Title :
Reducing DDoS attacks impact using a hybrid cloud-based firewalling architecture
Author :
Guenane, Fouad ; Nogueira, Michele ; Pujolle, Guy
Author_Institution :
UPMC Univ. Paris 06, Paris, France
Abstract :
A Distributed Denial-of-Service attack is an attempt to prevent legitimate users from accessing information or services. In fact, it is a battle of resources between the defender and the attacker. Hence, in order to deal with the denial of services, the proposed mitigation tools are mainly based on the philosophy of Cloud computing which relies on sharing resources. In fact, it offers numerous resources, with high availability and performances. This concept provides us with a new way to cope with DDoS attacks. Cloud computing offered IT resources as services which are more affordable, flexible and attractive to business. Therefore, we present a DDoS attack mitigation service supported by an efficient and hybrid cloud based architecture. It uses the flexibility and the availability of the Cloud, as well as the support of traditional firewalls and intrusion detection systems, to cope with massive unanticipated volumes of traffic in order to improve their performance dynamically and on demand.
Keywords :
cloud computing; firewalls; resource allocation; software architecture; DDoS attacks impact reduction; IT resources; cloud computing; denial of services; distributed denial-of-service attack; hybrid cloud based architecture; hybrid cloud-based firewalling architecture; intrusion detection systems; performance improvement; resource sharing; Companies; Computer architecture; Computer crime; Firewalls (computing); Monitoring; Servers; Cloud Based Architecture; DDoS; Firewall; Hybrid; Mitigation; Network security; Security as a Service;
Conference_Titel :
Global Information Infrastructure and Networking Symposium (GIIS), 2014
Conference_Location :
Montreal, QC
DOI :
10.1109/GIIS.2014.6934276