English
Related papers

Related papers: CHAOS: an SDN-based Moving Target Defense System

200 papers

This work proposes a moving target defense (MTD) strategy to detect coordinated cyber-physical attacks (CCPAs) against power grids. A CCPA consists of a physical attack, such as disconnecting a transmission line, followed by a coordinated…

Cryptography and Security · Computer Science 2019-08-08 Subhash Lakshminarayana , E. Veronica Belmega , H. Vincent Poor

Slow-running attacks against network applications are often not easy to detect, as the attackers behave according to the specification. The servers of many network applications are not prepared for such attacks, either due to missing…

Cryptography and Security · Computer Science 2018-04-19 Thomas Lukaseder , Lisa Maile , Benjamin Erb , Frank Kargl

Software Defined Networking (SDN) enables flexible and scalable network control and management. However, it also introduces new vulnerabilities that can be exploited by attackers. In particular, low-rate and slow or stealthy…

Networking and Internet Architecture · Computer Science 2019-09-05 Trung V. Phan , T M Rayhan Gias , Syed Tasnimul Islam , Truong Thu Huong , Nguyen Huu Thanh , Thomas Bauschert

Centralized Software-Defined Networking (cSDN) offers flexible and programmable control of networks but suffers from scalability and reliability issues due to its reliance on centralized controllers. Decentralized SDN (dSDN) alleviates…

Cryptography and Security · Computer Science 2025-11-04 Mohammed N. Swileh , Shengli Zhang

Protecting the networks of tomorrow is set to be a challenging domain due to increasing cyber security threats and widening attack surfaces created by the Internet of Things (IoT), increased network heterogeneity, increased use of…

Cryptography and Security · Computer Science 2020-03-10 Jordan Lam , Robert Abbas

This work proposes a moving target defense (MTD) strategy to detect coordinated cyber-physical attacks (CCPAs) against power grids. The main idea of the proposed approach is to invalidate the knowledge that the attackers use to mask the…

Cryptography and Security · Computer Science 2021-07-28 Subhash Lakshminarayana , E. Veronica Belmega , H. Vincent Poor

Machine learning (ML)-based detectors have been shown to be effective in detecting stealthy false data injection attacks (FDIAs) that can bypass conventional bad data detectors (BDDs) in power systems. However, ML models are also vulnerable…

Systems and Control · Electrical Eng. & Systems 2025-04-07 Yexiang Chen , Subhash Lakshminarayana , H. Vincent Poor

Network attacks have became increasingly more sophisticated and stealthy due to the advances in technologies and the growing sophistication of attackers. Advanced Persistent Threats (APTs) are a type of attack that implement a wide range of…

Cryptography and Security · Computer Science 2024-04-02 Abdullah H Alqahtani

Distributed Denial of Service (DDoS) attacks have plagued the Internet for decades, but the basic defense approaches have not fundamentally changed. Rather, the size and rate of growth in attacks have actually outpaced carriers' and DDoS…

Cryptography and Security · Computer Science 2021-04-14 Zhiyi Zhang , Vishrant Vasavada , Siva Kesava Reddy Kakarla , Angelos Stavrou , Eric Osterweil , Lixia Zhang

The open radio access network (O-RAN) architecture's native virtualization and embedded intelligence facilitate RAN slicing and enable comprehensive end-to-end services in post-5G networks. However, any vulnerabilities could harm security.…

Cryptography and Security · Computer Science 2023-09-26 Mojdeh Karbalaee Motalleb , Chafika Benzaïd , Tarik Taleb , Vahid Shah-Mansouri

Ransomware has remained one of the most notorious threats in the cybersecurity field. Moving Target Defense (MTD) has been proposed as a novel paradigm for proactive defense. Although various approaches leverage MTD, few of them rely on the…

Cryptography and Security · Computer Science 2023-11-17 Jan von der Assen , Alberto Huertas Celdrán , Rinor Sefa , Gérôme Bovet , Burkhard Stiller

Distributed Denial of Service (DDoS) attacks have emerged as a popular means of causing mass targeted service disruptions, often for extended periods of time. The relative ease and low costs of launching such attacks, supplemented by the…

Cryptography and Security · Computer Science 2011-03-18 Jaydip Sen

With the increasing diversity of Distributed Denial-of-Service (DDoS) attacks, it is becoming extremely challenging to design a fully protected network. For instance, Stealthy Link Flooding Attack (SLFA) is a variant of DDoS attacks that…

Networking and Internet Architecture · Computer Science 2019-12-24 Abdullah Aydeger , Mohammad Hossein Manshaei , Mohammad Ashiqur Rahman , Kemal Akkaya

Destination IP prefix-based routing protocols are core to Internet routing today. Internet autonomous systems (AS) possess fixed IP prefixes, while packets carry the intended destination AS's prefix in their headers, in clear text. As a…

Networking and Internet Architecture · Computer Science 2018-04-06 Lu Yu , Qing Wang , Geddings Barrineau , Jon Oakley , Richard R. Brooks , Kuang-Ching Wang

While collaborative systems provide convenience to our lives, they also face many security threats. One of them is the Low-rate Distributed Denial-of-Service (LDDoS) attack, which is a worthy concern. Unlike volumetric DDoS attacks that…

Cryptography and Security · Computer Science 2023-06-28 Tianyang Cai , Yuqi Li , Tao Jia , Leo Yu Zhang , Zheng Yang

Distributed Reflective Denial of Service (DRDoS) attacks are an immanent threat to Internet services. The potential scale of such attacks became apparent in March 2018 when a memcached-based attack peaked at 1.7 Tbps. Novel services built…

Cryptography and Security · Computer Science 2018-08-06 Thomas Lukaseder , Kevin Stölzle , Stephan Kleber , Benjamin Erb , Frank Kargl

Software-defined networking is considered a promising new paradigm, enabling more reliable and formally verifiable communication networks. However, this paper shows that the separation of the control plane from the data plane, which lies at…

Cryptography and Security · Computer Science 2024-03-05 Robert Krösche , Kashyap Thimmaraju , Liron Schiff , Stefan Schmid

Distributed Denial-of-Service (DDoS) attacks are usually launched through the $botnet$, an "army" of compromised nodes hidden in the network. Inferential tools for DDoS mitigation should accordingly enable an early and reliable…

Information Theory · Computer Science 2016-09-12 Vincenzo Matta , Mario Di Mauro , Maurizio Longo

To effectively tackle the security threats towards the Internet of things, we propose a SOM-based DDoS defense mechanism using software-defined networking (SDN) in this paper. The main idea of the mechanism is to deploy a SDN-based gateway…

Networking and Internet Architecture · Computer Science 2020-03-19 Yunfei Meng , Zhiqiu Huang , Senzhang Wang , Guohua Shen , Changbo Ke

Distributed Denial of Service (DDoS) attacks are a major concern in network security, as they overwhelm systems with excessive traffic, compromise sensitive data, and disrupt network services. Accurately detecting these attacks is crucial…

Cryptography and Security · Computer Science 2024-10-15 Kanthimathi S , Shravan Venkatraman , Jayasankar K S , Pranay Jiljith T , Jashwanth R