Title :
Active network based DDoS defense
Author :
Sterne, Dan ; Djahandari, Kelly ; Balupar, Ravindra ; La Cholter, William ; Babson, Bill ; Wilson, Brett ; Narasimhan, Priya ; Purtell, Andrew ; Schnackenberg, Dan ; Linden, Scott
Author_Institution :
NAI Labs., Glenwood, MD, USA
fDate :
6/24/1905 12:00:00 AM
Abstract :
Prior research on active networks has outlined a vision of broad applicability. We present rationale and techniques for applying active network concepts and technology to the automated intrusion response problem domain, and in particular, automated defense against distributed denial-of-service (DDoS) attacks. We describe our experience exploring these ideas via prototyping using the Secure ANTS execution environment in a deployment scenario that requires active programs to migrate across network administration boundaries. From this experience, observations are drawn on the suitability of active networks for this problem domain.
Keywords :
computer networks; security of data; active networks; automated defense; automated intrusion detection; distributed denial-of-service attacks; dynamic services; intrusion response; Application software; Computer networks; Contracts; Imaging phantoms; Intrusion detection; Mobile computing; Protocols; Prototypes; Software prototyping; Technological innovation;
Conference_Titel :
DARPA Active NEtworks Conference and Exposition, 2002. Proceedings
Print_ISBN :
0-7695-1564-9
DOI :
10.1109/DANCE.2002.1003493
