1. Software defined network-based HTTP flooding attack defender.
- Author
-
Mohammadi, Reza, Lal, Chhagan, Conti, Mauro, and Sharma, Lokesh
- Subjects
- *
DENIAL of service attacks , *SOFTWARE-defined networking , *HTTP (Computer network protocol) , *INTERNET servers , *COMPUTER software - Abstract
In recent years, the explosive growth of the Internet has led to an increment in the number of Distributed Denial of Service (DDoS) attacks. HTTP Flooding is a critical DDoS attack that targets HTTP servers to prohibit users from receiving HTTP services. Moreover, it saturates the link bandwidth and consumes network resources. Because the attack is launched at the application layer, it is difficult to defend against it using current countermeasures such as firewall or Intrusion Prevention System (IPS). In this paper, we propose SHFD , which leverages the Software-Defined Networking (SDN) paradigm to mitigate HTTP flooding attacks. We implement SHFD as a defender module on the SDN controller to detect and mitigate the attack in the first place. Experimental results gathered from Mininet confirm that SHFD brings a significant improvement of 13% in detection time and 29% in the number of blocked malicious flows compared to the state-of-the-art approaches. [Display omitted] • SHFD is proposed for mitigating slow and high rate HTTP flooding attacks in SDN-based networks. • Shannon's Entropy and Hellinger distance methods are used in SHFD to provide more accurate results. • Both slow/high rate HTTP flooding attack together with their side effects are explained in details. [ABSTRACT FROM AUTHOR]
- Published
- 2022
- Full Text
- View/download PDF