SDN-Assisted Slow HTTP DDoS Attack Defense Method

Kiwon Hong; Youngjun Kim; Hyungoo Choi; Jinwoo Park

doi:10.1109/LCOMM.2017.2766636

SDN-Assisted Slow HTTP DDoS Attack Defense Method

Kiwon Hong, Youngjun Kim, Hyungoo Choi, Jinwoo Park

School of Electrical Engineering

Research output: Contribution to journal › Article › peer-review

37 Citations (Scopus)

Abstract

A Slow HTTP distributed denial of service (DDoS) attack causes a Web server to be unavailable, but it is difficult to detect in a network, because its traffic patterns are similar to those of legitimate clients. In this letter, we propose a network-based Slow HTTP DDoS attack defense method, which is assisted by a software-defined network that can detect and mitigate Slow HTTP DDoS attacks in the network. Simulation results show that the proposed Slow HTTP DDoS attack defense method successfully protects Web servers against Slow HTTP DDoS attacks.

Original language	English
Pages (from-to)	688-691
Number of pages	4
Journal	IEEE Communications Letters
Volume	22
Issue number	4
DOIs	https://doi.org/10.1109/LCOMM.2017.2766636
Publication status	Published - 2018 Apr

Keywords

Distributed denial of service (DDoS)
slow HTTP DDoS
software-defined networking (SDN)

ASJC Scopus subject areas

Modelling and Simulation
Computer Science Applications
Electrical and Electronic Engineering

Access to Document

10.1109/LCOMM.2017.2766636

Fingerprint Dive into the research topics of 'SDN-Assisted Slow HTTP DDoS Attack Defense Method'. Together they form a unique fingerprint.

Cite this

@article{8e1fda6ffe784888af6931b806fad3f4,

title = "SDN-Assisted Slow HTTP DDoS Attack Defense Method",

abstract = "A Slow HTTP distributed denial of service (DDoS) attack causes a Web server to be unavailable, but it is difficult to detect in a network, because its traffic patterns are similar to those of legitimate clients. In this letter, we propose a network-based Slow HTTP DDoS attack defense method, which is assisted by a software-defined network that can detect and mitigate Slow HTTP DDoS attacks in the network. Simulation results show that the proposed Slow HTTP DDoS attack defense method successfully protects Web servers against Slow HTTP DDoS attacks.",

keywords = "Distributed denial of service (DDoS), slow HTTP DDoS, software-defined networking (SDN)",

author = "Kiwon Hong and Youngjun Kim and Hyungoo Choi and Jinwoo Park",

note = "Funding Information: Manuscript received September 25, 2017; accepted October 20, 2017. Date of publication October 26, 2017; date of current version April 7, 2018. This work was supported by Institute for Information & communications Technology Promotion(IITP) grant funded by the Korea government (MSIT) (No. 2013-0-00405, Development of Device Collaborative Giga-Level Smart Cloudlet Technology). The associate editor coordinating the review of this paper and approving it for publication was L. Galluccio. (Corresponding author: Jinwoo Park.) The authors are with the School of Electrical Engineering, Korea University, Seoul 02841, South Korea (e-mail: shalaman@korea.ac.kr; yeongjun2@korea.ac.kr; hyungoo0215@korea.ac.kr; jwpark@korea.ac.kr). Digital Object Identifier 10.1109/LCOMM.2017.2766636",

year = "2018",

month = apr,

doi = "10.1109/LCOMM.2017.2766636",

language = "English",

volume = "22",

pages = "688--691",

journal = "IEEE Communications Letters",

issn = "1089-7798",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

number = "4",

}

TY - JOUR

T1 - SDN-Assisted Slow HTTP DDoS Attack Defense Method

AU - Hong, Kiwon

AU - Kim, Youngjun

AU - Choi, Hyungoo

AU - Park, Jinwoo

N1 - Funding Information: Manuscript received September 25, 2017; accepted October 20, 2017. Date of publication October 26, 2017; date of current version April 7, 2018. This work was supported by Institute for Information & communications Technology Promotion(IITP) grant funded by the Korea government (MSIT) (No. 2013-0-00405, Development of Device Collaborative Giga-Level Smart Cloudlet Technology). The associate editor coordinating the review of this paper and approving it for publication was L. Galluccio. (Corresponding author: Jinwoo Park.) The authors are with the School of Electrical Engineering, Korea University, Seoul 02841, South Korea (e-mail: shalaman@korea.ac.kr; yeongjun2@korea.ac.kr; hyungoo0215@korea.ac.kr; jwpark@korea.ac.kr). Digital Object Identifier 10.1109/LCOMM.2017.2766636

PY - 2018/4

Y1 - 2018/4

N2 - A Slow HTTP distributed denial of service (DDoS) attack causes a Web server to be unavailable, but it is difficult to detect in a network, because its traffic patterns are similar to those of legitimate clients. In this letter, we propose a network-based Slow HTTP DDoS attack defense method, which is assisted by a software-defined network that can detect and mitigate Slow HTTP DDoS attacks in the network. Simulation results show that the proposed Slow HTTP DDoS attack defense method successfully protects Web servers against Slow HTTP DDoS attacks.

AB - A Slow HTTP distributed denial of service (DDoS) attack causes a Web server to be unavailable, but it is difficult to detect in a network, because its traffic patterns are similar to those of legitimate clients. In this letter, we propose a network-based Slow HTTP DDoS attack defense method, which is assisted by a software-defined network that can detect and mitigate Slow HTTP DDoS attacks in the network. Simulation results show that the proposed Slow HTTP DDoS attack defense method successfully protects Web servers against Slow HTTP DDoS attacks.

KW - Distributed denial of service (DDoS)

KW - slow HTTP DDoS

KW - software-defined networking (SDN)

UR - http://www.scopus.com/inward/record.url?scp=85032448689&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85032448689&partnerID=8YFLogxK

U2 - 10.1109/LCOMM.2017.2766636

DO - 10.1109/LCOMM.2017.2766636

M3 - Article

AN - SCOPUS:85032448689

VL - 22

SP - 688

EP - 691

JO - IEEE Communications Letters

JF - IEEE Communications Letters

SN - 1089-7798

IS - 4

ER -