An Autonomic Approach to Denial of Service Defence
Source: Imperial College London
Denial of service attacks, viruses and worms are common tools for malicious adversarial behaviour in networks. This paper proposes the use of their autonomic routing protocol, the Cognitive Packet Network (CPN), as a means to defend nodes from Distributed Denial of Service Attacks (DDoS), where one or more attackers generate flooding traffic from multiple sources towards selected nodes or IP addresses. They use both analytical and simulation modelling, and experiments on their CPN testbed, to evaluate the advantages and disadvantages of their approach in the presence of imperfect detection of DDoS attacks, and of false alarms.