacks persist as a critical cybersecurity issue. While shared attack fingerprints aid many intrusion detection systems in identifying threats, their application for DDoS attacks remains limited due to their distinct nature. However, fingerprints observed from multiple locations can provide valuable insights. This paper presents Reassembler, a novel platform for achieving a global DDoS attack analysis using attack fingerprints recorded from various locations. Reassembler consolidates these fingerprints into a unified view allowing to obtain a global overview of DDoS attacks. The evaluation, conducted on four simulated scenarios, demonstrates Reassembler's ability to extract novel properties, such as the count of intermediate nodes and the estimated percentage of spoofed IPs.

Statistics

Citations

Dimensions.ai Metrics

Altmetrics

Downloads

0 downloads since deposited on 09 Feb 2024
0 downloads since 12 months

Additional indexing

Item Type:Conference or Workshop Item (Paper), refereed, original work
Communities & Collections:03 Faculty of Economics > Department of Informatics
Dewey Decimal Classification:000 Computer science, knowledge & systems
Scopus Subject Areas:Physical Sciences > Computer Networks and Communications
Physical Sciences > Artificial Intelligence
Physical Sciences > Information Systems
Social Sciences & Humanities > Information Systems and Management
Physical Sciences > Safety, Risk, Reliability and Quality
Uncontrolled Keywords:Intrusion detection; Fingerprint recognition; Denial-of-service attack; Lenses; Distributed Denial-of-Service; Attack Fingerprints; Cooperative Defense
Scope:Discipline-based scholarship (basic research)
Language:English
Event End Date:2 November 2023
Deposited On:09 Feb 2024 08:12
Last Modified:06 Mar 2024 14:41
Publisher:Institute of Electrical and Electronics Engineers
Series Name:Proceedings of the International Conference on Network and Service Management (CNSM)
ISSN:2165-963X
ISBN:978-3-903176-59-1
OA Status:Closed
Publisher DOI:https://doi.org/10.23919/cnsm59352.2023.10327886
Other Identification Number:merlin-id:24397