Your search keyword '"Abdullah Ahmed Bahashwan"' showing total 4 results

1. Flow-Based Approach to Detect Abnormal Behavior in Neighbor Discovery Protocol (NDP)

Author

Abdullah Ahmed Bahashwan, Ali Abdulqader Bin-Salem, Iznan H. Hasbullah, Mohammed Anbar, and Ziyad R. Alashhab

Subjects

Routing protocol, General Computer Science, Computer science, computer.internet_protocol, entropy algorithm, 02 engineering and technology, Intrusion detection systems (IDS), 01 natural sciences, RA~DoS flooding attack, Neighbor Discovery Protocol, law.invention, NDP traffic abnormalities, law, Internet Protocol, 0202 electrical engineering, electronic engineering, information engineering, General Materials Science, Network performance, 0101 mathematics, Electrical and Electronic Engineering, Stateless protocol, Authentication, business.industry, 010102 general mathematics, ComputerSystemsOrganization_COMPUTER-COMMUNICATIONNETWORKS, General Engineering, NS~DoS flooding attack, IPv6, Flooding (computer networking), network traffic representation, 020201 artificial intelligence & image processing, lcsh:Electrical engineering. Electronics. Nuclear engineering, business, computer, lcsh:TK1-9971, Computer network

Abstract

Internet Protocol version six (IPv6) is equipped with new protocols, such as the Neighbor Discovery Protocol (NDP). NDP is a stateless protocol without authentication that makes it vulnerable to many types of attacks, such as Router Advertisement (RA) and Neighbour Solicitation (NS) DoS flooding attacks. In these types of attacks, attackers send an enormous volume of abnormal NDP traffic, which causes congestion that degrades network performance. The expected behavior among these attacks is the existence of NDP traffic abnormalities. Thus, this research aims to propose a flow-based approach to detect abnormal NDP traffic behavior, which is considered an indicator of the presence of NDP-based attacks, such as RA and NS DoS flooding attacks. Also, the proposed approach relies on flow-based network traffic representation and adoption of the Entropy algorithm to detect the randomness in the network traffic. The proposed approach is evaluated in terms of detection accuracy, precision, recall, and F1-Score using a simulated dataset. The experimental result shows that the proposed approach obtained 98.1%, 55%, 100%, and 70.96% for average accuracy, precision, recall, and F1-Score, respectively, in detecting abnormal NDP traffic behavior caused by the RA DoS flooding attack. Meanwhile, the proposed approach obtained 99%, 91.3%, 100%, and 95.45% for average accuracy, precision, recall, and F1-Score, respectively, in detecting the abnormal NDP traffic behavior caused by the NS DoS flooding attack. Also, the proposed approach shows better results compared to other existing approaches.

Published

2021

2. Review on Common IoT Communication Technologies for Both Long-Range Network (LPWAN) and Short-Range Network

Author

Tawfik Al-Hadhrami, Nibras Abdullah, Abdullah Ahmed Bahashwan, Sabri M. Hanshi, and Mohammed Anbar

Subjects

LPWAN, business.product_category, Computer science, business.industry, Z-Wave, law.invention, Bluetooth, law, Cellular network, Internet access, Wireless, business, Data transmission, Computer network, Efficient energy use

Abstract

The Internet of Things refers to network of physical objects that use IP address for Internet connectivity and to communicate with other Internet-enabled devices and systems. The Internet of Things comes with a number of top-class applications and has also developed many things into smart devices. The enhanced objects would ultimately need to have better connectivity and wireless communication protocols with low power consumption. Hence, this chapter presents the survey which gives a picture of the current state of the art on conventional wireless technologies used in most IoT devices, as well as to select the most suitable common IoT communication technologies that can ensure uninterrupted connection and support real-time data transmission in energy efficient form. Also, this chapter contributed a comprehensive comparison for both long-range and short-range common IoT communication technologies that are used in different applications.

Published

2020

3. Overview of IPv6 Based DDoS and DoS Attacks Detection Mechanisms

Author

Sabri M. Hanshi, Mohammed Anbar, and Abdullah Ahmed Bahashwan

Subjects

Stateless protocol, business.industry, computer.internet_protocol, Computer science, ComputerSystemsOrganization_COMPUTER-COMMUNICATIONNETWORKS, Denial-of-service attack, Intrusion detection system, Computer security, computer.software_genre, Neighbor Discovery Protocol, IPv6, law.invention, Network congestion, law, Internet Protocol, The Internet, business, computer

Abstract

In recent years, the number of Internet users and devices are rapidly increased. For this reason, the Internet Assigned Number Authority (IANA) launched a new protocol called Internet Protocol version six (IPv6) next generation. The IPv6 provides new features that fit the internet revolution. IPv6 is equipped with new protocols such as Neighbor Discovery Protocol (NDP) and Internet Control Messages protocol version six (ICMPv6). In fact, ICMPv6 is considered as the backbone of the IPv6 protocol since it is responsible for many key functions like the NDP process. In addition, the NDP protocol is a stateless protocol that gives the lack of authentication to NDP messages, which is vulnerable to many types of attacks such as Distributed Denial of Services (DDoS) and Denial of Services (DoS) flooding attacks. In this type of attacks, the attacker sends an enormous volume of abnormal traffic to increase network congestion and break down the network. Under those circumstances, the first line of defense in a network has been supplemented by additional devices and tools that supervise the network activities and monitor the network traffic behaviors as well as to stop unauthorized intrusions. Overall, the aim of this review paper is to give pure thoughts about the IPv6 features and the most important related protocols like ICMPv6 protocol and NDP protocol. Also, this article discusses DDoS and DoS attack based on ICMPv6 protocol. Likewise, this article gives a comprehensive review of the IPv6 Intrusion Detection Systems based on DDoS & DoS attacks with their features and security limitations.

Published

2020

4. New Architecture Design of Cloud Computing Using Software Defined Networking and Network Function Virtualization Technology

Author

Nibras Abdullah, Mohammed Anbar, and Abdullah Ahmed Bahashwan

Subjects

Service (systems architecture), Resource (project management), Network Functions Virtualization, Computer science, business.industry, Server, The Internet, Cloud computing, Architecture design, business, Software-defined networking, Computer network

Abstract

Cloud computing is a new technology model that consists of a pool of configurable resource and multiple data centers in distributed areas. It offers a service over the internet for users using virtual data, and who share resources for storing and accessing data from anywhere. Cloud computing supports big-scale platforms that consist of thousands of servers and hundreds of switches. Currently, the cloud is suffering from many issues in term of management, security and other essential aspects. This paper discusses integrating Software Defined Networking (SDN), with Network Function Virtualization (NFV) based on cloud computing, to eliminate some of the existing security issues faced by cloud computing. This research paper proposes a new architecture design by taking advantage of the NFV technology to build a virtual security mechanism such as Network Intrusion Detection System (NIDS).

Published

2019