A collaborative approach for a source based detection of botclouds

Author

Badis, Hammi ; Doyen, Guillaume ; Khatoun, Rida

Author_Institution

Autonomous Network Environ. Team, Troyes Univ. of Technol., Troyes, France

fYear

2015

fDate

11-15 May 2015

Firstpage

906

Lastpage

909

Abstract

Since the last years, cloud computing is playing an important role in providing high quality of IT services. However, beyond a legitimate usage, the numerous advantages it presents are now exploited by attackers, and botnets supporting DDoS attacks are among the greatest beneficiaries of this malicious use. In this paper, we present an original approach that enables a collaborative egress detection of DDoS attacks leveraged by a botcloud. We provide an early evaluation of our approach using simulations that rely on real workload traces, showing our detection system effectiveness and low overhead, as well as its support for incremental deployment in real cloud infrastructures.

Keywords

cloud computing; computer network security; groupware; software agents; DDoS attacks; IT services; botclouds; botnets; cloud computing; cloud infrastructures; collaborative approach; collaborative egress detection; incremental deployment; source based detection; workload traces; Biomedical monitoring; Cloud computing; Collaboration; Computer crime; Monitoring; Peer-to-peer computing; Principal component analysis;

fLanguage

English

Publisher

ieee

Conference_Titel

Integrated Network Management (IM), 2015 IFIP/IEEE International Symposium on

Conference_Location

Ottawa, ON

Type

conf

DOI

10.1109/INM.2015.7140406

Filename

7140406