Presentation is loading. Please wait.

Presentation is loading. Please wait.

DDoS Attack and Defense 郭承賓 (Allen C.B. Kuo). Autonomous System Entry node.

Published byNelson Patterson Modified over 9 years ago

Similar presentations

Presentation on theme: "DDoS Attack and Defense 郭承賓 (Allen C.B. Kuo). Autonomous System Entry node."— Presentation transcript:

1 DDoS Attack and Defense 郭承賓 (Allen C.B. Kuo)

2 Autonomous System Entry node

3 Autonomous System attacker Normal traffic Abnormal traffic

4 6 5 7 4 13 8 9 10 15 11 14 12 1 2 3 Autonomous System attacker Normal traffic Abnormal traffic

5 Network Model The index set of all nodes in the network – The set of all links in the network – The index set of all entry points in the network – The set of all O-D pairs in the network –

6 Network Model (contd.) The index set of all candidate paths of an O-D pair w – The index set of all candidate paths of node j to node k – The indicator function which denotes if link l is on path p – The indicator function which denotes if link l is used by O-D pair w –

7 QoS Requirement The traffic requirement for O-D pair w – The external traffic requirement to node k via entry j – The end-to-end mean traffic delay requirement upon attack for O-D pair w – The end-to-end delay jitter requirement upon attack for O-D pair w –

8 6 5 7 4 13 8 9 10 15 11 14 12 1 2 3 attacker Target: node 11

9 6 5 7 4 13 8 9 10 15 11 14 12 1 2 3 Target: node 11 attacker

10 Attacker Decision Variables Abnormal traffic to node k via entry j – Abnormal traffic via entry j – Total traffic from attacker –

11 Defender Decision Variables The budget allocated to link l – The aggregate traffic flow on link l – The mean traffic delay on link l – The delay jitter on link l – The capacity on link l –

12 Defender Decision Variables (contd.) The routing decision variable which denotes if path p is selected –

13 Constrains Budget – Attacker –

14 Constrains (contd.) Network communication –

15 Constrains (contd.) QoS – Integer –

Download ppt "DDoS Attack and Defense 郭承賓 (Allen C.B. Kuo). Autonomous System Entry node."

Similar presentations

Adaptive Resource Allocation: Self-Sizing for Next Generation Networks Michael Devetsikiotis Electrical & Computer Engineering North Carolina State University.

Adaptive Resource Allocation: Self-Sizing for Next Generation Networks Michael Devetsikiotis Electrical & Computer Engineering North Carolina State University.
Interconnection Networks: Flow Control and Microarchitecture.

Interconnection Networks: Flow Control and Microarchitecture.
Traffic and routing. Network Queueing Model Packets are buffered in egress queues waiting for serialization on line Link capacity is C bps Average packet.

Traffic and routing. Network Queueing Model Packets are buffered in egress queues waiting for serialization on line Link capacity is C bps Average packet.
1 EP2210 Fairness Lecture material: –Bertsekas, Gallager, Data networks, 6.5 –L. Massoulie, J. Roberts, Bandwidth sharing: objectives and algorithms,“

1 EP2210 Fairness Lecture material: –Bertsekas, Gallager, Data networks, 6.5 –L. Massoulie, J. Roberts, "Bandwidth sharing: objectives and algorithms,“
B Multi-Layer Network Design II Dr. Greg Bernstein Grotto Networking www.grotto-networking.com.

B Multi-Layer Network Design II Dr. Greg Bernstein Grotto Networking
1 EL736 Communications Networks II: Design and Algorithms Class3: Network Design Modeling Yong Liu 09/19/2007.

1 EL736 Communications Networks II: Design and Algorithms Class3: Network Design Modeling Yong Liu 09/19/2007.
Research Direction Introduction Advisor : Frank, Y.S. Lin Presented by Yu Pu Wu.

Research Direction Introduction Advisor : Frank, Y.S. Lin Presented by Yu Pu Wu.
Chapter 4: Network Layer

Chapter 4: Network Layer
PROMISE: Peer-to-Peer Media Streaming Using CollectCast Mohamed Hafeeda, Ahsan Habib et al. Presented By: Abhishek Gupta.

PROMISE: Peer-to-Peer Media Streaming Using CollectCast Mohamed Hafeeda, Ahsan Habib et al. Presented By: Abhishek Gupta.
CPSC 601.43 Topics in Multimedia Networking A Mechanism for Equitable Bandwidth Allocation under QoS and Budget Constraints D. Sivakumar IBM Almaden Research.

CPSC Topics in Multimedia Networking A Mechanism for Equitable Bandwidth Allocation under QoS and Budget Constraints D. Sivakumar IBM Almaden Research.
Traffic Engineering With Traditional IP Routing Protocols

Traffic Engineering With Traditional IP Routing Protocols
Next Generation Networks Chapter 10. Knowledge Concepts QoS concepts Bandwidth needs for Internet traffic.

Next Generation Networks Chapter 10. Knowledge Concepts QoS concepts Bandwidth needs for Internet traffic.
Multiple constraints QoS Routing Given: - a (real time) connection request with specified QoS requirements (e.g., Bdw, Delay, Jitter, packet loss, path.

Multiple constraints QoS Routing Given: - a (real time) connection request with specified QoS requirements (e.g., Bdw, Delay, Jitter, packet loss, path.
An Effective Placement of Detection Systems for Distributed Attack Detection in Large Scale Networks Telecommunication and Security LAB. Dept. of Industrial.

An Effective Placement of Detection Systems for Distributed Attack Detection in Large Scale Networks Telecommunication and Security LAB. Dept. of Industrial.
Distributed Priority Scheduling and Medium Access in Ad Hoc Networks Distributed Priority Scheduling and Medium Access in Ad Hoc Networks Vikram Kanodia.

Distributed Priority Scheduling and Medium Access in Ad Hoc Networks Distributed Priority Scheduling and Medium Access in Ad Hoc Networks Vikram Kanodia.
Multicast Routing in ATM Networks with Multiple Classes of QoS Ren-Hung Hwang, Min-Xiou Chen, and Youn-Chen Sun Department of Computer Science & Information.

Multicast Routing in ATM Networks with Multiple Classes of QoS Ren-Hung Hwang, Min-Xiou Chen, and Youn-Chen Sun Department of Computer Science & Information.
CS541 Advanced Networking 1 Routing and Shortest Path Algorithms Neil Tang 2/18/2009.

CS541 Advanced Networking 1 Routing and Shortest Path Algorithms Neil Tang 2/18/2009.
Networks: Performance Measures1 Network Performance Measures.

Networks: Performance Measures1 Network Performance Measures.
Chapter 11 Network Models. What You Need to Know For each of the three models: –What is the model? (what are given and what is to calculate) –What is.

Chapter 11 Network Models. What You Need to Know For each of the three models: –What is the model? (what are given and what is to calculate) –What is.
Lecture 3. Notations and examples D. Moltchanov, TUT, Spring 2008 D. Moltchanov, TUT, Spring 2015.

Lecture 3. Notations and examples D. Moltchanov, TUT, Spring 2008 D. Moltchanov, TUT, Spring 2015.

Similar presentations

Ads by Google